Network defenders have avoided quantitative risk assessments in the past because they are too hard: the math is complex and too many variables exist. What if we could use simple math tricks to reduce our uncertainty about ranges of possibilities and that would be enough to help us make risk decisions? During this presentation, the speaker will address:
How the cybersecurity community has done this wrong for the past 25 years, and What we are evolving to now. Auditorium Borderless Cyber USA / Washington D.C. / 3-5 October 2018 jharnad@oasis-open.orgNetwork defenders have avoided quantitative risk assessments in the past because they are too hard: the math is complex and too many variables exist. What if we could use simple math tricks to reduce our uncertainty about ranges of possibilities and that would be enough to help us make risk decisions?
During this presentation, the speaker will address: