Reposted from EMR-ISAC 

On Feb. 4, the Center for Internet Security (CIS) released Episode 121 of its “Cybersecurity Where You Are” podcast. The episode, The Economics of Cybersecurity Decision-Making, discusses the role of economics in cyber risk quantification and cybersecurity decision-making.

Highlights include:

• How incentives, market failures, and other economic principles intersect with cybersecurity.
• A model of translating shared information as a way to capture complexity in cybersecurity decision-making.
• Pressing issues when making decisions about cybersecurity.
• How to have enough confidence and a cyber risk quantification model that's useful.
• How rigorous recommendations can help to match modeling and techniques like minimization.
• The role of the Board in making cybersecurity decisions and how to speak its language.

See Original Post