Cyber risk management is a very important problem for every company connected to the internet. Usually, risk management is done considering only Risk Analysis without connecting it with Vulnerability Assessment, using external and expensive tools. In this paper we present CYber Risk Vulnerability Management (CYRVM)-a custom-made software platform devised to simplify and improve automation and continuity in cyber security assessment. CYRVM's main novelties are the combination, in a single and easy-to-use Web-based software platform, of an online Vulnerability Assessment tool within a Risk Analysis framework following the NIST 800-30 Risk Management guidelines and the integration of predictive solutions able to suggest to the user the risk rating and classification.

Russo, P., Caponi, A., Leuti, M., Bianchi, G. (2019). A web platform for integrated vulnerability assessment and cyber risk management. INFORMATION, 10(7), 242 [10.3390/info10070242].

A web platform for integrated vulnerability assessment and cyber risk management

Russo P.;Caponi A.;Bianchi G.
2019

Abstract

Cyber risk management is a very important problem for every company connected to the internet. Usually, risk management is done considering only Risk Analysis without connecting it with Vulnerability Assessment, using external and expensive tools. In this paper we present CYber Risk Vulnerability Management (CYRVM)-a custom-made software platform devised to simplify and improve automation and continuity in cyber security assessment. CYRVM's main novelties are the combination, in a single and easy-to-use Web-based software platform, of an online Vulnerability Assessment tool within a Risk Analysis framework following the NIST 800-30 Risk Management guidelines and the integration of predictive solutions able to suggest to the user the risk rating and classification.
Pubblicato
Rilevanza internazionale
Articolo
Esperti anonimi
Settore ING-INF/03
English
Cyber risk management; NIST 800-30; OpenVas; Recommending system; Risk analysis; Vulnerability assessment; Web based software platform
Russo, P., Caponi, A., Leuti, M., Bianchi, G. (2019). A web platform for integrated vulnerability assessment and cyber risk management. INFORMATION, 10(7), 242 [10.3390/info10070242].
Russo, P; Caponi, A; Leuti, M; Bianchi, G
Articolo su rivista
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2108/240032
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 7
  • ???jsp.display-item.citation.isi??? 6
social impact