Title :
The Promises and Challenges of Continuous Monitoring and Risk Scoring
Author :
Kott, Alexander ; Arnold, C.
Author_Institution :
US Army Res. Lab., USA
Abstract :
Continuous monitoring and risk scoring is a comprehensive process of maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions. Two of the most salient aspects of CMRS are continuous data collection through automated feeds and analysis of that data to assess and score risks. CMRS attracts growing interest due to its potential to be far more agile, responsive, and perhaps less expensive than such alternatives as periodic reporting and certification. While the potential benefits could be great, so are the challenges of implementing a successful CMRS system.
Keywords :
computerised monitoring; decision making; military computing; organisational aspects; risk management; security of data; CMRS system; continuous monitoring-and-risk scoring system; data analysis; information security; information threats; information vulnerabilities; organizational risk management decisions; Computer security; Monitoring; Network security; Risk assessment; Software performance; CMRS; continuous monitoring; cybersecurity; network defense; risk scoring; vulnerability assessment;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2013.19
