105 résultats
pour « Résilience numérique »
This paper analyzes the characteristics of #cyber #loss #events and how they evolve over time. The authors use three large databases to address the problem of #report #delay and analyze the #frequency and #severity of different categories of #cyberevents . They find that the frequency of malicious cyber events has grown exponentially in the past two decades, but there is no significant change in loss severity.
While previous research has focused on #cyberrisk #riskmitigation measures, this study describes the emergence of various real-world cyber #risktransfer products in the last decade, including #warranties, #cloudcomputing partnerships, #parametricinsurance, #reinsurance, and #cyber #catbonds.
We provide a #cyberrisk definition and classification scheme for #riskmanagement purposes, to be used as a data collection template for #financialinstitutions.
"This paper employs #computational #linguistics to introduce a novel text-based measure of firm-level #cyberrisk exposure based on quarterly earnings conference calls of listed firms. Our quarterly measures are available for more than 13,000 firms from 85 countries over 2002-2021. ... The geography of cyber risk exposure is well approximated by a gravity model extended with cross-border portfolio flows. Back-of-the-envelope calculations suggest that the global #cost of cyber risk is over $200 billion per year."
The authors use mid-quantile regression to deal with ordinal #riskassessments and compare their approach to current alternatives for #cyberrisk ranking and graded responses. They test their #model on both simulated and real data and discuss its applications to #threatlintelligence.
"We compile a comprehensive dataset of adverse #cyberevents experienced by #us firms. We then categorize #cyberincidents by their detrimental impacts on firms' assets and operations, e.g., #datatheft, #ransomwareattacks, #securitybreaches, #denialofservice attacks, and show that firms suffer significant value losses across multiple cyber categories."
The current #canadian regime, which draws on the #basel #operationalrisk framework, is not equipped to handle the unique challenges of #cyberrisk. Cyber incidents differ from traditional operational disruptions in terms of their dynamism and impact, and traditional risk-based #supervision is not suitable for the rapidly changing cyber profile of #regulated #financialinstitutions.services for all communities, especially those most impacted by climate change."
There are five different common reactions to dealing with, or taming, this #uncertainty in #cyberspace: (1) using #riskmanagement to control uncertainty; (2) recovering from uncertainty through #resilience; (3) mitigating uncertainty through the use of #laws and #regulations; (4) suspending uncertainty by engaging in trust; and (5) ignoring uncertainty through inaction.
The latest #ai-#cybersecurity-#knowledgemanagement practices advance the future of #riskmanagement practices. The article highlights the importance of risk management and #cyberresilience in a dynamic world characterized by #uncertainty and complexity.
The paper discusses the risks posed by #artificialintelligence (#ai) systems, from biased lending algorithms to chatbots that spew violent #hatespeech. The author argues that policymakers have a responsibility to consider broader, longer-term #risks from #aitechnology, such as #systemicrisk and the potential for misuse. While #regulatory proposals like the #eu #aiact and the #whitehouse AI Bill of Rights focus on immediate risks, they do not fully address the need for #algorithmicpreparedness. It proposes a roadmap for algorithmic preparedness, which includes five forward-looking principles to guide the development of regulations that confront the prospect of algorithmic black swans and mitigate the harms they pose to society. This approach is particularly important for general purpose systems like #chatgpt, which can be used for a wide range of applications, including ones that may have unintended consequences. The article emphasizes the need for #governance and #regulation to ensure that #aisystems are developed and used in ways that minimize risk and maximize benefit, and it references the #nist AI #riskmanagement Framework as a potential tool for achieving this goal.