Informacja

Drogi użytkowniku, aplikacja do prawidłowego działania wymaga obsługi JavaScript. Proszę włącz obsługę JavaScript w Twojej przeglądarce.

English (EN)·Polski (PL)·Yкраїнський (UK)
Przejdź do strony domowej biblioteki Centralna Biblioteka Wojskowa Link otwiera się w nowym oknie Logo biblioteki Prolib Integro - strona głównaCentralna Biblioteka Wojskowa

Wyszukujesz frazę "cyber risk management" wg kryterium: Temat

  Lista filtrów
Wyrównaj
    Wyświetlanie 1-8 z 8
    Tytuł:
    Commercial Maritime and Cyber Risk Management
    Autorzy:
    RANA, Akash
    Powiązania:
    https://bibliotekanauki.pl/articles/466223.pdf
    Data publikacji:
    2019
    Wydawca:
    Centrum Rzeczoznawstwa Budowlanego Sp. z o.o.
    Tematy:
    commercial maritime
    cyber threat
    cyber risk management
    maritime security
    security
    Opis:
    The starting point of the paper is the recognition of the growing threat of cyber-attacks to commercial maritime. Constantly growing dependency on technology has obvious advantages, on the other hand, however, it makes commercial maritime vessels progressively more vulnerable to cyber-crime, including GPS signal interference, malware attacks or even gaining control over ships’ systems and networks. The main objective of the paper is to present and discuss the Guidelines on Cyber Security Onboard Ships developed by the International Maritime Organization, including best practices for implementation of cyber risk management. The article’s goal is to summarize the guidelines and to familiarize the reader with the reasons why and the methods how they should be implemented. The paper is concluded with an example how the Guidelines can be adopted by national authorities, i.e., a brief presentation of “Code of Practice: Cyber Security for Ships” – a document developed by the British government that transposes the IMO guidelines.
    Źródło:
    Safety & Defense; 2019, 5, 1; 46-48
    2450-551X
    Pojawia się w:
    Safety & Defense
    Dostawca treści:
    Biblioteka Nauki
    Artykuł
    Tytuł:
    CERP: a maritime cyber risk decision making tool
    Autorzy:
    Erstad, E.
    Hopcraft, R.
    Palbar, J. D.
    Tam, K.
    Powiązania:
    https://bibliotekanauki.pl/articles/24201418.pdf
    Data publikacji:
    2023
    Wydawca:
    Uniwersytet Morski w Gdyni. Wydział Nawigacyjny
    Tematy:
    maritime cyber resilience
    maritime cyber security
    cyber risk management
    safety and security
    emergency response procedures
    cyber incident response
    risk mitigation
    maritime cyber threats
    Opis:
    An increase in the complexity of systems onboard ships in the last decade has seen a rise in the number of reported maritime cyber-attacks. To tackle this rising risk the International Maritime Organization published high-level requirements for cyber risk management in 2017. These requirements obligate organisations to establish procedures, like incident response plans, to manage cyber-incidents. However, there is currently no standardised framework for this implementation. This paper proposes a Cyber Emergency Response Procedure (CERP), that provides a framework for organisations to better facilitate their crew’s response to a cyber-incident that is considerate of their operational environment. Based on an operations flowchart, the CERP provides a step-by-step procedure that guides a crew’s decision-making process in the face of a cyber-incident. This high-level framework provides a blueprint for organisations to develop their own cyber-incident response procedures that are considerate of operational constraints, existing incident procedures and the complexity of modern maritime systems.
    Źródło:
    TransNav : International Journal on Marine Navigation and Safety of Sea Transportation; 2023, 17, 2; 269--279
    2083-6473
    2083-6481
    Pojawia się w:
    TransNav : International Journal on Marine Navigation and Safety of Sea Transportation
    Dostawca treści:
    Biblioteka Nauki
    Artykuł
    Tytuł:
    Instrument design for cyber risk assessment in insurability verification
    Projektowanie instrumentów przeznaczonych do oceny zagrożenia ryzyka cybernetycznego w weryfikacji ubezpieczalności
    Autorzy:
    Bartolini, D. N.
    Ahrens, A.
    Zascerinska, J.
    Powiązania:
    https://bibliotekanauki.pl/articles/408201.pdf
    Data publikacji:
    2018
    Wydawca:
    Politechnika Lubelska. Wydawnictwo Politechniki Lubelskiej
    Tematy:
    cyber risk management
    cyber insurance
    information security
    data protection
    zarządzenie ryzykiem cybernetycznym
    ubezpieczenie cybernetyczne
    bezpieczeństwo informacji
    ochrona danych
    Opis:
    Cyber risk assessment for insurability verification has been paid a lot of research interest as cyber insurance represents a new dynamic segment of market with considerable growth potential for insurers. As customer’s practices and processes consistently lead to the final overall result, customer's behaviour has to be described in detail. The aim of the present paper is to design an instrument (questionnaire) for customer’s cyber risk assessment in insurability verification. The method for building an instrument (questionnaire) is empirical research. Empirical research is based on use of empirical evidence. A questionnaire with 11 questions is proposed.
    Ocena ryzyka związana z bezpieczeństwem cybernetycznym jest przedmiotem dużego zainteresowania badawczego, ze względu na to, że bezpieczeństwo cybernetyczne stanowi nowy, dynamiczny segment rynku o znacznym potencjale wzrostu dla ubezpieczycieli. Ponieważ praktyki i procesy klienta w ciągły sposób wpływają na końcową ocenę, zachowanie klienta musi być szczegółowo opisane. Celem niniejszego artykułu jest opracowanie instrumentu (kwestionariusza) do oceny ryzyka cybernetycznego klienta w ramach weryfikacji ubezpieczenia. Metoda budowy instrumentu (kwestionariusz) to badania empiryczne. Badania empiryczne opierają się na wykorzystaniu dowodów empirycznych. Zaproponowano kwestionariusz składający się z 11 pytań.
    Źródło:
    Informatyka, Automatyka, Pomiary w Gospodarce i Ochronie Środowiska; 2018, 8, 3; 7-10
    2083-0157
    2391-6761
    Pojawia się w:
    Informatyka, Automatyka, Pomiary w Gospodarce i Ochronie Środowiska
    Dostawca treści:
    Biblioteka Nauki
    Artykuł
    Tytuł:
    The cyber-insurance market in Poland and determinants of its development from the insurance broker’s perspective
    Autorzy:
    Strupczewski, Grzegorz
    Powiązania:
    https://bibliotekanauki.pl/articles/943172.pdf
    Data publikacji:
    2017-06-30
    Wydawca:
    Uniwersytet Ekonomiczny w Poznaniu
    Tematy:
    cyber-risk
    cyber-insurance
    Polska
    data breach
    risk management
    Opis:
    The aim of the paper is to analyze the state of the cyber-insurance market in Poland, and additionally the identification of key determinants of its development, including such issues as cyber-risk perception and the insurability of cyber-risk. Due to the lack of comprehensive, cross-industry insurance data on cyber-insurance, I decided to collect raw data through my own, computer-aided survey amongst insurance brokers operating in Poland. By conducting the survey amongst insurance brokers it was possible not only to collect data describing the state of Polish cyber-insurance market but also to use their expert opinion on various issues relating to cyber-risk. The research presented here is a pioneer in terms of analysis of a cyber-insurance market in a post-communist country such as Poland which is the most important emerging market in the CEE region as well. My paper makes the research perspective broader as most cyber-insurance industry reports have focused ing on the US, the UK or the developed countries of Western Europe.
    Źródło:
    Economics and Business Review; 2017, 3(17), 2; 33-50
    2392-1641
    Pojawia się w:
    Economics and Business Review
    Dostawca treści:
    Biblioteka Nauki
    Artykuł
    Tytuł:
    A comprehensive assessment model for critical infrastructure protection
    Autorzy:
    Häyhtiö, M.
    Zaerens, K.
    Powiązania:
    https://bibliotekanauki.pl/articles/407153.pdf
    Data publikacji:
    2017
    Wydawca:
    Polska Akademia Nauk. Czytelnia Czasopism PAN
    Tematy:
    critical infrastructure
    supply chains
    capability management
    risk management
    cyber
    service
    Opis:
    International business demands seamless service and IT-infrastructure throughout the entire supply chain. However, dependencies between different parts of this vulnerable ecosystem form a fragile web. Assessment of the financial effects of any abnormalities in any part of the network is demanded in order to protect this network in a financially viable way. Contractual environment between the actors in a supply chain, different business domains and functions requires a management model, which enables a network wide protection for critical infrastructure. In this paper authors introduce such a model. It can be used to assess financial differences between centralized and decentralized protection of critical infrastructure. As an end result of this assessment business resilience to unknown threats can be improved across the entire supply chain.
    Źródło:
    Management and Production Engineering Review; 2017, 8, 4; 42-53
    2080-8208
    2082-1344
    Pojawia się w:
    Management and Production Engineering Review
    Dostawca treści:
    Biblioteka Nauki
    Artykuł
    Tytuł:
    The concept of cyber insurance and its role in the ISO-based risk management process: An industrial perspective
    Autorzy:
    Strupczewski, Grzegorz
    Powiązania:
    https://bibliotekanauki.pl/articles/20311612.pdf
    Data publikacji:
    2023-10-31
    Wydawca:
    Akademia Sztuki Wojennej
    Tematy:
    cybersecurity
    cyber insurance
    risk management
    ISO 27000
    ISO 31000
    Opis:
    With cyber threats rapidly growing, cyber risk insurance is emerging as a solution that can complement traditional cyber security tools based on technical and organizational measures. Moreover, the well-established risk management standards, such as ISO 31000 and ISO 27000, identify cyber insurance as having an important role to play in financing the negative impact of cyber risk. Accordingly, the purpose of this paper is to present the concept of cyber insurance and its key features, such as scope of coverage, areas of application, underwriting and premium calculation principles. The analysis is focused on industrial enterprises, which in many cases belong to the state’s critical infrastructure. They face not only pure cyber risk, but also cyber-physical risk, which means particularly high severity of potential losses. This study can have practical value in the context of requirements of the new NIS 2 Directive.
    Źródło:
    Cybersecurity and Law; 2023, 10, 2; 363-383
    2658-1493
    Pojawia się w:
    Cybersecurity and Law
    Dostawca treści:
    Biblioteka Nauki
    Artykuł
    Tytuł:
    OPSEC Model and Applications
    Autorzy:
    Akman, M. Kubilay
    Powiązania:
    https://bibliotekanauki.pl/articles/1835821.pdf
    Data publikacji:
    2018-08-23
    Wydawca:
    Wyższa Szkoła Bezpieczeństwa Publicznego i Indywidualnego Apeiron w Krakowie
    Tematy:
    OPSEC
    security studies
    sociology of security
    security management
    information security
    cyber security
    risk society
    Opis:
    OPSEC (Operations Security) model was developed during the Vietnam War era as a part of military strategies to protect critical information, analyzing vulnerabilities and threats, assessing risks and applying proper countermeasures. 5 steps OPSEC model have been functional for US Army’s operational security and used by other NATO members as well. When threats have spread widely in 21 st Century OPSEC began to be used and applied in a more general context of security world. Today even in cyber security this model serves practically for protection of critical data and information. In this paper we are going to proceed in two levels: on the one hand we will explain the OPSEC principles, steps and conceptual aspects through the main sources of this field; on the other hand we will discuss applications of the model in real world (military, politics, industry, etc.) via some explanatory examples and its potential usages for securing modern life and societies. Our approach will be based on an interdisciplinary view with references to sociology, security studies and management.
    Źródło:
    Security Dimensions; 2018, 25(25); 60-81
    2353-7000
    Pojawia się w:
    Security Dimensions
    Dostawca treści:
    Biblioteka Nauki
    Artykuł
    Tytuł:
    Functional safety and cyber security analysis for life cycle management of industrial control systems in hazardous plants and oil port critical infrastructure including insurance
    Autorzy:
    Kosmowski, Kazimierz, T.
    Gołębiewski, Dariusz
    Powiązania:
    https://bibliotekanauki.pl/articles/2068692.pdf
    Data publikacji:
    2019
    Wydawca:
    Uniwersytet Morski w Gdyni. Polskie Towarzystwo Bezpieczeństwa i Niezawodności
    Tematy:
    functional safety
    cyber security
    hazardous plants
    oil port infrastructure
    industrial automation
    control systems
    hazards
    threats
    vulnerabilities
    risk analysis
    key performance indicators
    integrated safety
    security management
    business continuity management
    insurance
    Opis:
    This report addresses selected methodological aspects of proactive reliability, functional safety and cyber security management in life cycle of industrial automation and control systems (IACS) in hazardous plants and oil port critical installations based on the analysis of relevant hazards / threats and evaluation of related risks. In addition the insurance company point of view has been also considered, because nowadays the insurer, interested in decreasing risks to be insured, offers the expertise how to limit effectively risks in life cycle from the design conceptual stage of hazardous plant, through its reliable and safe operation, until decommissioning. Therefore, the risk evaluation model for insurance related decision making for the period considered, e.g. one year, should be plant specific with some predictive properties due to changing environment and business conditions, and usually considerable uncertainty involved. The objective is to evaluate and mitigate risks, and control them proactively, through undertaking appropriate activities within a process based management system according to elaborated policy and strategy that includes organisational and technical aspects, including preventive maintenance activities of sensitive equipment and updating in time the training programmes. Careful evaluating and controlling risks is also crucial for the insurance company. Basic activities of the risk engineers and underwriters in the insurance process are outlined in the context of identified hazards/threats and defined factors that significantly influence risks to be considered in evaluating the insurance premium in the context of terms and conditions specified.
    Źródło:
    Journal of Polish Safety and Reliability Association; 2019, 10, 1; 99--126
    2084-5316
    Pojawia się w:
    Journal of Polish Safety and Reliability Association
    Dostawca treści:
    Biblioteka Nauki
    Artykuł
      Wyświetlanie 1-8 z 8

      Ta witryna wykorzystuje pliki cookies do przechowywania informacji na Twoim komputerze. Pliki cookies stosujemy w celu świadczenia usług na najwyższym poziomie, w tym w sposób dostosowany do indywidualnych potrzeb. Korzystanie z witryny bez zmiany ustawień dotyczących cookies oznacza, że będą one zamieszczane w Twoim komputerze. W każdym momencie możesz dokonać zmiany ustawień dotyczących cookies