Back to Search
Start Over
What are the actual costs of cyber risk events?
- Source :
- European Journal of Operational Research. 272:1109-1119
- Publication Year :
- 2019
- Publisher :
- Elsevier BV, 2019.
-
Abstract
- Cyber risks are high on the business agenda of every company, but they are difficult to assess due to the absence of reliable data and thorough analyses. This paper is the first to consider a broad range of cyber risk events and actual cost data. For this purpose, we identify cyber losses from an operational risk database and analyze these with methods from statistics and actuarial science. We use the peaks-over-threshold method from extreme value theory to identify “cyber risks of daily life” and “extreme cyber risks”. Human behavior is the main source of cyber risk and cyber risks are very different compared with other risk categories. Our models can be used to yield consistent risk estimates, depending on country, industry, size, and other variables. The findings of the paper are also useful for practitioners, policymakers and regulators in improving the understanding of this new type of risk.
- Subjects :
- Risk analysis
Information Systems and Management
Actuarial science
General Computer Science
business.industry
Yield (finance)
Management Science and Operations Research
Business studies
Industrial and Manufacturing Engineering
Operational risk
IT risk management
Actual cost
Modeling and Simulation
Business
Extreme value theory
Risk management
Subjects
Details
- ISSN :
- 03772217
- Volume :
- 272
- Database :
- OpenAIRE
- Journal :
- European Journal of Operational Research
- Accession number :
- edsair.doi...........9a8ca42c1895e6ad5f1bdf4a23514e2f