Automated cyber and privacy risk management toolkit

Managing cybersecurity within an organization can be challenging, more so when the in-house knowledge and management drive concerning cybersecurity is lacking. But does it have to be so complicated? What tools exist to help organizations sort through and implement proper safeguards for their cyber infrastructure, and in particular their associated privacy-specific data? In this 2021 paper published in Sensors, Gonzalez-Granadillo et al. propose a privacy risk management toolkit called AMBIENT (Automated Cyber and Privacy Risk Management Toolkit) that “not only assesses cyber and privacy risks in a thorough and automated manner, but it also offers decision-support capabilities to recommend optimal safeguards using the well-known repository of the Center for Internet Security (CIS) Controls.” After presenting related work, describing AMBIENT, and showing the results of a demo, the author conclude that “security managers can use AMBIENT’s results as a guide in their decision-making process to define appropriate security policies and strategies that keep risk scores within acceptable levels.”

Please to read the entire article.