A security review of local government using NIST CSF: a case study

Evaluating cyber security risk is a challenging task regardless of an organisation’s nature of business or size, however, an essential activity. This paper uses the National Institute of Standards and Technology (NIST) cyber security framework (CSF) to assess the cyber security posture of a local go...

Full description

Saved in:
Bibliographic Details
Published inThe Journal of supercomputing Vol. 74; no. 10; pp. 5171 - 5186
Main Authors Ibrahim, Ahmed, Valli, Craig, McAteer, Ian, Chaudhry, Junaid
Format Journal Article
LanguageEnglish
Published New York Springer US 01.10.2018
Springer Nature B.V
Subjects
Compilers
Computer Science
Control systems
Cybersecurity
Interpreters
Local government
Processor Architectures
Programming Languages
Security programs
NIST cyber security framework
Local government
Cyber security
Risk assessment
Online AccessGet full text

Cover

More Information
Summary:Evaluating cyber security risk is a challenging task regardless of an organisation’s nature of business or size, however, an essential activity. This paper uses the National Institute of Standards and Technology (NIST) cyber security framework (CSF) to assess the cyber security posture of a local government organisation in Western Australia. Our approach enabled the quantification of risks for specific NIST CSF core functions and respective categories and allowed making recommendations to address the gaps discovered to attain the desired level of compliance. This has led the organisation to strategically target areas related to their people, processes, and technologies, thus mitigating current and future threats.
Bibliography:ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 14
ISSN:0920-8542
1573-0484
DOI:10.1007/s11227-018-2479-2