Search
Abstract
The methods of cybersecurity costs' evaluation are inclined towards the cost of incidents or technological acquirements. At the same time, there are other, less visible costs related to cybersecurity that require proper recognition. These costs are associated with the actions and the time spent by employees on activities connected to cybersecurity management. The costs form a considerable component of cybersecurity expenditures, but because they become evident only during scrupulous analyses, often they are disregarded. CAsPeA is a method that enables estimating the costs based on a model derived from the Activity-Based Costing (ABC) and the NIST SP 800-53 guidelines. This paper presents the application of CAsPeA in a steel structures manufacturing company.
Citations
-
0
CrossRef
-
0
Web of Science
-
0
Scopus
Cite as
Full text
- Publication version
- Accepted or Published Version
- License
- Copyright (ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2020)
Keywords
Details
- Category:
- Conference activity
- Type:
- publikacja w wydawnictwie zbiorowym recenzowanym (także w materiałach konferencyjnych)
- Title of issue:
- Security and Privacy in Communication Networks strony 268 - 274
- Language:
- English
- Publication year:
- 2020
- Bibliographic description:
- Leszczyna R.: Evaluating the Cost of Personnel Activities in Cybersecurity Management: A Case Study// / : , 2020, s.268-274
- DOI:
- Digital Object Identifier (open in new tab) 10.1007/978-3-030-63095-9_17
- Verified by:
- Gdańsk University of Technology
seen 98 times