1 - 3 of 3
ItemSimplifying Cyber Security Maturity Models through National Culture: A Fuzzy Logic Approach( 2022-01-04)Different assessment models exist to measure a country's cyber security maturity levels. These levels serve as a benchmark for indicating how well prepared a nation is against a cyber security attack and how resilient it would be in recovering from such an attack. However, results from these maturity assessments are either too general, overly complex, or resource intensive to apply and guide important national cyber security strategies and frameworks. To address this we propose a model to link national culture with a country's cyber security maturity through fuzzy logic mapping to ensure that a more uniform reflection of the cyber security maturity level within a country can be measured. In this paper, we present additional research towards optimising our model. The extended model incorporates input from two cyber security assessment models, and validates the refined output models on 11 countries to compare the maturity levels from the traditional assessment model with our optimised fuzzy model. Our results show that it is viable to reduce the resources required to conduct a national cyber security maturity assessment.
ItemCybersecurity Maturity in the Pacific Islands – Informing a Regional CERT Framework( 2022-01-04)Cybersecurity acts as a strong influence on national governments’ security, economic, physical and social interests. A common policy goal of governments is to protect their respective interests by supporting cybersecurity threat and attack response capabilities. Contemporary research addresses the use of multi-national CERT frameworks to improve national cybersecurity capability maturity and resilience, however little research has been conducted into the efficacy of such frameworks with Pacific Island nations. This research employs a qualitative interview technique to develop an inductive model for a regional Pacific Islands CERT framework. The research proposes a Pacific Islands regional model based on a network of affiliated national CERTs that operate independently and reflect their respective national interests, while collaborating on matters of shared interest, supported by regional partners providing targeted assistance to build national and regional cybersecurity capability maturity and resilience.