Dissecting cyber risk

Dissecting cyber risk takes a scalpel to the internal anatomy of financial loss metrics and how they are derived from the digital assets. Then it uses an industry-recognized risk approach called ROLF (reputational, operational, legal, and financial) that utilizes the metrics discussed in Chapter 1 and shows how these other factors can amplify the financial risk even more. Special attention is paid to roles in cyber and how they are interrelated and need to evolve to be more proactive and less reactive. Using standard business continuity management classifications, we look at how all digital assets are not created equal, providing us the foundation for the management of scarce resources in the most efficient manner in the following chapters.