Journal:A security review of local government using NIST CSF: A case study
Full article title | A security review of local government using NIST CSF: A case study |
---|---|
Journal | The Journal of Supercomputing |
Author(s) | Ibrahim, Ahmed; Valli, Craig; McAteer, Ian; Chaudhry, Junaid |
Author affiliation(s) | Edith Cowan University, Embry-Riddle Aeronautical University |
Primary contact | Email: ahmed dot ibrahim at ecu dot edu dot au |
Year published | 2018 |
Volume and issue | 74(10) |
Page(s) | 5171–86 |
DOI | 10.1007/s11227-019-02972-w |
ISSN | 1573-0484 |
Distribution license | Creative Commons Attribution 4.0 International |
Website | https://link.springer.com/article/10.1007/s11227-018-2479-2 |
Download | https://link.springer.com/content/pdf/10.1007%2Fs11227-018-2479-2.pdf (PDF) |
This article should be considered a work in progress and incomplete. Consider this article incomplete until this notice is removed. |
Abstract
Evaluating cybersecurity risk is a challenging task regardless of an organization’s nature of business or size, yet it remains an essential activity. This paper uses the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) to assess the cybersecurity posture of a local government organization in Western Australia. Our approach enabled the quantification of risks for specific NIST CSF core functions and respective categories and allowed making recommendations to address the gaps discovered to attain the desired level of compliance. This has led the organization to strategically target areas related to their people, processes, and technologies, thus mitigating current and future threats.
Keywords: NIST Cybersecurity Framework, local government, cybersecurity, risk assessment
References
Notes
This presentation is faithful to the original, with only a few minor changes to presentation, grammar, and punctuation. In some cases important information was missing from the references, and that information was added.