Ciência_Iscte Publications Publication Detailed Description Export

Export Publication

The publication can be exported in the following formats: APA (American Psychological Association) reference format, IEEE (Institute of Electrical and Electronics Engineers) reference format, BibTeX and RIS.

Export Reference (APA)

Teodoro, N, Gonçalves, L. & Serrão, C. (2015). NIST cybersecurity framework compliance:  A generic model for dynamic assessment and predictive requirements. In Raimo Kantola, Aalto-Yliopisto (Ed.), Proceedings 13th IEEE International Symposium on Parallel and Distributed Processing with Applications. Helsinquia: IEEE.

Export Reference (IEEE)

N. F. Teodoro et al.,  "NIST cybersecurity framework compliance:  A generic model for dynamic assessment and predictive requirements", in Proc. 13th IEEE Int. Symp. on Parallel and Distributed Processing with Applications, Raimo Kantola, Aalto-Yliopisto, Ed., Helsinquia, IEEE, 2015, vol. 3

Export BibTeX

@inproceedings{teodoro2015_1765814369618,
	author = "Teodoro, N and Gonçalves, L. and Serrão, C.",
	title = "NIST cybersecurity framework compliance:  A generic model for dynamic assessment and predictive requirements",
	booktitle = "Proceedings 13th IEEE International Symposium on Parallel and Distributed Processing with Applications",
	year = "2015",
	editor = "Raimo Kantola, Aalto-Yliopisto",
	volume = "3",
	number = "",
	series = "",
	doi = "10.1109/Trustcom.2015.402",
	publisher = "IEEE",
	address = "Helsinquia",
	organization = "IEEE",
	url = "https://ieeexplore.ieee.org/xpl/conhome/7293439/proceeding"
}

Export RIS

TY  - CPAPER
TI  - NIST cybersecurity framework compliance:  A generic model for dynamic assessment and predictive requirements
T2  - Proceedings 13th IEEE International Symposium on Parallel and Distributed Processing with Applications
VL  - 3
AU  - Teodoro, N
AU  - Gonçalves, L.
AU  - Serrão, C.
PY  - 2015
DO  - 10.1109/Trustcom.2015.402
CY  - Helsinquia
UR  - https://ieeexplore.ieee.org/xpl/conhome/7293439/proceeding
AB  - Organizations have become increasingly dependent on information systems to perform their business as usual activities. Moreover, organizations have registered an increase in the number of cyber-attacks, namely: industrial espionage, confidential information leakage, digital theft or pure damage to corporate image and reputation. In order to try to mitigate these issues, organizations like the National Institute of Standards and Technology (NIST) have made an effort to establish a cybersecurity protection guide. This paper presents a baseline for developing a generic and flexible model for manipulating key factors inside organizations: Processes, Human Resources and Technology, and extrapolate the percentage of compliance with the NIST cybersecurity framework, measure the current cybersecurity risk and allocate financial investments towards specific compliance objectives and reduce the overlapping of existing resources.

ER  -