Risk Assessment for Cyber Resilience of Critical Infrastructures: Methods, Governance, and Standards
As future infrastructures increasingly rely on digital systems, their exposure to cyber threats has grown significantly. The complex and hyper-connected nature of these systems presents challenges for enhancing cyber resilience against adverse conditions, stresses, attacks, or compromises on cyberse...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2024-12-01
|
| Series: | Applied Sciences |
| Subjects: | |
| Online Access: | https://www.mdpi.com/2076-3417/14/24/11807 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1846106022955974656 |
|---|---|
| author | Ali Aghazadeh Ardebili Marianna Lezzi Mahdad Pourmadadkar |
| author_facet | Ali Aghazadeh Ardebili Marianna Lezzi Mahdad Pourmadadkar |
| author_sort | Ali Aghazadeh Ardebili |
| collection | DOAJ |
| description | As future infrastructures increasingly rely on digital systems, their exposure to cyber threats has grown significantly. The complex and hyper-connected nature of these systems presents challenges for enhancing cyber resilience against adverse conditions, stresses, attacks, or compromises on cybersecurity resources. Integrating risk assessment with cyber resilience allows for adaptive approaches that can effectively safeguard critical infrastructures (CIs) against evolving cyber risks. However, the wide range of methods, frameworks, and standards—some overlapping and others inadequately addressed in the literature—complicates the selection of an appropriate approach to cyber risk assessment for cyber resilience. To investigate this integration, this study conducts a systematic literature review (SLR) of relevant methodologies, standards, and regulations. After conducting the initial screening of 173 publications on risk assessment and cyber resilience, 40 papers were included for thorough review. The findings highlight risk assessment methods, standards, and guidelines used for cyber resilience and provide an overview of relevant regulations that strengthen cyber resilience through risk assessment practices. The results of this paper will offer cybersecurity researchers and decision-makers an illuminated understanding of how risk assessment enhances cyber resilience by extracting risk assessment best practices in the literature supported by relevant standards and regulations. |
| format | Article |
| id | doaj-art-d67b6c04e91a4336b74e56c55321c3bc |
| institution | Kabale University |
| issn | 2076-3417 |
| language | English |
| publishDate | 2024-12-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | Applied Sciences |
| spelling | doaj-art-d67b6c04e91a4336b74e56c55321c3bc2024-12-27T14:08:25ZengMDPI AGApplied Sciences2076-34172024-12-0114241180710.3390/app142411807Risk Assessment for Cyber Resilience of Critical Infrastructures: Methods, Governance, and StandardsAli Aghazadeh Ardebili0Marianna Lezzi1Mahdad Pourmadadkar2Department of Engineering for Innovation, University of Salento, 73100 Lecce, ItalyDepartment of Engineering for Innovation, University of Salento, 73100 Lecce, ItalyDepartment of Engineering for Innovation, University of Salento, 73100 Lecce, ItalyAs future infrastructures increasingly rely on digital systems, their exposure to cyber threats has grown significantly. The complex and hyper-connected nature of these systems presents challenges for enhancing cyber resilience against adverse conditions, stresses, attacks, or compromises on cybersecurity resources. Integrating risk assessment with cyber resilience allows for adaptive approaches that can effectively safeguard critical infrastructures (CIs) against evolving cyber risks. However, the wide range of methods, frameworks, and standards—some overlapping and others inadequately addressed in the literature—complicates the selection of an appropriate approach to cyber risk assessment for cyber resilience. To investigate this integration, this study conducts a systematic literature review (SLR) of relevant methodologies, standards, and regulations. After conducting the initial screening of 173 publications on risk assessment and cyber resilience, 40 papers were included for thorough review. The findings highlight risk assessment methods, standards, and guidelines used for cyber resilience and provide an overview of relevant regulations that strengthen cyber resilience through risk assessment practices. The results of this paper will offer cybersecurity researchers and decision-makers an illuminated understanding of how risk assessment enhances cyber resilience by extracting risk assessment best practices in the literature supported by relevant standards and regulations.https://www.mdpi.com/2076-3417/14/24/11807cyber resiliencerisk assessmentcritical infrastructures |
| spellingShingle | Ali Aghazadeh Ardebili Marianna Lezzi Mahdad Pourmadadkar Risk Assessment for Cyber Resilience of Critical Infrastructures: Methods, Governance, and Standards Applied Sciences cyber resilience risk assessment critical infrastructures |
| title | Risk Assessment for Cyber Resilience of Critical Infrastructures: Methods, Governance, and Standards |
| title_full | Risk Assessment for Cyber Resilience of Critical Infrastructures: Methods, Governance, and Standards |
| title_fullStr | Risk Assessment for Cyber Resilience of Critical Infrastructures: Methods, Governance, and Standards |
| title_full_unstemmed | Risk Assessment for Cyber Resilience of Critical Infrastructures: Methods, Governance, and Standards |
| title_short | Risk Assessment for Cyber Resilience of Critical Infrastructures: Methods, Governance, and Standards |
| title_sort | risk assessment for cyber resilience of critical infrastructures methods governance and standards |
| topic | cyber resilience risk assessment critical infrastructures |
| url | https://www.mdpi.com/2076-3417/14/24/11807 |
| work_keys_str_mv | AT aliaghazadehardebili riskassessmentforcyberresilienceofcriticalinfrastructuresmethodsgovernanceandstandards AT mariannalezzi riskassessmentforcyberresilienceofcriticalinfrastructuresmethodsgovernanceandstandards AT mahdadpourmadadkar riskassessmentforcyberresilienceofcriticalinfrastructuresmethodsgovernanceandstandards |