Options
An adaptive supply chain cyber risk management methodology
Citation Link: https://doi.org/10.15480/882.1491
Publikationstyp
Conference Paper
Publikationsdatum
2017-10
Sprache
English
First published in
Proceedings of the Hamburg International Conference of Logistics (HICL);23
Number in series
23
Start Page
405
End Page
425
Citation
Digitalization in supply chain management and logistics
Contribution to Conference
Publisher Link
Publisher
epubli
Maritime information infrastructures have developed to highly interrelated cyber
ecosystems, where ports as well as their partners are connected in dynamic Information
and Communication Technology (ICT)-based maritime supply chains.
This makes them open and vulnerable to the rapidly changing ICT threat landscape.
Hence, attacks on a seemingly isolated system of one business partner
may propagate through the whole supply chain, causing cascading effects and
resulting in large-scale impacts. In this article, we want to present a novel risk
management methodology to assess the risk level of an entire maritime supply
chain. This methodology builds upon publicly available information, well-defined
mathematical approaches and best practices to automatically identify and assess
vulnerabilities and potential threats of the involved cyber assets. This leads
to a constantly updated risk evaluation of each business partner’s cyber assets
together with their cyber interconnections with other business partners. The
presented risk management methodology is based on qualitative risk scales,
which makes the assessment as well as the results more intuitive. Furthermore, it
enables a holistic view on all of the integrated ICT-systems as well as their interdependencies and thus can increase the security level of both a whole supply chain
and every participating business partner.
ecosystems, where ports as well as their partners are connected in dynamic Information
and Communication Technology (ICT)-based maritime supply chains.
This makes them open and vulnerable to the rapidly changing ICT threat landscape.
Hence, attacks on a seemingly isolated system of one business partner
may propagate through the whole supply chain, causing cascading effects and
resulting in large-scale impacts. In this article, we want to present a novel risk
management methodology to assess the risk level of an entire maritime supply
chain. This methodology builds upon publicly available information, well-defined
mathematical approaches and best practices to automatically identify and assess
vulnerabilities and potential threats of the involved cyber assets. This leads
to a constantly updated risk evaluation of each business partner’s cyber assets
together with their cyber interconnections with other business partners. The
presented risk management methodology is based on qualitative risk scales,
which makes the assessment as well as the results more intuitive. Furthermore, it
enables a holistic view on all of the integrated ICT-systems as well as their interdependencies and thus can increase the security level of both a whole supply chain
and every participating business partner.
Schlagworte
IT security
cyber risk management
cyber risk assessment
maritime supply chains
DDC Class
330: Wirtschaft
Loading...
Name
schauer_stamer_bosse_pavlidis_mouratidis_könig_papastergiou_cyber_risk_management_hicl_2017.pdf
Size
1.12 MB
Format
Adobe PDF