We gratefully acknowledge support from
the Simons Foundation and member institutions.
Full-text links:

Download:

Current browse context:

q-fin.RM

Change to browse by:

References & Citations

Bookmark

(what is this?)
CiteULike logo BibSonomy logo Mendeley logo del.icio.us logo Digg logo Reddit logo ScienceWISE logo

Quantitative Finance > Risk Management

Title: Cyber Risk Assessment for Capital Management

Abstract: Cyber risk is an omnipresent risk in the increasingly digitized world that is known to be difficult to quantify and assess. Despite the fact that cyber risk shows distinct characteristics from conventional risks, most existing models for cyber risk in the insurance literature have been purely based on frequency-severity analysis, which was developed for classical property and casualty risks. In contrast, the cybersecurity engineering literature employs different approaches, under which cyber incidents are viewed as threats or hacker attacks acting on a particular set of vulnerabilities. There appears a gap in cyber risk modeling between engineering and insurance literature. This paper presents a novel model to capture these unique dynamics of cyber risk known from engineering and to model loss distributions based on industry loss data and a particular company's cybersecurity profile. The analysis leads to a new tool for allocating resources of the company between cybersecurity investments and loss-absorbing reserves.
Comments: This paper was first presented on July 5, 2021, at the 24th International Congress on Insurance: Mathematics and Economics
Subjects: Risk Management (q-fin.RM); Cryptography and Security (cs.CR); General Economics (econ.GN); Optimization and Control (math.OC)
Cite as: arXiv:2205.08435 [q-fin.RM]
  (or arXiv:2205.08435v1 [q-fin.RM] for this version)

Submission history

From: Linfeng Zhang [view email]
[v1] Tue, 17 May 2022 15:25:23 GMT (115kb,D)

Link back to: arXiv, form interface, contact.