Cyber Insurance and the Management of Information Security Risk
Department
Information Systems
Document Type
Book Chapter
Publication Date
2011
Abstract
There is no business endeavor with profit motive, yet without attendant risks. Businesses must face risk in their pursuit of return on investment. Risk as opposed to uncertainty is more manageable -- often we are able to ascribe an informed mathematical probability on its realization, and assign an expect value of the concomitant loss. The particular type of risk that we discuss here concerns utilization of information assets in businesses and the risks arising thereof -- the information security risks or cyber risks.