Speaker: Brian Barnier
For information risk analysts who seek to discover how methods from other risk management disciplines can help them meet information risk challenges, this webinar shares methods from critical thinking, systems thinking, and design thinking. Cybersecurity is a complex, dynamic, and often chaotic system. Thus, the nature of problems to be solved in any system is shaped by that system. Thus, the math and method tools used for cybersecurity need to reflect the nature of the system and nature of real problems being solved. This is different from the tools from the world of more stable systems that structurally lack the capabilities needed for cybersecurity. To evaluate risk in a system, the risk methods must reflect the dynamics of the system and the nature of the real problems in the system confronting decision-makers.
This webinar is for people who have a troubleshooter’s spirit, who want to understand “how it works” better than their adversaries.
We will overview:
Critical, systems, and design thinking journey with “other risk disciplines” for over a century
Critical thinking, structural blindness, and cognitive bias
Risk in decision science, including mechanical and behavior data, context of outcomes, value creation and acceptable risk
Implications for daily work in envisioning futures, Controls Chain of Fitness, scenario analysis, and reporting clarity