all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

A GDPR-compliant Risk Management Approach based on Threat Modelling and ISO 27005. (arXiv:2306.04783v1 [cs.CR])

Add to bookmarks
June 9, 2023, 1:10 a.m. | Denys A. Flores, Ricardo Perugachi

cs.CR updates on arXiv.org arxiv.org

Computer systems process, store and transfer sensitive information which
makes them a valuable asset. Despite the existence of standards such as ISO
27005 for managing information risk, cyber threats are increasing, exposing
such systems to security breaches, and at the same time, compromising users'
privacy. However, threat modelling has also emerged as an alternative to
identify and analyze them, reducing the attack landscape by discarding low-risk
attack vectors, and mitigating high-risk ones. In this work, we introduce a
novel threat-modelling-based …

asset breaches computer cyber cyber threats exposing gdpr information iso management privacy process risk risk management security security breaches sensitive information standards store systems threat threat modelling threats transfer

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Causal Inference with Differentially Private (Clustered) Outcomes 23 hours ago | arxiv.org
algorithm arxiv cs.cr cs.lg +12
An artificial neural network approach to finding the key length of the Vigen\`{e}re cipher 23 hours ago | arxiv.org
accuracy article artificial arxiv +9
Generic Selfish Mining MDP for DAG Protocols 23 hours ago | arxiv.org
analysis arxiv bitcoin breaking +15
Tight Differential Privacy Guarantees for the Shuffle Model with $k$-Randomized Response 23 hours ago | arxiv.org
algorithms arxiv cs.cr data +14
Succinct arguments for QMA from standard assumptions via compiled nonlocal games 23 hours ago | arxiv.org
argument arxiv building crypto +8
On Training a Neural Network to Explain Binaries 23 hours ago | arxiv.org
aid arxiv binary code +15
Transferring Troubles: Cross-Lingual Transferability of Backdoor Attacks in LLMs with Instruction Tuning 23 hours ago | arxiv.org
arxiv attacks backdoor backdoor attacks +14
Leveraging Label Information for Stealthy Data Stealing in Vertical Federated Learning 23 hours ago | arxiv.org
arxiv attack attacks cs.cr +16
An Extensive Survey of Digital Image Steganography: State of the Art 23 hours ago | arxiv.org
adoption art arxiv attention +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Security Engineer II- Full stack Java with React

@ JPMorgan Chase & Co. | Hyderabad, Telangana, India
View on infosec-jobs.com

Cybersecurity SecOps

@ GFT Technologies | Mexico City, MX, 11850
View on infosec-jobs.com

Senior Information Security Advisor

@ Sun Life | Sun Life Toronto One York
View on infosec-jobs.com

Contract Special Security Officer (CSSO) - Top Secret Clearance

@ SpaceX | Hawthorne, CA
View on infosec-jobs.com

Early Career Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com
View more jobs