#CYBERSECURITY: #MANAGEMENTSCIENCE AND #INNOVATION
@DrSallyErnst
UK and Australian #CyberSecurityNetworks
1
@DrSallyErnst
#CyberSecurity: a #ManagementScience and
#Innovation lens on #ForensicAccounting as
an approach to #CyberDefenses Effectiveness
TIME & COST
#CyberDefenses
Effectiveness $Loss
to us
$Value to
#CyberCriminals
= +
3
$Loss
to others
=
n
What
information
do you
have?
Where is it?
Is there an offline backup?
4
CYBERSECURITY IS
INNOVATION #CyberSecurityNetworks #CyberInnovation
#DisruptingCybercrime 5
THE GOTCHA!
• Access to do and see
what you can do and
see
• Bypassing traditional
security controls
6
MALWARE
• Is just software
• Like any software, it has
to:
• get to us
• run
7
Driveby Phishing
External Media
8
PUT AN EXTRA STEP
IN the process #2Factor #Breathe #Verify
9
#ASDTOP4
• Keep software up-to-
date
• Prevent other software
running
• Limit administrator
access
• and what people can
do and see
10
Know what to do
Monitor
Test 11
ROBUST OPEN STANDARDS eg. #NIST #NoT #SmartCities #Quantum #ISO #Blockchain #OWASP #PCI DSS
12
13
SOME SAMPLE
SCENARIOS For illustrative purposes only
#DISRUPTINGCYBERCRI
ME Communication and Collaboration
#CyberInnovation
DIGITAL HEALTH increased value retained by us
16
–Oxford Dictionary
“Herd Immunity: “General immunity to a pathogen in a population based on the acquired immunity to it by a
high proportion of members over time.”
17
18
REFERENCES AND
READING • #ASDTop4 Link: http://www.asd.gov.au/infosec/top-mitigations/top-4-strategies-
explained.htm
• Gotcha! Link: https://www.amazon.com/GOTCHA-Little-Black-Safer-
xperience/dp/1613398085
• NIST Link: http://csrc.nist.gov/
• OWASP Link: https://www.owasp.org
• ISO Link: http://www.iso.org/iso/home/standards/management-standards/iso27001.htm
• Digital Built Environment Link: http://www.siba.com.au/getattachment/Advocacy/Advocacy-
Requests/The-Use-of-Smart-ICT-in-the-Planning-Design-and-Us/DigitalBuiltEnvironment-
SpatialConstructionInformationV2-151120.pdf
• *4th Forensic Accounting Teaching and Research Conference 2016 Bond University
https://bond.edu.au/about-bond/university/4th-forensic-accounting-teaching-and-research-
symposium 19
20