Talk With an Expert

Evaluation of Comprehensive Taxonomies for Information Technology Threats

Evaluation of Comprehensive Taxonomies for Information Technology Threats (PDF, 2.62MB)Published: 26 Mar, 2018
Created by:
Steven Launius

Categorization of all information technology threats can improve communication of risk for an organization's decision-makers who must determine the investment strategy of security controls. While there are several comprehensive taxonomies for grouping threats, there is an opportunity to establish the foundational terminology and perspective for communicating threats across the organization. This is important because confusion about information technology threats pose a direct risk of damaging an organization's operational longevity. In order for leadership to allocate security resources to counteract prevalent threats in a timely manner, they must understand those threats quickly. A study that investigates categorization techniques of information technology threats to nontechnical decision-makers through a qualitative review of grouping methods for published threat taxonomies could remedy the situation.