The Colloquium (CISSE)

Archives

Simulating Cybersecurity Risk Using Advanced Quantitative Risk Assessment Techniques: A Teaching Case Study

Simulating Cybersecurity Risk Using Advanced Quantitative Risk Assessment Techniques: A Teaching Case Study
Simulating Cybersecurity Risk Using Advanced Quantitative Risk Assessment Techniques: A Teaching Case Study
File Size:
2.19 MB
Author:
Basil Hamdan
Date:
31 December 2022
Downloads:
465 x
This paper; a scenario-based teaching case study, aims to introduce students in a Cybersecurity Risk Management course to advanced quantitative risk assessment techniques. The case study utilizes a fictitious company for which a risk assessment is underway. Assuming the role of a Cybersecurity Risk Team of the company, the students are tasked with determining the risk exposure the company faces from a threat scenario against one of its mission-critical information resources. Specifically, the students are required to (1) quantify the monetary losses that could result from a threat scenario, (2) compute the inherited risk exposure from the threat scenario (3) compute the residual risk given the implantation of certain security controls, and (4) compute returns on security controls. The case study holds the promise of enhancing the overall learning of the students and boosting their marketability as future cybersecurity professionals.
 
 
Powered by Phoca Download
CISSE

CISSE recognizes that the protection of information and infrastructures that are used to create, store, process, and communicate information is vital to business continuity and security. The goal of The Colloquium is to work together to define current and emerging requirements for information assurance education and to influence and encourage the development and expansion of information assurance curricula, especially at the graduate and undergraduate levels.

GuideStar Seal of Transparency

CISSE earned a Gold Seal with GuideStar. See our non-profit profile to learn more and make a difference with your support.

Candid Profile

Recent Posts

2 Apr 2026
30th Colloquium - Call for Papers

The Colloquium on Information Systems Security Education (CISSE) proudly marks its 30th anniversary in 2026, celebrating three decades as the longest-running and premier conference dedicated to cybersecurity education.

29 Mar 2026
30th Colloquium - Sponsorship Opportunities

As we mark the 30th anniversary of The Colloquium for Information Systems Security Education (CISSE), we invite strategic partners and thought leaders to join us in advancing the future of cybersecurity education.

© 2026 The Colloquium for Information Systems Security Education (CISSE). All rights reserved. This copyright notice applies only to website content on cisse.info and does not apply to the journal hosted at journal.cisse.info. All journal articles published in The Journal of The Colloquium for Information Systems Security Education (JCISSE) are © their respective authors and are distributed under the Creative Commons Attribution 4.0 International (CC BY 4.0) license.