TIM-8305: v1

Stankov, I., & Gotseva, D. (2020). An Overview of Security and Risk Management in Business Intelligence Systems. 2020 III International Conference on High Technology for Sustainable Development (HiTech), High Technology for Sustainable Development (HiTech), 2020 III International Conference On, 1–5.
This article presents some of the most frequently used systems that help in taking business decisions as well as a few ISO standards that provide the most important security and risk management in the used business analytical systems.

Marinos, N. (2019). CYBERSECURITY: Agencies Need to Fully Establish Risk Management Programs and Address Challenges. GAO Reports, i-112.
This article presents the government report on the use of established key elements of a cyber security risk management program by the agencies, the challenges faced by them in doing so and steps taken by Office of Management and Budget (OMB) and Department of Homeland Security (DHS) taken to meet their risk management responsibilities. Review pages 1-16.

Barker, W., Scarfone, K., Fisher, W., & Souppaya, M. (2021). Cybersecurity Framework Profile for Ransomware Risk Management (Preliminary Draft) (No. NIST Internal or Interagency Report (NISTIR) 8374 (Draft)). National Institute of Standards and Technology.
The National Institute of Standards and Technology (NIST) recently released a preliminary draft of its Cybersecurity Framework Profile for Ransomware Risk Management.

Carol A. Siegel, & Mark Sweeney. (2020). Cyber Strategy: Risk-Driven Security and Resiliency. Auerbach Publications.
Read Chapter 1 of this resource. Chapter 1 discusses the reasons why it is important to develop a cybersecurity and cyber resiliency strategy.

Butler, T., & Brooks, R. (2021). Achieving operational resilience in the financial industry: Insights from complex adaptive systems theory and implications for risk management. Journal of Risk Management in Financial Institutions, 14(4), 395–407.
This article discusses how senior risk professionals on how resilience might be achieved by providing a much-needed frame of reference for those planning to transform their complex and chaotic organizations into resilient complex adaptive systems.

Sengupta, S. (2020, July 1). Risk Management in an Era of Extreme Uncertainty. Supply Chain Management Review, 24(4), 34.
This article discusses ten ideas for the future management of risk.

Homeland Security Systems Engineering & Development Institute. (2018). Cyber threat modeling: Survey, assessment, and representative framework. MITRE. https://www.mitre.org/sites/default/files/2021-11/prs-18-1174-ngci-cyber-threat-modeling.pdf
Review various models and techniques related to cybersecurity modelling in this MITRE document. Review pages 1 through 25 and other pages that you find relevant to your work.