Renn, O. (2021). New challenges for risk analysis: Systemic risks. Journal of Risk Research, 24(1), 127–133. https://doi.org/10.1080/13669877.2020.1779787 The paper relates to an integrative risk concept including evaluation criteria, different risk classes, and corresponding management strategies for the handling of systemic risks. The paper argues that a deliberative approach is needed for risk management and policy-making in risk governance to prevent, mitigate or control systemic risks.
Klinke, A., & Renn, O. (2021). The coming of age of risk governance. Risk Analysis: An International Journal, 41(3), 544–557. In this paper, the authors propose an advanced conceptualization of how to handle risk with the idea that risk governance begins with the critique and expansion of the traditional idea and standard practices of risk analysis.
Yusif, S., & Hafeez-Baig, A. (2021). A conceptual model for cybersecurity governance. Journal of Applied Security Research, 16(4), 490–513. https://doi.org/10.1080/19361610.2021.1918995 In this article, the authors develop a model for effective cybersecurity governance designed to address the organizational challenges, conceptualized as factors that must continuously be measured and evaluated. The components include strategy, processes, compliance, and leadership oversight.
Schweizer, P.-J. (2021). Systemic risks – concepts and challenges for risk governance. Journal of Risk Research, 24(1), 78–93. https://doi.org/10.1080/13669877.2019.1687574 The concept of inclusive risk governance serves as a guiding principle for this paper. In particular, the article draws on the Risk Governance Framework by the International Risk Governance Council to address the challenges of systemic risks which originate in tightly coupled systems.
Ashiku, L., & Dagli, C. (2020). Agent based cybersecurity model for business entity risk assessment. 2020 IEEE International Symposium on Systems Engineering (ISSE), Systems Engineering (ISSE), 2020 IEEE International Symposium On, 1–6. https://doi.org/10.1109/ISSE49799.2020.9272234 This paper presents an agent-based system model to conceptualize and extract the explicit and latent structure of the complex enterprise systems as well as human interactions within the system to determine common vulnerabilities of the entity. A risk-based approach to modeling the cybersecurity of a business entity is utilized to derive the rate of attacks.