The Cyber Stress Test was designed by Robert Bigman, whose career spanned 30 years at the U.S. Central Intelligence Agency (CIA), with the last 15 years as its CISO. The Cyber Stress Test is based on his experience protecting some of the world's most sensitive networks and quantifies an organization's security risk posture across five categories - Program Governance, Security Organization, Policies and Standards, Technical Security, and Mitigation Procedures. The overall and category risk scores generated by the Cyber Stress Test provide a pragmatic benchmark and actionable insights for determining an organization's cyber security preparedness including areas that need strengthening against threats.
The award-winning Agiliance RiskVisionT Managed Risk-as-a-Service (M-RaaS) is being used to implement the Cyber Stress Test evaluations. It presents users with a confidential, comprehensive, and secure survey of 79 questions that requires simple yes, no, or don't know answers. Users can complete the test in one or multiple sessions, browse questions non-linearly by category, and save their partial answers at any time. Once submitted, they can view, share, and print accurate and persistent risk scores for overall and individual category results.
Organizations are encouraged to take the Cyber Stress Test before they fall victim to a debilitating cyber-attack, or to a regulator who tests them before they test themselves. According to the Ponemon Institute 2013 Cost of Cyber Crime Study, since 2012 cybercrime costs have risen 26% and the time it takes to resolve cyber-attacks has increased 33%. Independent research studies estimate the global cost of cybercrime for enterprises and consumers to be between USD 300 billion and USD 500 billion. Meanwhile, in November the UK Bank of England, Treasury and Financial Conduct Authority (FCA) will simulate a major cyber-attack on banks to assess the preparedness of the UK's core financial services providers.
"The Cyber Stress Test was inspired by the Dodd-Frank Act Capital Stress Test given annually to major US financial services institutions," said Robert Bigman, chief executive officer at 2BSecure. "After consulting with a wide range of CIOs, CROs, and CISOs in the commercial sector, we identified a large unmet need for a comprehensive, easy to implement security risk assessment service that provides visibility into an organization's cyber threat preparedness from governance to mitigation. That is exactly what the Cyber Stress Test delivers."
"You can schedule an audit, but you can't schedule a cyber-attack," said Agiliance president and chief executive officer Joe Fantuzzi. "We collaborated with Robert and 2BSecure to make it fast and easy for organizations to take the Cyber Stress Test using the Agiliance RiskVision cloud service. It provides a simple and secure way for any global organization to measure their risk posture and establish a baseline for knowing where and how they need to harden their cyber security defenses."
Click here to see an example Cyber Stress Test report. Register here to test your cyber security defense readiness. Once registered, you will receive an email with a link to the Cyber Stress Test on behalf of and for the benefit of your organization.
2BSecure was founded by Robert Bigman upon retiring from a 30 year career at the Central Intelligence Agency. With over 25 years of information security experience, Robert served the last 15 years as the Agency's Chief Information Security Officer. Receiving numerous awards, Robert built the model information security program in the U.S. Intelligence Community. Robert contributed to almost every Intelligence Community and U.S. Government information security policy and frequently briefed congressional committees and presidential commissions. For more information, please visit http://2bsecurellc.vpweb.com.
Agiliance is the leading independent provider of Integrated Risk Management solutions for Governance and Security programs. Agiliance RiskVision is automating how Global 2000 companies and government agencies achieve continuous monitoring of big data across financial, operations, and IT domains to orchestrate incident, threat, and vulnerability actions in real time. Agiliance RiskVision customers demonstrate automation use cases within 30 days on-demand, and within 60 days on-premise, made possible by a configurable platform and applications, broad library of technology integrations, and vast domain and regulatory content. Agiliance RiskVision scales with businesses, effectively managing assets, data, people, and processes to achieve 100% risk and compliance coverage. Its real-time risk analysis leads to optimized business performance and better investment decisions. For more information, please visit www.agiliance.com.