Need for an Effective Cyber-Security Risk Management Framework

Mark Bernard, Author of the NIST Cyber-Security Foundation, Canada participates in Risk Roundup with Jayshree Pandya to discuss “Need for an Effective Cyber-Security Risk Management Framework”.



The rapid advances in cyberspace are bringing complex, chaotic, and challenging time for each nation: its government, industries, organizations and academia (NGIOA) in cyberspace, geospace and space (CGS).

As cyberspace is getting deeply embedded across each component of a nation: that is its government, industries, organizations and academia, its crowded interconnections within and across NGIOA in CGS are catching nations off guard.

These interconnections and interdependencies raises an important question, on whether our current risk management framework, tools, technologies and processes are effective in managing the security risks within and across nations geographical boundaries in cyberspace, geospace and space.

How can we visualize and understand the complexity of cyberspace and its interconnections? In simple terms, cyberspace can be visualized as a neural network of a human brain—that runs through all the components of a nation, enabling them to connect, communicate, collaborate and function.

Each connection, and its interconnectedness and interdependencies within and across CGS network brings its own security challenges.  Managing the security risks of this complex digital neural network is vital for each NGIOA.

The independent and interdependent cyberspace-geospace and space brings each NGIOA-I risks- and risks are inevitable. So what are these risks and how do we identify, understand, evaluate and manage them?

About the Guest

Mark Bernard is a cyber-security thought leader, author of the NIST cyber-security foundation and practitioner courses, Canada.

About the Host of Risk Roundup
Jayshree Pandya (née Bhatt) is a visionary leader, who is working passionately with imagination, insight and boldness to achieve “Global Peace through Risk Management”. It is her strong belief that collaboration between and across nations: its government, industries, organizations and academia (NGIOA) will be mutually beneficial to all—for not only in the identification and understanding of critical risks facing one nation, but also for managing the interconnected and interdependent risks facing all nations. She calls on nations to build a shared sense of identity and purpose, for how the NGIOA framework is structured will determine the survival and success of nations in the digital global age. She sees the big picture, thinks strategically and works with the power of intentionality and alignment for a higher purpose—for her eyes are not just on the near at hand but on the future of humanity!
At Risk Group, Jayshree is defining the language of risks and currently developing thought leadership, researching needed practices, tools, framework and systems to manage the “strategic and shared risks” facing nations in a “Global Age”. She believes that cyberspace cannot be secured if NGIOA works in silo within and across its geographical boundaries. As cyber-security requires an integrated NGIOA approach with a common language, she has recently launched “cyber-security risk research center” that will merge the boundaries of “geo-security, cyber-security and space-security”.
Previously, she launched and managed “Risk Management Matters”, an online risk journal and one of the first risk publications, publishing “Industry Risk Reports of Biotechnology, Energy, Healthcare, Nanotechnology, and Natural Disasters” over the course of five years. Jayshree’s inaugural book, “The Global Age: NGIOA @ Risk”, was published by Springer in 2012.

About Risk Roundup

“Risk Roundup” is an “integrated strategic security risk dialogue” for nations: its government,  industries, organizations and academia (NGIOA) in cyberspace, geospace and space (CGS).Risk Roundup is released in both audio and video format and is available for subscription at (Risk Group WebsiteiTunesGoogle PlayStitcher RadioAndroid, and Risk Group Professional Social Media).

About Risk Group
Risk Group believes that risk management, security and peace walk together hand in hand. Though security is related to management of threats and peace to the management of conflict, risk management is related to management of security vulnerabilities as well as management of conflict, and it is not possible to conceive any one of the three without the existence of the other two. All three concepts feed into each other. Risk Group believes that the security we build for ourselves is precarious and uncertain until it is secured for everyone across nations. Tradition becomes our security-so if we build a culture of managing risks effectively it will lead us to security and security will lead us to peace!

Copyright Risk Group LLC. All Rights Reserved