Dan Vasile - Risk Calculation and Visualization

1. A new paradigm for risk calculation and visualization

2. FrAppSec Framework for Application Security https://frappsec.org

3. risk as a bubble

4. = risk appetite

5. Risk = Impact x Likelihood

6. Risk = Impact x Likelihood x Business Factor

7. Risk 1 = Impact x Likelihood x Business Factor Risk 2 = Impact x Likelihood x Business Factor . . Risk n = Impact x Likelihood x Business Factor

8. Risk 1 = Impact x Likelihood x Business Factor Risk 2 = Impact x Likelihood x Business Factor . . Risk n = Impact x Likelihood x Business Factor Total Risk = Σ Risk i

11. = risk appetite

12. Risk appetite = 30 risk points, no high risks

13. Risk appetite = 30 risk points, no high risks Case 1 25

16. A meaningful risk visualization

17. A meaningful risk visualization Sirius Polaris Vega Aldebaran Rigel Deneb Betelgeuse Arcturus Canopus Altair Fomalhaut Pollux

18. A meaningful risk visualization Sirius Polaris Vega Aldebaran Rigel Deneb Betelgeuse Arcturus Canopus Altair Fomalhaut Pollux

19. A meaningful risk visualization Sirius Polaris Vega Aldebaran Rigel Deneb Betelgeuse Arcturus Canopus Altair Fomalhaut Pollux 20182017

20. 1. Combat risk illiteracy 2. View risk as a bubble 3. Use meaningful visualization

21. FrAppSec.org @DanCVasile

Dan Vasile - Risk Calculation and Visualization

Recommended

Recommended

More Related Content

Similar to Dan Vasile - Risk Calculation and Visualization

Similar to Dan Vasile - Risk Calculation and Visualization (18)

More from Dan Vasile

More from Dan Vasile (6)

Recently uploaded

Recently uploaded (20)

Dan Vasile - Risk Calculation and Visualization

Editor's Notes