{"id":"https://openalex.org/W4399729376","doi":"https://doi.org/10.1109/syscon61195.2024.10553535","title":"Towards Developing a Scalable Cyber Risk Assessment and Mitigation Framework","display_name":"Towards Developing a Scalable Cyber Risk Assessment and Mitigation Framework","publication_year":2024,"publication_date":"2024-04-15","ids":{"openalex":"https://openalex.org/W4399729376","doi":"https://doi.org/10.1109/syscon61195.2024.10553535"},"language":"en","primary_location":{"id":"doi:10.1109/syscon61195.2024.10553535","is_oa":false,"landing_page_url":"https://doi.org/10.1109/syscon61195.2024.10553535","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 IEEE International Systems Conference (SysCon)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5110468876","display_name":"Adeel Malik","orcid":null},"institutions":[{"id":"https://openalex.org/I150149174","display_name":"Mercer University","ror":"https://ror.org/04bk7v425","country_code":"US","type":"education","lineage":["https://openalex.org/I150149174"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Adeel A. Malik","raw_affiliation_strings":["Mercer University,Department of Computer Science,Macon,Georgia,USA","Department of Computer Science, Mercer University, Macon, Georgia, USA"],"affiliations":[{"raw_affiliation_string":"Mercer University,Department of Computer Science,Macon,Georgia,USA","institution_ids":["https://openalex.org/I150149174"]},{"raw_affiliation_string":"Department of Computer Science, Mercer University, Macon, Georgia, USA","institution_ids":["https://openalex.org/I150149174"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5065745202","display_name":"Deepak K. Tosh","orcid":"https://orcid.org/0000-0001-8492-1066"},"institutions":[{"id":"https://openalex.org/I164936912","display_name":"The University of Texas at El Paso","ror":"https://ror.org/04d5vba33","country_code":"US","type":"education","lineage":["https://openalex.org/I164936912"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Deepak K. Tosh","raw_affiliation_strings":["University of Texas at El Paso,Department of Computer Science,El Paso,Texas,USA","Department of Computer Science, University of Texas at El Paso, El Paso, Texas, USA"],"affiliations":[{"raw_affiliation_string":"University of Texas at El Paso,Department of Computer Science,El Paso,Texas,USA","institution_ids":["https://openalex.org/I164936912"]},{"raw_affiliation_string":"Department of Computer Science, University of Texas at El Paso, El Paso, Texas, USA","institution_ids":["https://openalex.org/I164936912"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5110468876"],"corresponding_institution_ids":["https://openalex.org/I150149174"],"apc_list":null,"apc_paid":null,"fwci":1.7184,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.86719841,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9958999752998352,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9922000169754028,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6868114471435547},{"id":"https://openalex.org/keywords/scalability","display_name":"Scalability","score":0.6430307626724243},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.40050363540649414},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3524906039237976},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.15529313683509827},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.10506585240364075}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6868114471435547},{"id":"https://openalex.org/C48044578","wikidata":"https://www.wikidata.org/wiki/Q727490","display_name":"Scalability","level":2,"score":0.6430307626724243},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.40050363540649414},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3524906039237976},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.15529313683509827},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.10506585240364075}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/syscon61195.2024.10553535","is_oa":false,"landing_page_url":"https://doi.org/10.1109/syscon61195.2024.10553535","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 IEEE International Systems Conference (SysCon)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/13","score":0.4099999964237213,"display_name":"Climate action"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":38,"referenced_works":["https://openalex.org/W1540053223","https://openalex.org/W1602619638","https://openalex.org/W2044152003","https://openalex.org/W2101578565","https://openalex.org/W2162583502","https://openalex.org/W2476192137","https://openalex.org/W2522107683","https://openalex.org/W2550780206","https://openalex.org/W2579603034","https://openalex.org/W2590695271","https://openalex.org/W2605497964","https://openalex.org/W2745283865","https://openalex.org/W2769702554","https://openalex.org/W2774546595","https://openalex.org/W2790023090","https://openalex.org/W2797855251","https://openalex.org/W2803684864","https://openalex.org/W2887645765","https://openalex.org/W2911123865","https://openalex.org/W2913912901","https://openalex.org/W2919523599","https://openalex.org/W2938481328","https://openalex.org/W2980390258","https://openalex.org/W2980410826","https://openalex.org/W2997160215","https://openalex.org/W3032033268","https://openalex.org/W3091200039","https://openalex.org/W3124193089","https://openalex.org/W4200396171","https://openalex.org/W4206951258","https://openalex.org/W4213239322","https://openalex.org/W4249769422","https://openalex.org/W4378191903","https://openalex.org/W4382318720","https://openalex.org/W4386361575","https://openalex.org/W4387870957","https://openalex.org/W4388949804","https://openalex.org/W7046132797"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W2389214306","https://openalex.org/W4396696052","https://openalex.org/W2382290278"],"abstract_inverted_index":{"The":[0],"increasing":[1],"dependence":[2],"on":[3,97],"digital":[4,47],"technology":[5],"and":[6,22,30,44,49,68,78,82,101,109,122,131,144,149,181,194,199,210],"the":[7,42,52,63,66,75,119,128,151,154,161,173,205],"internet":[8],"has":[9],"made":[10],"cybersecurity":[11,186],"a":[12,111,164,177,192],"critical":[13],"issue":[14],"for":[15,141],"organizations,":[16],"with":[17],"cyber-attacks":[18],"becoming":[19],"more":[20],"frequent":[21],"sophisticated.":[23],"In":[24],"this":[25,170],"context,":[26],"cyber":[27,38,56,76,98,129,202],"risk":[28,99,130,142,179,206],"evaluation":[29],"mitigation":[31,85,112,132,155,182],"have":[32],"become":[33],"essential":[34],"components":[35],"of":[36,46,54,65,127,137,153,175,207],"modern":[37],"infrastructures":[39],"to":[40,61,72,93,114,197],"ensure":[41],"security":[43],"resilience":[45],"assets":[48],"services":[50],"in":[51,80,167,184],"face":[53],"ever-evolving":[55],"threats.":[57],"This":[58,103],"paper":[59,171],"aims":[60],"emphasize":[62],"significance":[64],"Cyberthreats":[67],"Vulnerability":[69],"Information":[70],"Analysis":[71],"proactively":[73],"understand":[74],"risks":[77,108],"abnormalities":[79],"real-time":[81,178],"provide":[83],"appropriate":[84],"strategies.":[86],"Our":[87,188],"work":[88],"incorporates":[89],"an":[90],"inferencing":[91,104],"layer":[92,105],"our":[94],"AI-engine":[95],"focusing":[96],"assessment":[100,143,180],"mitigation.":[102,145],"prioritizes":[106],"significant":[107],"presents":[110],"plan":[113,156],"address":[115,200],"them.":[116],"We":[117],"discuss":[118],"key":[120],"steps":[121],"processes":[123],"implemented":[124],"as":[125],"part":[126],"(CRAM)":[133],"framework":[134,190],"including":[135],"use":[136],"machine":[138],"learning":[139],"algorithms":[140],"Furthermore,":[146],"we":[147],"evaluate":[148],"compare":[150],"effectiveness":[152],"using":[157],"strategies":[158],"provided":[159],"by":[160],"MITRE":[162],"Corporation,":[163],"trusted":[165],"source":[166],"cybersecurity.":[168],"Overall,":[169],"highlights":[172],"importance":[174],"incorporating":[176],"system":[183],"organizations\u2019":[185],"infrastructure.":[187],"proposed":[189],"provides":[191],"practical":[193],"efficient":[195],"solution":[196],"identify":[198],"potential":[201],"threats,":[203],"minimizing":[204],"data":[208],"breaches":[209],"financial":[211],"loss.":[212]},"counts_by_year":[{"year":2025,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}