The CyberReadiness.IT programme aims at providing methodologies and tools useful to measure the impact of the human factor in the assessment of an organisation’s cyber risks, starting from the answers provided to a specific questionnaire by each person of the organisation itself.
The questionnaire is “tailor-made” on the basis of the characteristics of the organisation and, during delivery, the questions are “dynamically” modified on the basis of the answers provided.
From a methodological point of view, the questionnaire is based on the National Framework for Cybersecurity and Data Protection and on an innovative scientific methodology called the Cyber Security Human Readiness Index (CSHRI). In particular, it permits the evaluation, for each individual who fills it out, of certain potentially critical aspects, among which:
Depending on the specific needs of the client organisation, the questionnaire can be supplemented with specific questions related to the need to collect aggregate data useful to highlight possible vulnerabilities and the most relevant technical-organisational factors exogenous and endogenous to the organisation.
In this sense, the CyberReadiness.IT programme allows to:
The main advantages of using the CyberReadiness.IT programme are at both individual and organisational level. In particular, for the individual, the programme provides flexible and adaptable tools necessary for the cybersecurity assessment of each user, while, at the organisational level, the use of the programme allows the assessment of response capabilities, also in relation to changes in the threat and cyber risks correlated with the human factor.
In both cases, then, the CyberReadiness.IT programme is able to identify and propose an appropriate set of actions, aimed at mitigating the critical elements detected by the Cybersecurity Human Readiness Index, through specific and customised remediation tools based both on the results of the questionnaire and on the needs of the client organisation.
From an operational point of view:
From an implementation point of view, the CyberReadiness.IT programme complies with the most stringent confidentiality and IT security standards.
In terms of deployment, the programme uses a platform available in the following versions:
Luigi Martino, Università di Firenze