A metric-driven IT risk scoring framework: incorporating contextual and organizational factors

Basit Öğe Kaydı
dc.authorid0009-0009-4710-2569
dc.authorid0000-0003-2865-6370
dc.contributor.authorÜnal, Nezih Mahmuten_US
dc.contributor.authorÇeliktaş, Barışen_US
dc.date.accessioned2025-10-21T06:36:48Z
dc.date.available2025-10-21T06:36:48Z
dc.date.issued2025-09-24
dc.departmentIşık Üniversitesi, Lisansüstü Eğitim Enstitüsü, Bilgisayar Mühendisliği Yüksek Lisans Programıen_US
dc.departmentIşık University, School of Graduate Studies, Master’s Program in Computer Engineeringen_US
dc.departmentIşık Üniversitesi, Mühendislik ve Doğa Bilimleri Fakültesi, Bilgisayar Mühendisliği Bölümüen_US
dc.departmentIşık University, Faculty of Engineering and Natural Sciences, Department of Computer Engineeringen_US
dc.description.abstractRisk analysis is a critical process for organizations seeking to manage their cybersecurity posture effectively. However, traditional risk analysis frameworks, such as the Common Vulnerability Scoring System (CVSS), primarily evaluate technical impacts without incorporating organizational context and dynamic risk factors. This paper presents a metric-based risk analysis framework designed to provide a more adaptable and context-aware risk-scoring framework. The proposed model enables risk owners to define customized threat scenarios and dynamically adjust metric weights based on organizational needs. Unlike traditional approaches, our method integrates contextual parameters to improve the accuracy and relevance of risk calculations. Experimental evaluations demonstrate that the proposed framework enhances risk prioritization and provides more actionable insights for decision-makers. This study contributes to the field by addressing the limitations of existing risk analysis models and offering a systematic approach for cybersecurity risk management.en_US
dc.description.versionPublisher's Versionen_US
dc.identifier.citationÜnal, N. M. & Çeliktaş, B. (2025). A metric-driven IT risk scoring framework: incorporating contextual and organizational factors. Paper presented at the 2025 International Conference on Artificial Intelligence, Computer, Data Sciences and Applications (ACDSA), 1-7. doi:https://doi.org/10.1109/ACDSA65407.2025.11166074en_US
dc.identifier.doi10.1109/ACDSA65407.2025.11166074
dc.identifier.endpage7
dc.identifier.isbn9798331535629
dc.identifier.isbn9798331535636
dc.identifier.scopus2-s2.0-105018467434
dc.identifier.scopusqualityN/A
dc.identifier.startpage1
dc.identifier.urihttps://hdl.handle.net/11729/6762
dc.identifier.urihttps://doi.org/10.1109/ACDSA65407.2025.11166074
dc.indekslendigikaynakScopusen_US
dc.institutionauthorÜnal, Nezih Mahmuten_US
dc.institutionauthorÇeliktaş, Barışen_US
dc.institutionauthorid0009-0009-4710-2569
dc.institutionauthorid0000-0003-2865-6370
dc.language.isoenen_US
dc.peerreviewedYesen_US
dc.publicationstatusPublisheden_US
dc.publisherInstitute of Electrical and Electronics Engineers Inc.en_US
dc.relation.ispartof2025 International Conference on Artificial Intelligence, Computer, Data Sciences and Applications (ACDSA)en_US
dc.relation.publicationcategoryKonferans Öğesi - Uluslararası - Öğrencien_US
dc.relation.publicationcategoryKonferans Öğesi - Uluslararası - Kurum Öğretim Elemanıen_US
dc.rightsinfo:eu-repo/semantics/closedAccessen_US
dc.subjectCVSSen_US
dc.subjectCybersecurityen_US
dc.subjectQualitativeen_US
dc.subjectRisk analysisen_US
dc.subjectRisk scoringen_US
dc.subjectFactor analysisen_US
dc.subjectRisk assessmenten_US
dc.subjectRisk managementen_US
dc.subjectRisk perceptionen_US
dc.subjectAnalysis frameworksen_US
dc.subjectCommon vulnerability scoring systemsen_US
dc.subjectContextual factorsen_US
dc.subjectOrganizational contexten_US
dc.subjectOrganizational dynamicsen_US
dc.subjectOrganizational factorsen_US
dc.subjectQualitativeen_US
dc.subjectRisk analyzeen_US
dc.titleA metric-driven IT risk scoring framework: incorporating contextual and organizational factorsen_US
dc.typeConference Objecten_US
dspace.entity.typePublicationen_US

Dosyalar

Orijinal paket
Listeleniyor 1 - 1 / 1
Küçük Resim Yok
İsim:
A_Metric_Driven_IT_Risk_Scoring_Framework_Incorporating_Contextual_and_Organizational_Factors.pdf
Boyut:
267.5 KB
Biçim:
Adobe Portable Document Format
İndir
Lisans paketi
Listeleniyor 1 - 1 / 1
Küçük Resim Yok
İsim:
license.txt
Boyut:
1.17 KB
Biçim:
Item-specific license agreed upon to submission
Açıklama:
İndir

Koleksiyon

Öğrenci Yayınları Bildiri Koleksiyonu
Bildiri Koleksiyonu | Bilgisayar Mühendisliği Bölümü
Lisansüstü Eğitim Enstitüsü Diğer Yayınlar Koleksiyonu
Scopus İndeksli Yayınlar Koleksiyonu