Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector

Brignith Gomez; Saul Vargas; Juan Pablo Mansilla

doi:10.1007/978-3-031-48855-9_20

Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector

Brignith Gomez, Saul Vargas, Juan Pablo Mansilla

Facultad de Ingeniería

Universidad Peruana de Ciencias Aplicadas

Producción científica: Capítulo del libro/informe/acta de congreso › Contribución a la conferencia › revisión exhaustiva

1 Cita (Scopus)

Resumen

The Maturity Model for Defense Protocols against Ransomware Scenarios in the mining sector is a useful tool to assess an organization’s level of preparedness against ransomware attacks and design effective strategies to mitigate their impacts. This model, based on the NIST methodology and the ISO 27001 AND 27002 Standards, and the experience of cybersecurity experts, consists of five levels of maturity that go from initial adoption to defense optimization. The Initial level focuses on risk awareness and basic preparation. The Managed level focuses on the protection of critical data and systems, while the Defined level, focuses on early detection and response to incidents. The Managed level seeks response automation and collaboration with third parties, while Optimized level, focuses on continuous improvement and innovation. For each level, achieve the characteristics and objectives allow organizations to assess their current position and establish action plans to improve their readiness. Some recommended best practices include ongoing employee training, implementing technical security measures, conducting incident simulations, adopting backup and recovery solutions, and collaborating with cybersecurity service providers. In summary, the Maturity Model for Ransomware Defense Protocols is a valuable tool to help organizations improve their ability to resist and recover from ransomware attacks. Its focus on best practices and continuous improvement makes it a reference in the field of cybersecurity.

Idioma original	Inglés
Título de la publicación alojada	Advanced Research in Technologies, Information, Innovation and Sustainability - 3rd International Conference, ARTIIS 2023, Proceedings
Editores	Teresa Guarda, Filipe Portela, Jose Maria Diaz-Nafria
Editorial	Springer Science and Business Media Deutschland GmbH
Páginas	264-274
Número de páginas	11
ISBN (versión impresa)	9783031488542
DOI	https://doi.org/10.1007/978-3-031-48855-9_20
Estado	Publicada - 2024
Evento	3rd International Conference on Advanced Research in Technologies, Information, Innovation and Sustainability, ARTIIS 2023 - Madrid, Espana Duración: 18 oct. 2023 → 20 oct. 2023

Serie de la publicación

Nombre	Communications in Computer and Information Science
Volumen	1936
ISSN (versión impresa)	1865-0929
ISSN (versión digital)	1865-0937

Conferencia

Conferencia	3rd International Conference on Advanced Research in Technologies, Information, Innovation and Sustainability, ARTIIS 2023
País/Territorio	Espana
Ciudad	Madrid
Período	18/10/23 → 20/10/23

Acceder al documento

10.1007/978-3-031-48855-9_20

Otros archivos y enlaces

Enlace a la publicación en Scopus

Citar esto

Gomez, B., Vargas, S., & Mansilla, J. P. (2024). Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector. En T. Guarda, F. Portela, & J. M. Diaz-Nafria (Eds.), Advanced Research in Technologies, Information, Innovation and Sustainability - 3rd International Conference, ARTIIS 2023, Proceedings (pp. 264-274). (Communications in Computer and Information Science; Vol. 1936). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-48855-9_20

Gomez, Brignith ; Vargas, Saul ; Mansilla, Juan Pablo. / Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector. Advanced Research in Technologies, Information, Innovation and Sustainability - 3rd International Conference, ARTIIS 2023, Proceedings. editor / Teresa Guarda ; Filipe Portela ; Jose Maria Diaz-Nafria. Springer Science and Business Media Deutschland GmbH, 2024. pp. 264-274 (Communications in Computer and Information Science).

@inproceedings{d6d8a35af1fc4dd8b0ccbe74deb8d102,

title = "Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector",

abstract = "The Maturity Model for Defense Protocols against Ransomware Scenarios in the mining sector is a useful tool to assess an organization{\textquoteright}s level of preparedness against ransomware attacks and design effective strategies to mitigate their impacts. This model, based on the NIST methodology and the ISO 27001 AND 27002 Standards, and the experience of cybersecurity experts, consists of five levels of maturity that go from initial adoption to defense optimization. The Initial level focuses on risk awareness and basic preparation. The Managed level focuses on the protection of critical data and systems, while the Defined level, focuses on early detection and response to incidents. The Managed level seeks response automation and collaboration with third parties, while Optimized level, focuses on continuous improvement and innovation. For each level, achieve the characteristics and objectives allow organizations to assess their current position and establish action plans to improve their readiness. Some recommended best practices include ongoing employee training, implementing technical security measures, conducting incident simulations, adopting backup and recovery solutions, and collaborating with cybersecurity service providers. In summary, the Maturity Model for Ransomware Defense Protocols is a valuable tool to help organizations improve their ability to resist and recover from ransomware attacks. Its focus on best practices and continuous improvement makes it a reference in the field of cybersecurity.",

keywords = "cybersecurity, defense, maturity model, protocol, ransomware",

author = "Brignith Gomez and Saul Vargas and Mansilla, \{Juan Pablo\}",

note = "Publisher Copyright: {\textcopyright} 2024, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 3rd International Conference on Advanced Research in Technologies, Information, Innovation and Sustainability, ARTIIS 2023 ; Conference date: 18-10-2023 Through 20-10-2023",

year = "2024",

doi = "10.1007/978-3-031-48855-9\_20",

language = "Ingl{\'e}s",

isbn = "9783031488542",

series = "Communications in Computer and Information Science",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "264--274",

editor = "Teresa Guarda and Filipe Portela and Diaz-Nafria, \{Jose Maria\}",

booktitle = "Advanced Research in Technologies, Information, Innovation and Sustainability - 3rd International Conference, ARTIIS 2023, Proceedings",

}

Gomez, B, Vargas, S & Mansilla, JP 2024, Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector. En T Guarda, F Portela & JM Diaz-Nafria (eds.), Advanced Research in Technologies, Information, Innovation and Sustainability - 3rd International Conference, ARTIIS 2023, Proceedings. Communications in Computer and Information Science, vol. 1936, Springer Science and Business Media Deutschland GmbH, pp. 264-274, 3rd International Conference on Advanced Research in Technologies, Information, Innovation and Sustainability, ARTIIS 2023, Madrid, Espana, 18/10/23. https://doi.org/10.1007/978-3-031-48855-9_20

Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector. / Gomez, Brignith; Vargas, Saul; Mansilla, Juan Pablo.
Advanced Research in Technologies, Information, Innovation and Sustainability - 3rd International Conference, ARTIIS 2023, Proceedings. ed. / Teresa Guarda; Filipe Portela; Jose Maria Diaz-Nafria. Springer Science and Business Media Deutschland GmbH, 2024. p. 264-274 (Communications in Computer and Information Science; Vol. 1936).

Producción científica: Capítulo del libro/informe/acta de congreso › Contribución a la conferencia › revisión exhaustiva

TY - GEN

T1 - Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector

AU - Gomez, Brignith

AU - Vargas, Saul

AU - Mansilla, Juan Pablo

PY - 2024

Y1 - 2024

N2 - The Maturity Model for Defense Protocols against Ransomware Scenarios in the mining sector is a useful tool to assess an organization’s level of preparedness against ransomware attacks and design effective strategies to mitigate their impacts. This model, based on the NIST methodology and the ISO 27001 AND 27002 Standards, and the experience of cybersecurity experts, consists of five levels of maturity that go from initial adoption to defense optimization. The Initial level focuses on risk awareness and basic preparation. The Managed level focuses on the protection of critical data and systems, while the Defined level, focuses on early detection and response to incidents. The Managed level seeks response automation and collaboration with third parties, while Optimized level, focuses on continuous improvement and innovation. For each level, achieve the characteristics and objectives allow organizations to assess their current position and establish action plans to improve their readiness. Some recommended best practices include ongoing employee training, implementing technical security measures, conducting incident simulations, adopting backup and recovery solutions, and collaborating with cybersecurity service providers. In summary, the Maturity Model for Ransomware Defense Protocols is a valuable tool to help organizations improve their ability to resist and recover from ransomware attacks. Its focus on best practices and continuous improvement makes it a reference in the field of cybersecurity.

AB - The Maturity Model for Defense Protocols against Ransomware Scenarios in the mining sector is a useful tool to assess an organization’s level of preparedness against ransomware attacks and design effective strategies to mitigate their impacts. This model, based on the NIST methodology and the ISO 27001 AND 27002 Standards, and the experience of cybersecurity experts, consists of five levels of maturity that go from initial adoption to defense optimization. The Initial level focuses on risk awareness and basic preparation. The Managed level focuses on the protection of critical data and systems, while the Defined level, focuses on early detection and response to incidents. The Managed level seeks response automation and collaboration with third parties, while Optimized level, focuses on continuous improvement and innovation. For each level, achieve the characteristics and objectives allow organizations to assess their current position and establish action plans to improve their readiness. Some recommended best practices include ongoing employee training, implementing technical security measures, conducting incident simulations, adopting backup and recovery solutions, and collaborating with cybersecurity service providers. In summary, the Maturity Model for Ransomware Defense Protocols is a valuable tool to help organizations improve their ability to resist and recover from ransomware attacks. Its focus on best practices and continuous improvement makes it a reference in the field of cybersecurity.

KW - cybersecurity

KW - defense

KW - maturity model

KW - protocol

KW - ransomware

UR - https://www.scopus.com/pages/publications/85181978463

U2 - 10.1007/978-3-031-48855-9_20

DO - 10.1007/978-3-031-48855-9_20

M3 - Contribución a la conferencia

AN - SCOPUS:85181978463

SN - 9783031488542

T3 - Communications in Computer and Information Science

SP - 264

EP - 274

BT - Advanced Research in Technologies, Information, Innovation and Sustainability - 3rd International Conference, ARTIIS 2023, Proceedings

A2 - Guarda, Teresa

A2 - Portela, Filipe

A2 - Diaz-Nafria, Jose Maria

PB - Springer Science and Business Media Deutschland GmbH

T2 - 3rd International Conference on Advanced Research in Technologies, Information, Innovation and Sustainability, ARTIIS 2023

Y2 - 18 October 2023 through 20 October 2023

ER -

Gomez B, Vargas S, Mansilla JP. Maturity Model of Response Protocols to Ransomware Scenarios in the Mining Sector. En Guarda T, Portela F, Diaz-Nafria JM, editores, Advanced Research in Technologies, Information, Innovation and Sustainability - 3rd International Conference, ARTIIS 2023, Proceedings. Springer Science and Business Media Deutschland GmbH. 2024. p. 264-274. (Communications in Computer and Information Science). doi: 10.1007/978-3-031-48855-9_20