Communication Firms - 2021

The Communication Firms computation develops quantitative risk measurements and security benchmarks for telecommunication providers across OECD countries

Communication Firms

This assessment focuses on communications as a critical infrastructure sector. Participating firms are fixed line or mobile providers with sophisticated defenses. The SCRAM team is partnering with the OECD on this data collection to help bridge the information gap in digital security.

Contact scram@mit.edu to participate.

Outputs:

Security control adoption benchmarks
Ransomware preparedness

Time estimate:
5-15 hours for a full-time employee

Next run:
Early 2022

Communication Firm Benchmarking 2021

Templates / Documents

Background and Instructions

Overview (slides)
Session 1: Benchmarking and losses (slides, video)
Session 2: Loss calculations and outliers (slides, video)
Session 3: Attribution of losses to controls (slides, video)
Session 4: Running the computation(slides, video)