Cyber Resiliency Assessment: Enabling Architectural ImprovementMay 2013
Cyber resiliency assessments are intended to identify where, how, and when cyber resiliency techniques can be applied to improve architectural resiliency against advanced cyber threats. This document presents a general process for architectural assessment. The process can be applied to an operational or as-is architecture, to identify first steps or quick wins for improving resilience against advanced cyber threats. The process can also be applied to a notional or to-be architecture, to identify opportunities to provide greater and more cost-effective resilience, and/or to support the development of a cyber resiliency improvement roadmap. The process is supported by assessment scales and questions. Because the set of cyber resiliency techniques continues to evolve, detailed discussion of selected techniques, including POET considerations, is provided.