Smart SECPLAN: A process implementation tool for hybrid risk management

Abstract

This chapter provides an applicability example of the game-theoretic model developed in the course of the HyRiM (Hybrid Risk Management for Utility Providers) project. Therefore, the online tool “Smart SECPLAN” has been created and used to guide information technology (IT) and operations technology (OT) security operators in an asset-driven risk assessment exercise following a step by step approach. The scenario chosen has been a medium-size electrical cooperative distribution system operator (DSO), who manages the distribution of the electricity. The Smart SECPLAN tool goes beyond existing risk assessment methods and techniques by providing advanced analytics based on a game theory model. For the experimental evaluation, we compared a classical game model to a model where the payoffs are fully stochastic (distribution-valued). This adds more analytic possibilities and flexibility. Our finding is that distribution-valued games require a more careful and involved modeling of losses (damages) but, upon a decent and accurate loss model, provide interesting insights and possibilities to understand a defense’s consequences at a very fine-grained level. As a major benefit of the tool, a prioritized set of mitigation actions is delivered, and a draft Gantt chart is proposed to manage the mitigation activities.