Abstract: Today’s in manufacturing major challenge is to manage large scale of cybersecurity system, which is potentially exposed to a multitude of threats. The utmost risky threats are insider threats. An insider threat arises when a person authorized to perform certain movements in an organization decides to mishandle the trust and harm the organization. Therefore, to overcome these risks, this study evaluates various risk assessment method to assess the impact of insider threats and analyses the current gaps in risk assessment method. Based on the literature search done manually, we compare four methods which are NIST, FRAP, OCTAVE, and CRAMM. The result of the study shows that the most used by an organization is the NIST method. It is because NIST is a method that combines the involvement between human and system in term of collection data. The significance of this study contributes to developing a new method in analyzing the threats that can be used in any organization.

Nurul Akmal Hashim, Zaheera Zainal Abidin, A.P. Puvanasvaran, Nurul Azma Zakaria and Rabiah Ahmad, “Risk Assessment Method for Insider Threats in Cyber Security: A Review” International Journal of Advanced Computer Science and Applications(IJACSA), 9(11), 2018. http://dx.doi.org/10.14569/IJACSA.2018.091119

@article{Hashim2018,
title = {Risk Assessment Method for Insider Threats in Cyber Security: A Review},
journal = {International Journal of Advanced Computer Science and Applications}
doi = {10.14569/IJACSA.2018.091119},
url = {http://dx.doi.org/10.14569/IJACSA.2018.091119},
year = {2018},
publisher = {The Science and Information Organization},
volume = {9},
number = {11},
author = {Nurul Akmal Hashim and Zaheera Zainal Abidin and A.P. Puvanasvaran and Nurul Azma Zakaria and Rabiah Ahmad},
}