Question

The estimated cost to restore the database if it is entirely lost or corrupted is assessed...

The estimated cost to restore the database if it is entirely lost or corrupted is assessed as $1M, and the economic damage due to patients and doctors moving to other hospitals is estimated to be an additional $1M. Based on published information on cyberattacks in the health care industry, the estimated number of successful attacks based on exploitation of the vulnerability is four (4) per year, and each successful attack is estimated to cost the hospital 5% of the estimated total potential loss. Further assume that a commercial product has been identified that will reduce the loss from a breach by a factor of ten (10) to 0.5% of the total. What is the maximum annual total cost for this product to achieve a positive return on the investment to procure it (i.e., a positive Control Value)? Please add the steps to get the result.

Homework Answers

Answer #1

Here, total estimated cost per year

= database recovery cost + economic damage

= $1,000,000 + $1,000,000 = $2,000,000

So, original actual loss incurred per year due to attacks

= total estimated cost per year * number of attacks per year * original percentage factor

= $2,000,000 * 4 * 0.05

= $400,000

Now, with the addition of new commercial product, actual losses incurred per year due to attacks, become 1/10 of original incurred losses per year due to attacks

= 0.1 * $400,000

= $40,000

For a positive return of investment, the total cost per year should not increase, i.e.

(new actual loss per year due to attacks) + (cost of commercial product per year) <=(original actual loss per year due to attacks)

=> $40,000 + (cost of commercial product per year) <= $400,000

=> (cost of commercial product per year) <= $360,000

Thus, the maximum beneficial annual cost of commercial product

= $360,000

Know the answer?
Your Answer:

Post as a guest

Your Name:

What's your source?

Earn Coins

Coins can be redeemed for fabulous gifts.

Not the answer you're looking for?
Ask your own homework help question
Similar Questions
The estimated cost to restore the database if it is entirely lost or corrupted is assessed...
The estimated cost to restore the database if it is entirely lost or corrupted is assessed as $1M, and the economic damage due to patients and doctors moving to other hospitals is estimated to be an additional $1M. Based on published information on cyberattacks in the health care industry, the estimated number of successful attacks based on exploitation of the vulnerability is four (4) per year, and each successful attack is estimated to cost the hospital 5% of the estimated...
Describe five vulnerabilities associated with the IT system as described and before security controls are implemented....
Describe five vulnerabilities associated with the IT system as described and before security controls are implemented. (a) Based on possible Threat Actors, briefly describe a risk associated with each of these vulnerabilities; using a scale of 1 - 5, assign a Probability of Occurrence and Consequence of Occurrence to each risk. (b) For each of these risks, identify a feasible risk treatment (risk reduction, transference, avoidance, or acceptance) with a short rationale for each. (c) Assume a risk has been...
In February 2012, the Pepsi Next product was launched into the US market. This case study...
In February 2012, the Pepsi Next product was launched into the US market. This case study provides students with an interesting insight into PepsiCo’s new product process and some of the challenging decisions that they faced along the way. Pepsi Next Case Study Introduction Pepsi Next was launched by PepsiCo into the US market in February 2012, and has since been rolled out to various international markets (for instance, it was launched in Australia in September 2012). The new product...
Question: summarize what you have read and how you believe (based on what we've studied so...
Question: summarize what you have read and how you believe (based on what we've studied so far) that topic should be approached from a law and policy perspective. Introduction The U.S.-Cuba relationship has been plagued by distrust and antagonism since 1959, the year Fidel Castro overthrew a U.S.-backed regime in Havana and established a socialist state allied with the Soviet Union. During the half century that followed, successive U.S. administrations pursued policies intended to isolate the island country economically and...
Please read the article and answear about questions. Determining the Value of the Business After you...
Please read the article and answear about questions. Determining the Value of the Business After you have completed a thorough and exacting investigation, you need to analyze all the infor- mation you have gathered. This is the time to consult with your business, financial, and legal advis- ers to arrive at an estimate of the value of the business. Outside advisers are impartial and are more likely to see the bad things about the business than are you. You should...
Delta airlines case study Global strategy. Describe the current global strategy and provide evidence about how...
Delta airlines case study Global strategy. Describe the current global strategy and provide evidence about how the firms resources incompetencies support the given pressures regarding costs and local responsiveness. Describe entry modes have they usually used, and whether they are appropriate for the given strategy. Any key issues in their global strategy? casestudy: Atlanta, June 17, 2014. Sea of Delta employees and their families swarmed between food trucks, amusement park booths, and entertainment venues that were scattered throughout what would...
ADVERTISEMENT
Need Online Homework Help?

Get Answers For Free
Most questions answered within 1 hours.

Ask a Question
ADVERTISEMENT