Cyber-risk Perception and Prioritization for Decision-Making and Threat Intelligence

Cyber-risk assessment is gaining momentum due to the wide range of research and innovation sectors that can benefit from the prevention of cyber-incidents. The increasing connectivity of digital and (cyber-)physical systems requires more attention to cyber-security to enhance the integrity, confidentiality, and availability of data. We introduce a general framework supporting the prioritization of cyber-vulnerabilities, using flexible regression models that enhance the interpretability of the analysis for decision-making. We take advantage of Mid-Quantile regression as a robust method to deal with ordinal severity assessment, and we compare it to the state-of-the-art models for cyber-risk ranking and graded responses, identifying a novel accuracy measure suited for the decision-maker's prioritization. Our model is grounded on real data from selected databases that support the exploitation of cyber-vulnerabilities in real contexts. The variety of information arising from such datasets allows us to compare multiple models based on their predictive performance, showing how accessible information can influence perception and, hence, decision-making in operational scenarios. Applications for threat intelligence functionalities are discussed too.