Module 4: Scenario analysis and stress testing

AINS6302 — AI for Risk Assessment

Essential Question

How do we reason about uncertain attacks?

Scenario

a cyber risk committee prioritizing mitigation across assets with different exposure and business value

Stakeholders: CISO, risk officer, system owner, auditor, and executive sponsor

Core Moves

• Define the decision boundary

• Compare baseline and alternative

• Interpret evidence and assumptions

• Identify failure modes

• Recommend next action

Lab & Assignment

Run scenario-based risk analysis.

Artifact: cyber risk assessment package with scoring rationale, treatment plan, and executive dashboard focused on scenario analysis and stress testing: Run scenario-based risk analysis.