Lingkup risiko siber (cyber risk) kini sangat luas dalam sistem digital, misalnya pelanggaran data dan serangan siber ke jaringan listrik. Maka upaya kendali risiko siber harus melibatkan lintas dan multi disiplin, tidak hanya sains komputer, tetapi juga ilmu perilaku manusia, ilmu politik, ilmu ekonomi, dan ilmu manajemen. Begitu usul Gregory Falco dkk (2019) dari Policy Forum, forum 19 ahli berbagai disiplin ilmu dan universitas asal Israel, Swiss, Amerika Serikat dan Perancis.
“Efforts to systematically advance the science of cyber risk must draw on not only computer science but also fields such as behavioral science, economics, law, management science, and political science.. Only through such multidisciplinary collaboration can the science of cyber risk systematically move forward,” tulis tim ahli itu pada jurnal Science edisi November 2019. (Gregory Falco, et al., 2019). Hasil kajian para ahli itu dirilis oleh jurnal Science edisi 29 (Gregory Falco, et al., “Cyber risk research impeded by disciplinary barriers”, Science, 29 Nov 2019: Vol. 366, Issue 6469, pp. 1066-1069).
Ilmu risiko siber inheren lintas-disiplin, khususnya kolaborasi multi-disiplin. Policy Forum 19 ahli itu mengajukan satu multi-disiplin baru yakni model konsep terpadu risiko siber (Cyber Risk Unified Concept Model). “We propose a cyber risk unified concept model that identifies where certain disciplines of study can add value. The concept model can also be used to identify collaboration opportunities across the major research questions. In this agenda, we unpack the major research questions into manageable projects and tactical questions that need to be addressed,” tulis paper Forum Policy itu. (Gregory Falco, et al., 2019).
Misalnya seorang ahli statistik mungkin menerapkan pemodelan Bayesian untuk membuat perkiraan risiko atau peristiwa siber masa depan, meskipun tidak sepenuhnya jelas apa yang menyebabkan peristiwa cyber masa lalu pada yang masa depan. Ilmuwan komputer mungkin menulis tentang hukum perlindungan data, namun dengan sedikit pengetahuan tentang masalah yurisdiksi hukum. (American Association for the Advancement of Science, 28/11/2019).
“Drawing on global expertise and challenges from industry, academia, nonprofit organizations, and governments, we adapted the classical risk-management process to identify core research questions for cyber risk, gaps in knowledge that need to be addressed for advances in security, and opportunities for cross-disciplinary collaboration for each area. Although we mention specific disciplines reflective of our backgrounds, these are not the only ones that should be conducting cyber risk research,” tulis tim ahli itu pada jurnal Science edisi 29 November 2019.
Kajian Forum Policy itu melibatkan para ahli yaitu (1) Gregory Falco asal Freeman Spogli Institute for International Studies, Stanford University, Stanford, Amerika Serikat; Computer Science and Artificial Intelligence Laboratory, Massachusetts Institute of Technology, Cambridge, MA, Amerika Serikat; dan Belfer Center for Science and International Affairs, Harvard University, Cambridge, MA, Amerika Serikat;
(2) Martin Eling asal Institute of Insurance Economics, University of St. Gallen, St. Gallen, Swiss; (3) Danielle Jablanski asal Freeman Spogli Institute for International Studies, Stanford University, Stanford, CA, Amerika Serikat; (4) Matthias Weber asal CyberCube, San Francisco, CA, Amerika Serikat dan Next Insurance U.S., Palo Alto, CA, Amerika Serikat;
(5) Virginia Miller asal Freeman Spogli Institute for International Studies, Stanford University, Stanford, CA, Amerika Serikat; (6) Lawrence A. Gordon asal asal Robert H. Smith School of Business, University of Maryland, College Park, MD, Amerika Serikat dan University of Maryland's Cybersecurity Center, University of Maryland, College Park, MD, Amerika Serikat;
(7) Shaun Shuxun Wang asal Nanyang Business School, Nanyang Technological University, Singapura; (8) Joan Schmit asal Wisconsin School of Business, University of Wisconsin–Madison, Madison, WI, Amerika Serikat; (9) Russell Thomas asal Department of Computational and Data Sciences, George Mason University, Fairfax, VA, Amerika Serikat dan Risk Management Solutions, Newark, CA, Amerika Serikat;
(10) Mauro Elvedi asal Institute of Insurance Economics, University of St. Gallen, St. Gallen, Swiss; (11) Thomas Maillart asal Geneva School of Economics and Management, University of Geneva, Geneva, Swiss; (12) Emy Donavan asal Cyber, Tech & Media Professional Indemnity, Allianz Global Corporate & Specialty, San Francisco, CA, Amerika Serikat;
(13) Simon Dejung asal Global Line Engineering, SCOR SE, Paris, Perancis; (14) Eric Durand asal Cyber Center of Competence, Swiss Re Institute, Zurich, Swiss; (15) Franklin Nutter asal Reinsurance Association of America, Washington, DC, Amerika Serikat; (16) Uzi Scheffer asal SOSA, Tel-Aviv, Israel; (17) Gil Arazi asal FinTLV Ventures, Tel-Aviv, Israel; (18) Gilbert Ohana asal FinTLV Ventures, Tel-Aviv, Israel;
(19) Herbert Lin asal Freeman Spogli Institute for International Studies, Stanford University, Stanford, CA, Amerika Serikat; The Hoover Institution on War, Revolution, and Peace, Stanford, CA, Amerika Serikat; Computer Science and Telecommunications Board, National Research Council, Washington, DC, Amerika Serikat; Saltzman Institute for War and Peace Studies, Columbia University, New York, NY, Amerika Serikat; Science and Security Board, The Bulletin of Atomic Scientists, Chicago, IL, Amerika Serikat dan Center for Long-Term Cyber Security, University of California–Berkeley, Berkeley, CA, Amerika Serikat.
