skip to navigation skip to content

Book Launch: Solving Cyber Risk

Back to 2019

Cambridge Centre for Risk Studies has been a leading pioneer of research into cyber as an emerging risk. Now a new book from researchers at the Centre sets out a risk management framework for considering cyber risk to any individual organisation, and the principles involved in protecting society from cyber threat.

Launch events will include a presentation by the three authors on content from the book, followed by a networking reception. The authors will be available to sign copies of the book.

Books can be ordered in advance for collection at the launch events, with a discount of 15 per cent at £32.29 (UK RRP £37.99) or $42.46 (US RRP $49.95).

A limited number of books will also be available for purchase at the event, with a discount of 10 per cent: £34.19 or $44.96.

"Solving Cyber Risk" book cover

Coburn, A., Leverett, É. and Woo, G. (January 2019) Solving Cyber Risk: Protecting Your Company & Society. Wiley.

Hardback retail price: $49.95/£37.99

Cyber risk presents a clear and present danger to the functioning of our society and the well being of our economy. Information technology has played a major role in boosting economic growth for the advanced economies, but it now threatens the prosperity it created. Using data compiled over many years of analysing cyber risk and working with companies battling on the front line of cyber risk management, the authors of Solving Cyber Risk estimate that cyber losses cost over $1.5 trillion a year to the global economy - eroding a steady tax of around 2% on our economic output. Cyber attacks could trigger massive economic shocks of potentially trillions of dollars. State-sponsored cyber attacks on each other’s countries threatens democracy and geopolitical stability.

Solving this risk will not be easy, but the authors dissect the problem. They review the role that companies can play in improving their own cyber security and cyber threat awareness. They characterise the principal causes of cyber loss and explain the best methods of combating them. They show that the production of software produces inherent exploitable vulnerabilities, and discuss methods of reducing them at source. They profile the black market of malicious cyber hackers and their ‘business models’, showing that they can be combated by changing the calculus of their reward systems. They argue that law enforcement, regulation, and litigation systems need radical overhaul to meet the new threat. They highlight the role of government and policy-makers in making us safer.

The authors apply techniques of risk assessment – analysing the likelihood and severity of loss – to assess the costs and benefits of cyber risk management. They provide practical exercises for companies to improve their cyber risk management cost-effectively.

Cyber is an unprecedented threat. It will need radically new approaches to solving this risk. This book proposes that we need to take a fresh view at cyber risk, and not be afraid of challenging orthodox approaches.

Download the writers' presentations


Date: Tuesday 8 January 2019

Time: 17:30

Location: Lecture Theatre 2 and Common Room, Cambridge Judge Business School, University of Cambridge, CB2 1AG

17:30-18:00 Registration drinks
18:00-18:05 Welcome address
Cambridge Centre for Risk Studies
18:05-18:45 Presentations from Solving Cyber Risk authors

  • Gordon Woo, A Risk Management Framework for Cyber Security
  • Eireann Leverett, Demystifying Vulnerabilities and Exploits
  • Andrew Coburn, Solving Cyber Risk
  • 18:45-20:00 Networking reception and book signing


    London 21 January

    Date: Monday 21 January 2019

    Time: from 17:30

    Location: Aon, The Leadenhall Building, 122 Leadenhall St, London EC3V 4AN

    17:30-18:00 Registration drinks
    18:00-18:05 Welcome address
    18:05-18:45 Presentations from Solving Cyber Risk authors

  • Gordon Woo, A Risk Management Framework for Cyber Security
  • Eireann Leverett, Demystifying Vulnerabilities and Exploits
  • Andrew Coburn, Solving Cyber Risk
  • 18:45-20:00 Networking reception and book signing

                              RMS logo              

    New York 26 February

    Date: Tuesday 26 February 2019

    Time: from 18:00

    Location: The Beekman Hotel, 123 Nassau St, New York, NY 10038

    18:00-18:30 Registration drinks
    18:30-18:35 Welcome address
    18:35-19:15 Presentations from Solving Cyber Risk authors

  • Gordon Woo, A Risk Management Framework for Cyber Security
  • Eireann Leverett, Demystifying Vulnerabilities and Exploits
  • Andrew Coburn, Solving Cyber Risk
  • 19:15-20:30 Networking reception and book signing

    RMS logo                         

    Washington DC 28 February

    Date: Thursday 28 February 2019

    Time: from 18.00

    Location: Brunswick Group, 600 Massachusetts Avenue, NW. Suite 350. Washington, DC

    18:00-18:30 Registration and book signing
    18:30-18:40 Welcome address
    Dante Disparte, Founder and CEO, Risk Cooperative

    Dr Michelle Tuveson, Executive Director, Centre for Risk Studies
    18:40-19:20 Presentations from Solving Cyber Riskauthors

  • Gordon Woo, A Risk Management Framework for Cyber Security
  • Eirann Leverett, Demystifying Vulnerabilites and Exploits
  • Andrew CoburnSolving Cyber Risk
  • 19:20-19:50 Panel Discussion and Q/A: Cyber Risk Resilience
    19:50-20:00 Closing remarks and conclusion
    Simon Ruffle, Director of Research and Innovation

    Dante Disparte, Founder and CEO, Risk Cooperative
    20:00-20:30 Networking reception and book signing



    On release, Solving Cyber Risk reached number five on the Amazon best seller list for books in the category of Risk Management. It is now available for purchase from Amazon and all reputable book sellers. 

    Solving Cyber Risk brings a technical subject to life using entertaining and poignant parallels to historical warfare. It also makes a compelling argument for the use of counterfactual analysis of past cyber events, to help us protect the digital economy from the cyber aggressors of the future. The authors make the case for cyber resilience and give business leaders practical advice to embed cyber-aware culture in their organisation.” - Domenico del Re, Director, PricewaterhouseCoopers

    “Before we can begin to address the serious risks that accompany the modern world's increasing dependence on networked computer systems we have to understand them, and this is the key achievement of Solving Cyber Risk. Anyone reading the book will come away better able to assess, quantify, and reduce the risks faced by their business.” - Bill Thompson, Technology writer and BBC presenter

    “Is your organisation cyber-resilient? Are your services? Are you? Starting from practical assessments of how a security breach could damage the organisation, this comprehensive review of the current risk landscape will tell you why it matters, how to assess your own performance, and how to improve it.” - Andrew Cormack, Former Computer Security Incident Response Team (CSIRT) manager

    "The essential handbook for anyone that wants to understand the cyber risks facing their business. The authors draw on decades of experience in cyber, insurance and modelling to provide the essential context for the range of potential threats and losses, today and in the future, providing real life case studies and practical advice for assessing and managing the risks." - Matthew Grant, Founder and Executive Director, Abernite

    "Whoever feels overwhelmed by the sheer amount of unsorted information - around cyber risk, the uncertainties of managing this risk and its questioned insurability (which I do not share) - should read this book. It helps to ringfence the key issues by classifying, weighting and prioritising cyber related decisions. It is good for IT security professionals to get familiar with risk management framework and it is equally helpful for risk management professionals to break down the complexity of 'cyber' and focus on the essentials." - Simon Dejung, Senior Underwriter, SCOR

    Author, Andrew Coburn, was interviewed on Cyentia Podcast regarding Solving Cyber Risk

    Read 'Solving Cyber Risk: Explaining Technical Issues of Cyber in an Accessible Way' by Chad Hemenway in Advisen Front Page News

    Listen to the BBC Click (World Service Radio) interview with Andrew Coburn.  Starts 13m 45s

    Listen to the Cyentia podcast

    From the inside flap

    Cyber risk is a top priority for companies business today. The digital economy requires companies to safeguard a wealth of sensitive information that can make hackers a fortune and ruin both a business and victims' lives. Solving Cyber Risk demystifies the threat of cyber attacks and guides businesses in implementing the most cost- effective methods of reducing risk.

    In this practical, non-technical guidebook, three global thought leaders on cyber risk show businesses how to use risk management principles to lock down their cyber security. Written specifically for business professionals and policy-makers, this single resource covers everything from the fundamentals of cyber crime to the roles of information security officers and risk managers. Improve cyber resilience by using this powerful guide to:

    • Assess the latest vulnerabilities in software, industrial control systems and devices
    • Gain an understanding of the regulatory and legal landscape and law-enforcement processes
    • Make informed decisions about the costs and benefits of cyber resilient strategies, including key trends in cyber insurance

    Avoiding cyber attacks isn't an option - businesses can prepare to protect themselves and their clients with Solving Cyber Risk.

    Cambridge Book Launch - 8 January 2019