The Repository @ St. Cloud State

Open Access Knowledge and Scholarship

Date of Award


Culminating Project Type

Starred Paper

Degree Name

Information Assurance: M.S.


Information Assurance and Information Systems


Herberger School of Business

First Advisor

Susantha Herath

Second Advisor

Lynn Collen

Third Advisor

Alexander Polacco

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.


Improving Information Technology(IT) Risk Analysis with Resource Allocation


The security of the computer network has become a challenging task with ever increasing attacks against it. The problem that lies ahead for management and security administrators is to allocate the resources in accordance with the pitfalls in their network systems. While traditional risk analysis can provide them the rough idea of what needs to be protected, an efficient method is imperative to plan the resources to tackle the incoming attacks in a more dynamic way. This paper focuses on modeling a traditional IT risk case into a mixed strategy game and help the security professionals to calculate and place their resources against the intruders with the help of game theory. The added advantage it provides over the traditional risk analysis is that it helps the administrator to re-allocate resources for the required level of safety for their assets. This paper paves the way for converting an existing IT risk analysis into a more robust logic based analysis which could prove beneficial in planning real world IT risk analysis and resource allocation.