English

A Complexity-Informed Approach to Optimise Cyber Defences

Cryptography and Security 2025-01-28 v1

Abstract

This paper introduces a novel complexity-informed approach to cybersecurity management, addressing the challenges found within complex cyber defences. We adapt and extend the complexity theory to cybersecurity and develop a quantitative framework that empowers decision-makers with strategies to de-complexify defences, identify improvement opportunities, and resolve bottlenecks. Our approach also provides a solid foundation for critical cybersecurity decisions, such as tooling investment or divestment, workforce capacity planning, and optimisation of processes and capabilities. Through a case study, we detail and validate a systematic method for assessing and managing the complexity within cybersecurity defences. The complexity-informed approach based on MITRE ATT&CK, is designed to complement threat-informed defences. Threat-informed methods focus on understanding and countering adversary tactics, while the complexity-informed approach optimises the underlying defence infrastructure, thereby optimising the overall efficiency and effectiveness of cyber defences.

Keywords

Cite

@article{arxiv.2501.15578,
  title  = {A Complexity-Informed Approach to Optimise Cyber Defences},
  author = {Lampis Alevizos},
  journal= {arXiv preprint arXiv:2501.15578},
  year   = {2025}
}
R2 v1 2026-06-28T21:18:25.034Z