<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE ArticleSet PUBLIC "-//NLM//DTD PubMed 2.7//EN" "https://dtd.nlm.nih.gov/ncbi/pubmed/in/PubMed.dtd">
<ArticleSet>
<Article>
<Journal>
<PublisherName>OICC Press</PublisherName>
<JournalTitle>International Journal of Energy and Environmental Engineering</JournalTitle>
<Issn>2251-6832</Issn>
<Volume>17</Volume>
<Issue>01</Issue>
<PubDate PubStatus="epublish">
<Year>2026</Year>
<Month>03</Month>
<Day>31</Day>
</PubDate>
</Journal>
<ArticleTitle>Cyber Security Resilience Score Index: A Comprehensive Framework for Assessing and Improving Organizational Cybersecurity Posture</ArticleTitle>
<VernacularTitle></VernacularTitle>
<FirstPage></FirstPage>
<LastPage></LastPage>
<ELocationID EIdType="doi">10.57647/ijeee.2026.1701.04</ELocationID>
<Language>EN</Language>
<AuthorList>
<Author>
<FirstName>Riyadh Jasim</FirstName>
<LastName>Mohammad</LastName>
<Affiliation>Department of Computer Engineering, ST.C., Islamic Azad University, Tehran, Iran</Affiliation>
<Identifier Source="ORCID"></Identifier>
</Author>
<Author>
<FirstName>Ali</FirstName>
<LastName>Broumandnia</LastName>
<Affiliation>Department of Computer Engineering, ST.C., Islamic Azad University, Tehran, Iran</Affiliation>
<Identifier Source="ORCID">https://orcid.org/0000-0001-5145-2013</Identifier>
</Author>
<Author>
<FirstName>Razieh</FirstName>
<LastName>Farazkish</LastName>
<Affiliation>Department of Computer Engineering, ST.C., Islamic Azad University, Tehran, Iran</Affiliation>
<Identifier Source="ORCID"></Identifier>
</Author>
<Author>
<FirstName>Mona</FirstName>
<LastName>Moradi</LastName>
<Affiliation>Department of Computer Engineering, ST.C., Islamic Azad University, Tehran, Iran</Affiliation>
<Identifier Source="ORCID"></Identifier>
</Author>
</AuthorList>
<PublicationType>Journal Article</PublicationType>
<History>
<PubDate PubStatus="received">
<Year>2026</Year>
<Month>03</Month>
<Day>31</Day>
</PubDate>
</History>
<Abstract>A framework designed to assess and monitor organizational cybersecurity readiness continuously. Addressing the limitations of static, compliance-based methodologies, the CRSI synthesizes the People, Process, and Technology (PPT) dimensions into a unified, network-agnostic metric. Unlike traditional binary assessments, this framework employs a dynamic maturity model applicable across diverse environments, including Information Technology (IT), Operational Technology (OT), and Critical Infrastructure Networks (CIN). The methodology integrates threat-informed weighting algorithms with qualitative control evaluations to generate a holistic resilience index. The framework’s efficacy is demonstrated through a simulated case study of a hybrid utility environment ("EnergyTech"), validated by a sensitivity analysis that confirms the model's stability against subjective weighting variations. Ultimately, the CRSI empowers organizations to diagnose capability gaps with precision, benchmark performance against industry standards, and optimize strategic investments in security infrastructure.</Abstract>
<ObjectList>
<Object Type="keyword">
<Param Name="value">Cyber Security Resilience</Param>
</Object>
<Object Type="keyword">
<Param Name="value">Cyber Resilience Score Index (CRSI)</Param>
</Object>
<Object Type="keyword">
<Param Name="value">People-Process-Technology (PPT)</Param>
</Object>
<Object Type="keyword">
<Param Name="value">Critical Infrastructure Networks (CIN)</Param>
</Object>
<Object Type="keyword">
<Param Name="value">Cybersecurity Posture Assessment</Param>
</Object>
<Object Type="keyword">
<Param Name="value">Quantitative Risk Analysis</Param>
</Object>
</ObjectList>
</Article>
</ArticleSet>