0      0

(ISC)2 Security Congress 2022

2101727 - Cyber Risk Metrics & Reporting

Oct 10, 2022 4:00pm ‐ Oct 10, 2022 5:00pm


The presentations will define cyber risk and introduce recent industry survey results to to learn why cyber risk is so important. We'll include sections on risk measures and metrics to gauge "risk appetites" and the steps in KRI development. Also, there needs to be a metrics governance process for any changes to the metrics -- from proposing new benchmarks to retiring old metrics. Finally, we'll discuss why risk reporting needs to happen across all organizational levels, not just upper management.

Learning Objectives:
  • Become familiar with various risk appetites.
  • Understand the what and why of risk Measures / metrics.
  • Understand the metric build process.


  • Priya Mouli, MBA, CDPSE, CISSP, Director, Cybersecurity and Privacy, PwC

You must be logged in and own this session in order to post comments.