Error loading player: No playable sources found
SC2237
Cyber Risk Metrics & Reporting
Date
October 10, 2022
Credits
1 CPE | Expired December 31, 2022
The presentations will define cyber risk and introduce recent industry survey results to to learn why cyber risk is so important. We'll include sections on risk measures and metrics to gauge "risk appetites" and the steps in KRI development. Also, there needs to be a metrics governance process for any changes to the metrics -- from proposing new benchmarks to retiring old metrics. Finally, we'll discuss why risk reporting needs to happen across all organizational levels, not just upper management.
Learning Objectives
- Understand the what and why of risk Measures / metrics.
- Understand the metric build process.
Speaker
Priya Mouli, MBA, CDPSE, CISSP
Technology Leader and Cyber Security Advisor | Board Member, PwC LLP
Related Products
Healthcare Hacked! Culture, Costs, and Cures
Attackers targeted healthcare more than any other industry in 2021, accounting for 34% of incidents—more than one third…
Three Simple and Effective Cybersecurity Exercises
The genesis of many cybersecurity exercises begins with a simple request: An executive approaches a manager and says, “We need a tabletop. Get it done.” This request may stir up angst as some planning is required and, to some, may be a new experience…
Monitoring and Communicating Tech Risk
Analyze recent industry survey results and CEO statistics to determine why we need to focus on cyber risk now. You’ll gain an understanding of risk metrics, starting with risk appetite. Learn how to set thresholds in line with risk appetite, construct risk metrics and go through the build process…
Security metrics - how to measure it efficiently
Many organizations struggle to measure the effectiveness of their security controls, mostly due to misunderstanding what is actually a good metric. Organizations too often apply metrics and measurements that are out of their control…
