Qualitative approaches to risk assessment and management are largely the norm. But today, leadership is demanding additional insight into how much cyber security costs – and what are the benefits to the organization. A framework that financially quantifies cyber risk allows a CISO to report to key organizational decision makers – executive management, Board of Directors -- in a language these stakeholders can clearly understand -- how do investments in security align with the organizational business and protect its business.
This 2022 SANS study explores how organizations can leverage a data-driven approach that draws on advanced analytics, rich information sources and insurance-validated risk models to create a framework that takes cybersecurity risk management to the next level – one that is both realistic and affordable.
Join Barbara Filkins, Research Director for the SANS Analyst Program, and Tom Boltman, VP of Strategic Initiatives, Kovrr as they discuss the findings from this study, including the following questions: