Panel | Cyber Risk Quantification: A Key Enabler for Risk-Based Business Decision-Making
Cyber risk quantification (CRQ) is the measure of an organization’s cyber risk expressed in monetary terms, like dollars. CRQ has many benefits, but few security professionals understand how to implement it.
Join Paul Kelly, former head of risk at HSBC, and Chris Griffith, chief product officer at Balbix, as they discuss the need for CRQ and the strengths and limitations of two primary approaches to quantifying cyber risk - top down and bottom up. They will also explain why CRQ is a key enabler for risk-based business decision-making, and how it allows CISOs to effectively report on cyber risk to senior management and the Board in a language they can appreciate. Finally, they will share their insights and tips about how to successfully operationalize CRQ.