Quantifying Cyber Risk

Presented by

Jack Freund, Ph.D. Head of Cyber Risk Methodology & Jack Jones Chief Risk Scientist

About this talk

This webinar will introduce cyber risk quantification (CRQ) and the means and methods used to employ it in the enterprise. The presenters will describe some of the problems associated with using verbal and ordinal scales to measure cybersecurity risk. They will emphasize the importance of utilizing ratio scales for quantification measures such as frequency, control capability, and economic impact—to achieve meaningful risk assessments. Also covered are the sources for data (external and internal) as well as soliciting data from subject matter experts. The webinar will end with information on integrating CRQ with other risk assessment methods.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (2)
Subscribers (637)
A global association of 140,000 professionals in 180 countries, ISACA® (www.isaca.org) helps business and IT leaders maximize value and manage risk related to information and technology. Founded in 1969, the nonprofit, independent ISACA is an advocate for professionals involved in information security, assurance, risk management and governance. These professionals rely on ISACA as the trusted source for information and technology knowledge, community, standards and certification. The association, which has more than 200 chapters worldwide, advances and validates business-critical skills and knowledge through the globally respected Certified Information Systems Auditor® (CISA®), Certified Information Security Manager® (CISM®), Certified in the Governance of Enterprise IT® (CGEIT®) and Certified in Risk and Information Systems Control™ (CRISC™) credentials. ISACA also developed and continually updates COBIT®, a business framework that helps enterprises in all industries and geographies govern and manage their information and technology.