January 23, 2019 Nicola (Nick) Sanna
Most organizations do not have common methods in place to quantify and manage cyber risk from the business perspective.
Some companies have their IT security professionals leverage GRC solutions with the goal of managing risk, but most of their functions are meant to help meet minimum regulatory compliance, not quantify the actual cyber risk associated with key assets and business processes.
Consider adopting new cyber risk quantification approaches that will help you improve the communication and the decision-making among all stakeholders and optimize your security investments.