Is risk quantification the future, or all hype?

Security & GRC Risk Management Business Relationships

1.7k views3 Comments

Senior Information Security Manager in Software, 501 - 1,000 employees

Check out FAIR - https://www.fairinstitute.org/

And you see risk quantification is not the future, it is the very present.

Assistant Director IT Auditor in Education, 10,001+ employees

Risk quantification is an important process in risk management. It is the present and future.

Chief Information Officer in Healthcare and Biotech, 1,001 - 5,000 employees

Senior executives are concerned about risk. Business risk is increasingly tied to growing cyber risk. One of the best ways to communicate the value of a security program to executives is to express quantifiable cyber risk and create programs to reduce that risk. Risk quantification is a widely accepted method of evaluating identified business and security risks and for making decisions as to what should be done about those risks.

Content you might like

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & Leadership Strategy & Architecture Cloud +57 more

CTO in Software, 201 - 500 employees

Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.

Read More Comments

42.6k views131 Upvotes319 Comments

Does the risk of Ransomware and malware propagation bother you? Is IoT security a top of mind for you? To protect against many risks, we have witnessed success of micro-segmentation in the data center. Would you be willing to deploy similar solution for the campus? I am very curious to get your feedback?

Security & GRC Threat & Vulnerability Management

ISSO and Director of the IRU in Healthcare and Biotech, 10,001+ employees

I would definitely suggest this based of how you categorize your types of data/systems and information being stored in certain parts of your data center. I think it’s really dependent on the size of your organization and ...read more

Read More Comments

3.2k views5 Upvotes5 Comments

In terms of the overall level of risk associated with business data, where are organizations seeing the most risk today?

Structured Business Data62%

Unstructured Business Data37%

529 PARTICIPANTS

1.9k views2 Upvotes

Any recommendations on OT security product? I tried pushing Crowdstrike but it wasn't approved by OEMs. Other two are Claroty and Nozomi. Any feedback either on above two or any other as per your experience?

Security & GRC Strategy & Architecture

Director of IT in Manufacturing, 1,001 - 5,000 employees

I am pretty much convinced with output of Claroty, however unsure about pricing since they do not have much competition. I reached out to Gartner for commercial review but could not get satisfactory response. Any ballpark ...read more

Read More Comments

2k views1 Upvote2 Comments

What does Infrastructure and Operations (I&O) currently struggle with the most at your organization?

Business Relationships Infrastructure Operations Management

Understanding customer requirements21%

Communication with other stakeholders56%

Visibility of workflow13%

Agile development practices8%

495 PARTICIPANTS

2.4k views1 Comment