logo
allArticlesConferencesPresentations

Bon Appetit: Establishing an Effective Cyber Risk Appetite

Conference:  RSA Conference 2023

2023-04-24

Authors:   Matt Tolbert

Abstract

A defined cyber risk appetite is foundational to the success of any firm's information security program. Yet guidance on what makes a cyber risk appetite effective is arguably lacking, especially standards for establishing risk appetite compliance thresholds as well as KPIs, KRIs, and KCIs. This talk will share current and forthcoming guidance and practices for cyber risk appetite development.
Materials:
Tags:

Post a comment

Related work

The Devil's in the Data: Role of Data Governance in Cyber Risk Mitigation

Conference:  RSA Conference 2023
Authors: Raymond Umerley
2023-04-24

Policy Implications of Faulty Cyber Risk Models and How to Fix Them

Conference:  BlackHat USA 2020
Authors:
2020-08-05

Securing Open Source Software - End-to-End, at Massive Scale, Together

Conference:  BlackHat USA 2021
Authors:
2021-08-05

The Open Threat Hunting Framework: Enabling Organizations to Build, Operationalize, and Scale Threat Hunting

Conference:  Black Hat USA 2022
Authors:
2022-08-10

Fight Back Against Cyber Risk in the Software Supply Chain with a Secure and Compliant DevSecOps Pipeline for Regulated Environments

Conference:  KubeCon + CloudNativeCon Europe 2023
Authors: Krishna Rajeesh Nallur Valiyaveettil, Brendan Kelly
2023-04-19

SDL That Won't Break the Bank

Conference:  BlackHat USA 2018
Authors:
2018-08-09