What cyber security metrics are CISOs of listed companies reporting to the audit committee of the supervisory board?

Board EngagementSecurity & GRC
1.4k viewscircle icon1 Upvotecircle icon4 Comments
Sort by:
Group Director of Information Security in Banking6 days ago

Hi Machiel, there is an associated discussion thread here on GPC you might want to refer to:
https://rb.gy/x4lb20
Hope it helps.

CISO in Insurance (except health)4 months ago

All top executives are concerned about translating risks into monetary terms. Therefore, Cyber Risk Quantification, along with other key metrics aligned to NIST, is essential.

Lightbulb on1
Director of Information Security in Healthcare and Biotech4 months ago

If it helps, board gets something like below..

Residual Risk Scores (heatmap and trend view)
Top 5 Threats (e.g., phishing, malware, supply chain attacks)
Incident Response Metrics
Capability Maturity & Strategic Alignment
Trends

Lightbulb on2 circle icon1 Reply
no title4 months ago

that's helpful, many thanks

Content you might like

Has cryptocurrency helped to facilitate the ransomware market?

Yes79%

No16%

Unsure3%

View Results

What do you consider to be the biggest success factors for adopting AI-enabled security solutions?

Read More Comments

To what extent are organisations actually realizing measurable value from AI-enabled capabilities in GRC platforms, and to what degree is embedded AI now viewed as a core, expected feature in GRC tool selection rather than a nice-to-have add-on?

What would make cybersecurity training more enjoyable?

If it were presented in simpler language.17%

If it was more fun (i.e. gamification)62%

If it were broken into shorter courses17%

Nothing, it's boring no matter what!2%

View Results