How to engage with the C-suite on cyber risk management, part 2

In Part 1 of this series on on delivering meaningful metrics to boards, I talked about the need to discuss security risks in ways that relate to board concerns. Many CISOs are reporting the wrong metrics to boards — for example, a malware platform supposedly finding 333 million malware alerts or 234,333 wrong password entries. Without context …

Continue reading How to engage with the C-suite on cyber risk management, part 2