Communicating Cybersecurity ROI to Your CFO

Cloud Security Alliance cloudsecurityalliance.org

RelatedCollectionsHighlights

What does a security leader want from a security program?

• The Board must meet regularly with the security leader formally and informally. Security programs are extremely nuanced, and board members (maybe not all of them, but at least the head of whatever sub-committee oversees technology and information risk) must take the time for confidential an

Helen Patton • Cybersecurity Outcomes: What Do We Really Want?

Activity: Worst-case Scenario Exercise

Jeff Hilimire • The 5-Day Turnaround: Be the leader you always wanted to be. (the Turnaround Leadership Series)

Cybersecurity Outcomes: What Do We Really Want?

Helen Patton hpatton.medium.com

Building Cyber Resilience in an Age of Growing Threats

ctsmithiii feeds.dzone.com

The truth is that in today’s hyperconnected world, maturity-based cybersecurity programs are no longer adequate for combatting cyberrisks. A more strategic, risk-based approach is imperative for effective and efficient risk management (Exhibit 2).

Jim Boehm • The Risk-Based Approach to Cybersecurity

Capital Allocation

Michael Mauboussin morganstanley.com