Skip to main content
Request a Demo

Read insights, thought leadership, and platform updates.

Evolution of the Threat Intelligence Products and Services Market – Our Take on The Latest Gartner® Market Guide

Posted May 17th, 2023

Uniting the Threat and Risk Intelligence Across ALL Domains

Posted Mar 9th, 2023

Explore our latest posts

The 7 Tenets of Threat Intelligence Operations – Tenet #2: Requires an Evolved Threat Intelligence Lifecycle

Posted May 19th, 2023

How To Prepare For A Threat Intel Ops Platform Project

Posted May 10th, 2023

ThreatConnect 7.1: An Even Better User Experience

Posted Apr 12th, 2023

Explore all posts

Topics

Showing 41 posts about Cyber Risk Quantification
Cyber Risk Quantification

Balancing the Benefits and Challenges of FAIR – A Practitioner’s View

If you have been a FAIR practitioner for years, like me, or maybe you are just starting out, you may have noticed (or will notice) that FAIR is great for understanding your financial risk exposure, however, it has its challenges.  I’m not here to highlight everything, but the good does FAR outweigh the bad.  No […]

Posted Mar 20th, 2023
Cyber Risk Quantification

When It Comes To CRQ, What Is An “Open” Model and Is It The Right Question To Ask?

As more companies look to quantify cyber risk in financial terms, a common question we hear all the time is, “which model (or approach) should I use?.” I saw an interesting quote from a Gartner® research note titled “Drive Business Action with Cyber Risk Quantification “ that spoke about where the CRQ space is going: […]

Posted Jul 26th, 2022
Cyber Risk Quantification

Lessons in Communicating Cyber Risk to the Board and Business Leaders

Business leaders are not always technically-focused, so it is important for security teams to examine how they are communicating risk to leadership and ensure those methods are being effectively received. Overly technical or qualitative methods run the risk of the message getting lost or distorted so well-run security programs are evolving their approach to measuring […]

Posted May 25th, 2022
Cyber Risk Quantification

The Power of Combining Outside-In and Inside-Out Cyber Risk Quantification

ThreatConnect is excited about the partnership with SecurityScorecard for their Cyber Risk Quantification (CRQ) solution powered by ThreatConnect Risk Quantifier (RQ). Applying ThreatConnect’s statistical and machine learning algorithms to the Security Scorecard data enables customers to easily understand their risk, both external and internal, and more importantly prioritize which factors should be improved based on […]

Posted Apr 26th, 2022
Cyber Risk Quantification

The Importance of Assessing & Communicating the Financial Impact of Cyber Risks

  Just as a captain would navigate their ship across vast oceans, it’s the responsibility of business leaders to determine the direction of the overall corporate strategy. To do this effectively, they need to understand their environment and the conditions that may hinder them along the way. Unfortunately, things aren’t always smooth sailing in real […]

Posted Apr 13th, 2022
Cyber Risk Quantification

Let’s talk about CFOs and Cyber Risk

If you have read my previous three blogs in this ‘Let’s talk’ series, you’ll know that we’ve talked about our conversations with CISOs and CIO – and now it’s time to turn our attention to Chief Financial Officers (CFOs). The CFO’s job is really important. They’re the ones who determine financial strategy and budgets. Usually, […]

Posted Jan 25th, 2022
Cyber Risk Quantification

Let’s talk about CIOs and Cyber Risk

In our previous blog, we looked at how cyber risk quantification (CRQ) can help CISOs and their teams to address some of the most pressing cybersecurity issues today. But change requires buy-in, so cross-functional collaboration and communication are vital. In this blog, we are going to look further into the concerns of their fellow C-suite […]

Posted Jan 21st, 2022
Cyber Risk Quantification

Let’s Talk About CISOs and Cyber Risk Quantification

Chief Information Security Officers (CISOs) serve a critical role in protecting their business from internal and external threats. They need to design and implement the right resources to mitigate growing digital security risks and maintain regulatory compliance. This requires an understanding of the current and future security risks to business operations that could hinder the […]

Posted Jan 19th, 2022
Cyber Risk Quantification

4 Key Drivers Accelerating Cyber Risk Quantification

If you’ve attended any of our webinars on Cyber Risk Quantification (CRQ) in recent months, you’ll know that this is a topic I love talking about! You’re either thinking this is not true, or I’m paid to say that right…? I know. Well, the truth is, I like problem-solving and in the cyber world – […]

Posted Jan 14th, 2022
Cyber Risk Quantification

FAIR and RQ: It’s time to evolve the conversation

I can’t wait until the day when cars can fully drive themselves. While I love driving I hate wasting time in traffic. And the number of accidents caused by human error is significantly larger than any self driving has caused to date in testing. Yet a lot of my friends aren’t there yet. They might […]

Posted Oct 18th, 2021
Cyber Risk Quantification

CRQ Isn’t Done Well: A Review of NIST’s Report on Integrating Cybersecurity and ERM

It’s been almost a year since the National Institute of Standards and Technology (NIST) issued its internal report on “Integrating Cybersecurity and Enterprise Risk Management (ERM).” I thought it was time to take another look at it and share what I think are the most interesting conclusions. First: CRQ Isn’t Done Well The following line […]

Posted Sep 23rd, 2021
Cyber Risk Quantification

Bitsight’s Acquisition of VisibleRisk: A View From The CRQ World

This week, Bitsight raised $250 million from Moodys and acquired cyber risk quantification company VisibleRisk. The move certainly makes sense for Bitsight, but what does it mean for the cyber risk quantification space at large? Over the last few years, the conversation about cyber risk has been dominated by the security ratings companies like BitSight […]

Posted Sep 17th, 2021
Browse More Resources