Best Cybersecurity Metrics To Use In The Boardroom
Security Boulevard, Tuesday, October 22nd, 2024
As the cost and frequency of cyber events grow, technologies evolve, and regulatory bodies enact stricter cybersecurity laws on the market, it's become exceedingly clear that elevating cyber matters to the boardroom is a strategic imperative.
In 2021, Gartner reported that 88% of board members already recognized cyber risk as a significant business risk, a figure which has no doubt risen even further in the wake of the US SEC cyber regulations, NIS 2, DORA, and the catastrophic 2024 CrowdStrike outage.
But with cybersecurity now a board-level priority, many stakeholders have simultaneously become overwhelmed by abstruse cyber concepts. Although learning more about the organization's cyber exposure is generally helpful, many of the traditional cyber KPIs are highly technical and fail to communicate tangible insights to those without the relevant expertise or training, consequently enlarging the gap that had previously disconnected chief information security officers (CISOs) from board members.