How are healthcare CISOs reporting & measuring risks?
A trend that is growing and will help healthcare CISOs is Cyber Risk Quantification (CRQ). CRQ enables CISOs to measure and communicate cyber risk in financial terms and to also prioritize where to spend their next cyber dollar based on financial risk reduction vice technical measures.
Using CRQ CISOs are now able to answer questions like, “how much an attack would cost us?” and, “are we spending enough on security?” Applying CRQ for healthcare will not only help CISOs prioritize the right security investments, but it will enable the entire organization to understand and balance cyber risks alongside other risks they face.
How are healthcare CISOs reporting & measuring risks? | Security Magazine