How to Quantify Cybersecurity Exposure as Business Risk
How can CISOs best quantify the cybersecurity risks facing their organisation? Increasingly, business leaders are calling on them to express this not in terms of technical risk, but risk to the business. Such knowledge is crucial for better guiding cybersecurity investments and understanding their return investment (ROI).

Accordingly, how can CISOs best identify and continually track the actual threats facing their organisation? How should they identify and prioritize the attack scenarios — perhaps including data leakage, or a ransomware outbreak — that would have the biggest impact on their particular business? What are best practices for quantifying these risks, and demonstrating cybersecurity ROI by mitigating them?

This invitation-only roundtable on How to Quantify Cybersecurity Exposure as Business Risk will provide answers to these and other critical questions.

Guided by insights from Eyal Greenberg of event sponsor CYE, the roundtable will also draw on the experiences of the attendees, who will discuss best practices for quantifying cybersecurity risks as well as communicating them to business leaders.

Discussion topics will include:

  • What are useful models for quantifying your cybersecurity risks?
  • What common challenges do you face, and what are useful workarounds?
  • How can your organization best quantify the financial impact (ROI) of cybersecurity investments based on risk mitigation?
  • How to transform highly technical reporting into business insights?
Mat Schwartz
Mat Schwartz
Executive Editor

Eyal Greenberg
Eyal Greenberg
Head Of Research

Watch a brief video on the topic.
October 11, 2022 | 06:00 - 09:00 pm CEST | Via Monte Napoleone, Frankfurt
By submitting this form you agree to our Privacy & GDPR Statement.
*Teilnehmer kommen nur auf Einladung zu diesem Round Table. Plätze sind begrenzt. Unsere Event-Mitarbeiter vergeben Plätze im Hinblick auf berufliche Qualifikation und Zusammensetzung der Teilnehmer. Nach den Chatham House Rules bleibt in diesem virtuellen Raum, was hier besprochen wird. Die Gespräche werden nicht aufgezeichnet und nicht zitiert.

If you have any trouble submitting this form, please send an email to for assistance.
Sponsored By

CYE brings a fact-based approach to organizational cyber defense and takes the guesswork out of cyber risk management. Utilizing data, numbers, and facts, CYE helps security leaders know what business assets are at risk and execute cost-effective remediation projects for optimal risk prevention. Founded in 2012 and led by the co-founder of Israel army’s Red Team unit, CYE serves as a trusted cybersecurity partner to medium size to Fortune 500 companies in multiple industries around the world. CYE improves the cybersecurity maturity of its customers by enabling better identification, prioritization, and reduction of cyber risks.

ISMG Brands

ISMG’s 30 global media properties provide security professionals with industry and geo-specific news, research and educational events.

October 11, 2022 | 06:00 - 09:00 pm CEST

How to Quantify Cybersecurity Exposure as Business Risk