3.A: Cyber Risk Indicator

[Adopt] a Cyber Risk Indicator

Other Information:

We proposed a Cyber Risk Indicator in our 2013 paper, "Measuring What Matters," which argues that cybersecurity risk depends on the performance of an agency's information systems and the maturity of attendant information security policies and processes. We also contend that these factors need to be assessed in the context of organizational priorities.

Indicator(s):

Indicator:1

Content