Ted Ritter Cyber Velocity Blog and Articles

Using SANS-20 to Cut Through Security Vendor Hype

0 Comments

/

October 6, 2015

Wahoo! This is the last post of the series. I think I’ve…

Using Open FAIR to Quantify Cybersecurity Loss Exposure

0 Comments

/

September 23, 2015

Why is Cybersecurity Risk Different? Should business executives…

Quantify Risk and You Quantify Cybersecurity Spending

0 Comments

/

August 25, 2015

Spoiler alert! In this post I answer the first question of my quest: what should we spend on cybersecurity. To do this we need a consistent way to quantify risk before we can even begin making spending decisions. This post is written for CIO/CISO and Chief Risk Officers who need a rational process to calculate risk and the necessary level of cybersecurity spending.

Cybersecurity Economics: What The CIO/CISO Must Know

0 Comments

/

August 6, 2015

This post is written for CIOs and CISOs that engage in budget discussions with their company CFO. The frustration during these discussions can be palpable and often it appears that the CFO "just doesn't get it." I believe the communication failure is with the CIO and CISO for not speaking in cybersecurity economic terms. Or, worse, they think ROI is all they need to say to win over the CFO. It's not even close! Please read on...

Cybersecurity ROI - Realm of Irrationality?

5 Comments

/

July 13, 2015

Do you know how much you should spend on cybersecurity? It’s such a simple question, yet the answer is terribly elusive. By the end of this series I hope to have some answers. Specifically, my goal is answering the following questions: How much should we spend on cybersecurity? What should we spend the cybersecurity dollars on?

Independent Blogs & Articles

Using SANS-20 to Cut Through Security Vendor Hype

Using Open FAIR to Quantify Cybersecurity Loss Exposure

Quantify Risk and You Quantify Cybersecurity Spending

Cybersecurity Economics: What The CIO/CISO Must Know

Cybersecurity ROI - Realm of Irrationality?

Cyber Velocity

Pages

Categories