Boston, April 22, 2021 –Chief information security officers(CISOs)historically addressed cyber challenges by chasing regulatory and industry compliance, erecting defenses based on the latest technology, and quantifying risk using spreadsheets and FAIR techniques and software. While these approaches are useful, they are not sufficient to address growing cyber risk challenges. CISOs are moving away from cyber strategies driven by compliance requirements and new technical defenses, and instead are turning the conversation to measuring and describing overall business impact.

Aite Group interviewed over six CISOs of financial services firms in North America and spoke with five vendors to understand an important new trend Aite Group calls cyber risk decisioning, which measures outcomes of a cyber event in terms of how much it will cost the business.

This 13-page Impact Report contains one figure and one table. Clients of Aite Cybersecurity and Property & Casualty Insurance service can download this report, the corresponding charts, and the Executive Impact Deck.

This report mentions ColorTokens, NormShield, RiskLens, SSIC, and Unisys.