Cyber Risk Review is the independent evaluative directory of reports, research and analysis for cyber risk professionals.

Its mission is simply to focus on the most valuable and insightful cyber risk collateral, to help cyber governance professionals stay aware of what is out there and give them basic information about its content and relevance to their professional remit.

The cyber risk sector is rich in market information: each week, new cyber security intelligence is published into digital domains in the form of

• reports, research, studies

• surveys, polls, trend trackers

• best practice guides, technology briefings, white papers

• executive briefings, government advisories, market analyses

It comes from a wide range of sources: vendors, industry bodies, industry analysts and others. Much of it contains information pertinent to those responsible for an aspect of cyber security governance – be they frontline technologists or executive decision makers.

Some of this intelligence is informative and valuable. Some of it has limited usefulness. Some is essentially content marketing put out in the guise of insightful guidance.

The snag for cyber security professionals is not so much quality assurance, but awareness: keeping updated with what is new and what is available to you. That is where Cyber Risk Review adds value.

Cyber security’s scope and aims evolve and will continue to do so. The importance of quantifiably effective cyber governance now applies to more aspects of an organisation’s ability to succeed than just its critical IT systems and data. As a critical function it must ensure that the management of every aspect of an enterprise’s operations and practice – people and partners, culture and identity, technology and delivery – understands that a digitally transformed business environment is one that is primed for change.

Cyber threats evolve also. They are no longer confined to hackers and viruses. The history of cyber-attacks already runs into many volumes – even though they have existed in force for a relatively short time. Cyber governance brings a range of extra risks to the enterprise, from staff training to regulatory penalties, from shareholder behaviours to crisis response. Increasingly, cyber security denotes a wider risk control imperative.

Exposure must be maintained at the lowest possible level. A proactive security stance toward risk requires diverse sources of risk intelligence. Cyber governance officers in the c-suite and Security Operations Centre need regularly-updated information that enables a wholistic understanding of cyber threats – and of the defensive strategies that are open to them.

The cyber security industry is unique in its willingness to sponsor the researching and collation of a wide range of market intelligence to be made available at no more cost that the time it takes to register to receive it. Such intelligence includes reports, research, surveys and studies, analysis and recommendations, insight and calls to action.

Cyber Risk Review will be updated as soon as new cyber risk-relevant intelligence collateral becomes available. The criteria by which specific intelligence is featured is based on an objective editorial assessment of its content, presentation and likely value to cyber risk professionals. Its purpose is simple: to highlight existence and promote awareness of availability of these useful resources.

JAMES HAYES
Editor

Image credit: Moon / Unsplash