Risk quantification can be a valuable tool for selling transformation to executives. It’s also important to understand how your company looks at risk. Most CEOs will have a certain amount of risk they’re willing to take called their risk tolerance. This will help you to understand if your project is worth pursuing. If your project won’t offset more risk than the risk tolerance, then it’s unlikely to be funded if it’s not a new feature or product.
We’ll explore how we can go about quantifying risk in real-world situations I’ve faced in presenting transformation initiatives. This information will help you to understand how a business looks at risk and the associated value of mitigating that risk. Want to start a new CI/CD initiative, bake in the risk averted by putting SAST and DAST in your pipeline. This would have helped Equifax avoid their breach and the risk of such a breach is very high and carries a very large cost.
We’ll also take a look at some additional resources to help you assess risk such as data on breaches, attacks, the FAIR tool, and other resources you can use once you leave the session.
What will the audience get?
The audience will understand how businesses are handling and thinking about risk today. They’ll understand the part they play in that system. And they’ll be able to start assessing the risk mitigation value of their projects in order to get them funded.