CSOonline

Measuring cybersecurity: The what, why, and how

CISOs need to report the key security performance and risk indicators to executive teams in way that they find meaningful and actionable. A core pillar of a maturecyber risk program is the ability to ...

Measuring What Matters: Turning GRC Metrics into Strategic Intelligence

By focusing on the right KPIs across governance, risk, compliance, auditing, security, incident management, third-party risk, ...
Supply Chain

Measuring KPIs and KRIs for Comprehensive Supplier Performance Management

Measuring a supplier’s adherence to contractual service levels is at the core of supplier performance management. Yet, while every organization tracks key performance indicators (KPIs) on some level, ...
Supply Chain

The Imperative of Holistic Risk Assessment in a Changing World

Holistic risk assessment is a multifaceted approach that seeks to understand, evaluate and manage risk across an organization. It involves creation of a vision-driven risk appetite framework for ...