What is Cyber Risk Quantification (CRQ)?

Cyber risk quantification is the process of determining the likelihood and potential impact of a cyber attack or security breach. The probability and impact will vary based on your company's size, threat type, and industry.

It involves assigning numerical values to various aspects of cyber risk, such as the probability of a cyberattack occurring and the potential financial losses resulting from such an attack. This quantification allows organizations to make more informed decisions about managing and mitigating cyber risks. With CyberStrong, users can use multiple cyber risk quantification models: NIST 800-30, FAIR risk model, and custom risk models. CISOs can better communicate with business-side leaders by translating cyber risk into financial terms.

Return to Cyber Risk Quantification Glossary