Ever wondered how to truly gauge the effectiveness of your risk mitigation efforts? Learn how we transform complex risk assessments into actionable insights, helping you prioritize resources and make informed decisions. From home security analogies to cutting-edge GRC practices, this post will revolutionize your understanding of risk reduction.
"How to Model Security Maturity in Your Organization" Webinar Recap
Check out this recap of the webinar, "How to Model Security Maturity in Your Organization," co-hosted by SimpleRisk and GRC 20/20. This webinar helped equip participants with a clear roadmap on how to establish a security maturity baseline within their own organizations, create a desired state of maturity, and identify where gaps exist in order to achieve their objectives.
The OWASP Risk Rating Methodology and SimpleRisk
Over the years, we've received a number of inquiries about the OWASP Risk Rating Methdology with some contention around how we have integrated it into SimpleRisk. Some have questioned how SimpleRisk reaches its final risk score while others have pointed to differences in the Skill Level values. Let's delve into this...
Normalizing Risk Scoring Across Different Methodologies
If the "textbook" definition of risk scoring is Risk = Likelihood x Impact, then a Severe (5) impact and an Almost Certain (5) likelihood should have a score of 25, right? The answer isn't quite so simple...
What features do you want to see added to SimpleRisk?
Back in 2013, when I first started working on SimpleRisk in my spare time on nights and weekends, I started using a ...
