Audit has been too often perceived as a binary choice between pass or fail. In this session, we will provide some examples of how organizations can measure the maturity of it’s Cyber Security practice. A maturity scale can not only measure an organization’s journey, but also serve as a view into where the organization should invest limited resources in the pursuit of a stronger cybersecurity program.
This session will explore the frameworks and methodologies to build a more robust and data-driven cyber security maturity measurement. Participants will review practical examples, and take back methods which can be deployed and shared with executive leaders. In addition to applying an audit centric perspective, the session will explore the methods for internal auditors and risk professionals to add value to an organization’s development lifecycle and value generation.