Introduction

This book is written as a handbook for those who want to understand cyber from a business point of view. It provides clear direction into how best to work with cyber as an enterprise risk. Most importantly, it provides a line of sight into how an organization can benchmark and increase cyber resilience. It is for anyone in the organization, including all stakeholders whether they be executives or managers, in roles as diverse as C-level positions, business unit owners, or those who are focusing on compliance, risk, privacy, audit, or cyber itself. It is useful regardless of the type of organization you work for or with, and it speaks to every industry audience. It focuses on strategic and tactical use cases that lead to decreasing cyber risk regardless of the size or maturity of your organization.