Elevate Risk Management

Every executive has to justify their organization and spend.  The CISO role has unique challenges in justifying theirs. High impact events with low probability need to be modeled appropriately to drive an effective conversation with boards, investors and fellow executives.

Modeling Ransomware with a 90% confidence interval of 200,000 to 2,000,000 looks like this

In the figure to right we have captured the log normal distribution. Using this technique, we can then weigh the benefits of new staff, service or technology and how it would adjust our expected outcomes.
RansomwareLEC

Recent Posts

About

Blaine Connaughton is an accomplished security and risk management professional based in Boston, MA, with significant expertise in serving healthcare and technology enterprises. Blaine specializes in applying advanced statistical risk methodologies and has held security leadership roles across health technology, medical device, and cybersecurity organizations. His career experience also includes marketing technology consultant, mobile application development, and probabilistic risk assessment for critical infrastructure, including the nuclear energy sector. Blaine holds a Bachelor’s degree in Physics from Worcester Polytechnic Institute (WPI).

Modified headshot