There are many approaches to conduct a strategic cybersecurity risks assessment. This is one of my favorite ways, using a Threat Agent Risk Assessment (TARA) methodology.
This paper was authored by Tim Casey, David Houlding, and I while we were at Intel. It showcases how to understand the origins of cybersecurity threats to an organization. The resulting knowledge can greatly improve the management of cyber risks!
I use the same approach when looking at digital risks in the #cryptocurrency world!
The full Intel solution brief “Improving Healthcare Risk Assessments to Maximize Security Budgets” can be downloaded here: