A batch of the best highlights from what Todd's read, .
Measurement of Risk: A set of possibilities, each with quantified probabilities and quantified losses. For example: “We believe there is a 10% chance that a data breach will result in a legal liability exceeding $10 million.”
How to Measure Anything in Cybersecurity Risk
Douglas W. Hubbard, Richard Seiersen, Daniel E. Geer, and Stuart McClure
of the applications and services that you manage, which of them are customers willing to pay you for? Which ones truly enhance competitive advantage? And which can you rely on vendors for?
The Unicorn Project
Gene Kim
Regardless of the level, our complaints can identify our point of stuckness by acting as an internal guide to reveal the values that mean the most to us.