DeNexus launched Tuesday a turnkey solution for its users to report annually to the SEC on their cyber risk management and governance processes. The executive report automatically maps cyber risk metrics to SEC requirements for annual reporting of cyber risk management and governance.
The Executive Report and the cyber risk analyses detail an estimation of Annual Expected Losses and Value at Risk for compliance with SEC reporting. Utilizing ROI-based cybersecurity risk mitigation programs and both external (threats, firmographics) and internal data (network topology, devices, vulnerabilities, cybersecurity controls) with DeNexus’ proprietary models, the calculations include potential expected losses and their probabilities.