Cyber risk quantification

Cyber risk quantification is a way to measure how vulnerable a system is to cyber attack. It uses data and information about the computer system, such as the type of hardware, the number of users, and software in use, to develop an understanding of the risks the system faces. This information is then used to calculate a score that shows how much risk the system has and how much damage could be done in the case of a malicious attack.

Related topics others have asked about:

Center for Internet Security, Factor analysis of information risk, Gordon–Loeb model, ISO/IEC 27001, ISO/IEC 27002, NIST Cybersecurity Framework