New Video: Cyber Risk Quantification (CRQ)

The End of Heatmaps?

Author

Steve McMichael
July 21, 2025

Originally published in the Simply Cyber Academy Blog

If you'd like to elevate your cybersecurity risk assessments from the BOGSAT method (a Bunch of Guys or Gals Sitting Around And Talking) to Cyber Risk Quantification (CRQ), serial recovering CISO Richard Seiersen is a great follow. I put what I learned from his book "How to Measure Anything in Cybersecurity Risk" and his CRQ workshop on a page, and asked him to check for blind spots in this super fun interview. Check it out if you've ever sat through a risk assessment meeting that felt like navigating a Ouija board, and wanted a better way.

Subscribe to keep reading

This content is free, but you must be subscribed to CPA to Cybersecurity to continue reading.

I consent to receive newsletters via email. Terms of use and Privacy policy.

Already a subscriber?Sign in.Not now