Board-Ready Risk Dashboard
A one-page executive dashboard template for presenting cybersecurity risk posture to boards and C-suite. Uses the risk-as-financial-exposure framework outlined in "The CISO Mindset" article.
What's included
Risk posture indicator (RAG status)
Top risks with ALE estimates
Investment effectiveness summary
Quarter-over-quarter trend view
Incident Response Readiness Checklist
140-point checklist for assessing your organization's incident response capability across people, process, and technology. Maps to NIST CSF and SANS IR lifecycle phases.
What's included
Detection & analysis controls (48 items)
Containment & eradication (36 items)
Recovery & post-incident (32 items)
Scoring rubric & maturity model
Security Program Maturity Framework
A five-level maturity model for assessing and roadmapping your security program across 12 capability domains. Designed for annual program reviews and board-level reporting.
What's included
12 capability domain definitions
Level 1–5 maturity descriptors
Self-assessment scoring guide
Roadmap prioritization worksheet
Security Awareness Program Playbook
End-to-end playbook for designing, launching, and measuring a security awareness program. Includes campaign calendar, phishing simulation guide, and metrics framework.
What's included
12-month campaign calendar template
Role-based training matrix
Phishing simulation run guide
Executive reporting metrics dashboard