1. Can you prove that your organization has not already been compromised by a cyber-attack?
2. How would you describe the operational tempo of your organization?
3. Which answer best describes how hardware and software baselines are managed within your environment?
4. Which answer best describes organizational processes for reducing human error in the workplace?
5. How would you describe the motivating priority for implementing cyber risk controls?
6. Which answer best describes IT decision-making within your organization?
7. Which answer best describes your organization’s cyber risk tolerance?
8. What is the primary cybersecurity focus within your organization?