10-11 Carlton House Terrace, London, Westminster, SW1Y 5AH

CISO 360 Think Tank: Cyber Risk Quantification

How are CISOs measuring, prioritising, and communicating what matters most?
What makes CRQ defensible in the CISO 360 board context?
How are we using CRQ to balance innovation, trust and resilience?

Wednesday 18 March 2026
{10-11} Carlton House Terrace and Gardens – Westminster – London

14:00-17:30: Fireside Chat and Roundtable
17:30-19:00: Networking Reception

Register
Download Guest PDF Invitation
Download "I am attending" Social banner

Add to Calendar


AppleGoogleOffice 365OutlookOutlook.comYahoo

 

You are warmly invited to an exclusive half-day – CISO 360 Think Tank on Cyber Risk Quantification taking place on Wednesday, 18 March at 10–11 Carlton House Terrace. This iconic London venue overlooks St James’s Park, Whitehall, and The Mall, offering a setting worthy of this senior-level, strategic conversation.

Hosted by Pulse Conferences and kindly sponsored by Qualys, this CISO 360 Think Tank brings together a group of  CISOs and senior cybersecurity practitioners for a closed-door, peer-led conversation focused on a topic that is close to the hearts of many CISOs today: how is cyber risk quantified, prioritised, and communicated in a way that boards can genuinely act upon?

The afternoon opens with afternoon tea. A Fireside Chat follows where CISOs will share candid insight into how they are approaching cyber risk quantification in practice—what is gaining traction in boardrooms, where friction remains, and how expectations are differing and evolving at pace with AI. 

CISOs and cybersecurity practitioners are then invited to share their experiences and knowledge on measuring and communicating what matters most in cybersecurity risk in smaller roundtables co-steered by a prominent CISO and senior Qualys executives.

Questions:

  • How do CISOs measure, quantify, and communicate cyber risk?
  • What makes CRQ defensible in the CISO 360 board context?
    How are we using CRQ to balance innovation, trust and resilience?
  • How are CISOs keeping pace in communicating risk ‘at speed’ to the Board?
  • What metrics get the best reaction when shared?
  • How is risk managed at the time of an incident?
  • Who owns the risk?
  • How are we balancing ROI in innovation with security?
  • What are our predictions on what risk reduction and measures will look like in the next 5-10 years?

Held under The Chatham House Rule

  • Benchmark and share learnings with CISO peers 
  • Actionable takeaways and future-facing risk perspectives to enhance cybersecurity posture
  • Learn from real-world journeys and experience shared, what works, what doesn’t
  • Forge connections to expand your professional network with CISO peers and specialists in your region

The day concludes with a networking reception, keep talking with peers in a more relaxed setting.

Many thanks and we look forward to meeting you there.

CISO 360 Team
Pulse Conferences

Please note:

Places are limited and reserved for CISOs and Senior Cybersecurity Practitioners.

Sponsored by

Hosted by

About Qualys

Qualys is a pioneer and leading provider of disruptive cloud-based IT, security and compliance solutions with over 19,000 active customers in more than 130 countries, including a majority of each of the Forbes Global 100 and Fortune 100. Qualys helps organizations streamline and consolidate their security and compliance solutions in a single platform and build security into digital transformation initiatives for greater agility, better business outcomes, and substantial cost savings.

For more information, please visit www.qualys.com

Why Attend

  • Hear directly from peers during a CISO-led Fireside Chat on how cyber risk quantification is landing at board level
  • Benchmark your approach against other senior security leaders facing similar challenges across sectors
  • Translate cyber risk into decision-grade insight that influences investment, trade-offs, and risk acceptance
  • Engage in trusted, closed-door discussion under Chatham House Rule, enabling candid and practical exchange
  • Build meaningful peer relationships through curated networking, afternoon tea, and an end-of-day reception
  • Chatham House Rule applies: all discussions are confidential and non-attributed, ensuring open, trusted peer exchange throughout

Timings

Timings at a glance:
14:00-14:30       Guests arrive and afternoon tea is served
14:30-17:30       Fireside Chat and Roundtable Discussions 
17:30-19:00       Networking reception 

Practicalities

  • Chatham House Rule applies. Discussions are confidential and non-attributed, creating the space for honest exchange, challenge, and insight among peers.
  • This invitation-only Think Tank is complimentary for CISOs and senior cybersecurity practitioners and intentionally limited to ensure meaningful, high-value discussion.
  • Seating is strictly limited, with places allocated on a first-to-confirm basis.

AGENDA


AGENDA

14:00 – 14:30

Guest Arrivals and Afternoon Tea 

14:30 – 14:45

Introductions
Co-Chairpersons

14:45 – 15:25

Fireside Chat: From Quantified Cyber Risk to Strategic Advantage

How CISOs use risk quantification to influence board decisions

This fireside conversation explores how CISOs use cyber risk quantification – not only for metrics or dashboards – to translate technical exposure into business, financial, and strategic insight for the board. Grounded in real boardroom experience, the discussion focuses on how quantified cyber risk supports investment decisions, trade-offs, crisis response, and growth initiatives, and how CISOs build credibility without false precision.

  • If your CFO audited your model assumptions tomorrow, would your numbers survive scrutiny?
  • Is CRQ a governance breakthrough — or a political lever to unlock budget?
  • How do you use quantified cyber risk (not just metrics) in board discussions?
  • Which quant-based threat and incident measures drive board-level decisions?
  • How do you translate cyber exposure into financial impact, ranges, or scenarios?
  • What risk–reward trade-offs have helped secure investment for AI, innovation, or transformation?
  • How do you justify security spend using loss avoidance, resilience, or confidence metrics?
  • What quantified insights help you compete for funding against revenue initiatives?
  • In a crisis, what quantified information do boards expect in the first 24–72 hours?
  • What one single metric gets the best reaction when I share it?

15:20 – 15:40

Coffee Break and Networking

15:40 – 17:00

Roundtable Discussions: Cyber Risk Quantification – Sharing and comparing successes and challenges

Three topics are discussed across three tables (or this could be two topics across four tables). Each table has two table hosts to facilitate the input and discussion, a senior strategist from Qualys and a CISO.  As a participating guest, you rotate tables once after 40 minutes, giving you the opportunity to contribute to both (or three) topic discussions.

Roundtable 1: Cyber Metrics That Matter
What are we really measuring—and why?

  • What cybersecurity metrics do you actively rely on today?
  • Which metrics influence prioritisation and which create noise?
  • Capability-based, control-based, or outcome-based: what works best?
  • What metrics survive escalation to ExCo or Board level?
  • Which metrics have you stopped usingand why?

Benchmarking Question
If you could only take three cyber metrics to your board tomorrow, what would they be—and what decision would they support?

Roundtable 2: Quantifying Risk Where It Matters Most
From exposure to prioritised business risk

  • How do you define “material cyber risk” in your organisation?
  • How do you identify and protect crown-jewel assets?
  • Do you use financial ranges, scenarios, or scoring—and why?
  • Where does quantification add clarity vs false precision?
  • How do assumptions and uncertainty get challenged?

Benchmarking Question
How confident are you that your top cyber risks reflect true business exposure – not just technical vulnerability?

Roundtable 3: Communicating Risk to the Board
From reporting to influence

  • How do you translate cyber risk into business language?
  • What framing resonates most with your board: trends, thresholds, scenarios?
  • How do you present uncertainty without losing credibility?
  • How do you avoid fear-based messaging and dashboard fatigue?
  • How aligned is cyber risk with enterprise risk and audit conversations?

Benchmarking Question
What has actually changed a board decision or investment discussion in your experience?

17:00 – 17:25

Summary of key points by Table Hosts

17:25 – 17:30

Closing Statements

 17:30 – 19:00

Networking Reception 

SPEAKERS


SPEAKERS

About the Speakers:

Speakers will be announced shortly – CISO-led

VENUE


VENUE

{10-11} Carlton House Terrace
London, SW1Y 5AH
www.10-11cht.com

Once the former residence of Prime Minister William Gladstone {10-11} Carlton House Terrace sits at the very heart of the capital, overlooking St James’s Park, Whitehall and the Mall. Superbly located just a short walk from Piccadilly, Charing Cross, and Embankment stations, the picturesque setting of St James’s gives the venue an air of distinction and the peaceful nature of Carlton House Terrace provides a rare reprieve from the hustle and bustle of the West End. The British Academy (housed within 10-11 Carlton House Terrace) is a forum for debate and engagement – a voice that champions the humanities and social sciences. Both through its convening power and an enhanced role as a funder of research, the Academy is developing programmes to address the great challenges of our time – nationally and internationally

The event will be hosted in the Council Room, a grand space, with impressive paintings on the walls, on loan from the National Portrait Gallery. Bright and airy with high ceilings and well-ventilated rooms that look out onto wrap around balconies, we have chosen this modern venue that is steeped in history with safety in mind and in keeping with a sense of the occasion. 

The networking hub will be in the Barnard Room, with its soaring ceilings, ornate guilt carvings and painted ceiling that will wow our guests! Located on the first floor of the venue, guests make their way to the Barnard Room room via a beautiful black marble staircase. Be enthralled by the Trompe L’oeil painted ceiling, commissioned by the Ridley family in the style of Eugene Delacroix, the leader of the French Romantic school. This unique painting remains unfinished due to the outbreak of war, during which the room was turned into a ward for wounded officers. During this transformative period, the nurses would push the beds to the open windows and people would cheer the heroes from the steps outside.

Directions to {10-11} Carlton House Terrace

{10-11} Carlton House Terrace is conveniently located just a short distance from many major transport links. Charing Cross station is an 8-minute walk. The venue is located a 2-minute walk from Trafalgar Square, behind the Institute of Directors (off Pall Mall). 

LONDON UNDERGROUND
Piccadilly Circus, Charing Cross, Embankment

MAINLINE TRAINS
Charing Cross, Waterloo.

BUS
Buses to all parts of London run every minute from Trafalgar Square.

PARKING INFORMATION
Please click here to get discounted parking rates at Trafalgar Parking.
For further travel information or to plan your journey, please click here.

Back to Pulse Conferences

You currently have JavaScript disabled!

This site requires JavaScript to be enabled. Some functions of the site may not be usable or the site may not look correct until you enable JavaScript. You can enable JavaScript by following this tutorial. Once JavaScript is enabled, this message will be removed.