Optiv Cybersecurity Dictionary

What is a Key Risk Indicator (KRI)?

Key risk indicator metrics articulate an organization’s level of risk and allow security and business leaders to track how the risk profile is evolving. For instance, cybersecurity operations can use metrics that analyze the threats and vulnerabilities reported by various tools. Resulting data sheds essential insight on the organization’s exposure to attack.


There are dozens of useful KRIs, including:



Contact Us