KPMG Cyber KARE

Cyber KARE is KPMG in India’s proprietary toolkit that enables an enterprise to perform a self-assessment of its cyber security in a repeatable and measurable manner. Cyber KARE enables the management to perform a self-assessment of its organisation’s cyber security in a repeatable and measurable mechanism. The toolkit focuses on two key dimensions:

• Cyber risk exposure – assesses the organisation’s risk exposure based on macro factors (such as industry, nature of business, business channels, etc.)

• Cyber security preparedness – assesses the current readiness of the organisation across cyber security domains such as Cyber governance, Cyber risk management, and Cyber response & investigation.

The Cyber KARE toolkit is designed with the objective to provide the senior management and CXOs to gain a quantitative view of the organisation’s current positioning with respect to Cyber Risk Exposure (CEI – Cyber Exposure Index) and Cyber Security Preparedness (CPI – Cyber Preparedness Index).

Cyber KARE is agnostic to the sector, size or maturity level of the organisation on the cyber security journey. The assessment enables managements to monitor cyber risk at a strategic level and develop a strategy for effective cyber risk management. This also provides ability to management to benchmark their progress on cyber security journey.