ORX Cyber:
A guiding light for cyber risk management

Is your organisation trying to manage cyber risk in the dark without the right data and industry insights? Building on the work we have been doing over the past 18 months, we are pleased to be offering a new service to the financial sector, ORX Cyber.

Get in touch today to find out more about ORX Cyber

Why focus on cyber risk?

Cyber risk is increasing across all industries, and the financial sector is no exception. It has consistently been in the top two operational risks facing financial firms in our annual risk horizon studies since 2018. We understand that cyber risk costs your firm money and can prevent you from achieving your business goals. That's why we created ORX Cyber.

About ORX Cyber

ORX Cyber is a unique operational risk management service created specifically for cyber and information security risk professionals in the second line of defence. ORX Cyber combines loss data exchange with collaboration and research to provide second line practitioners with the insights and information they need to effectively manage and measure this key risk. The service has grown out of the pilot programme that we've run with our membership since 2019.

Contact us to discuss subscription options

Download the subscriber map to see which firms subscribe

ORX Cyber subsciber map

With ORX Cyber financial firms can

Become part of a global community developing cyber risk management

Access a trusted source of cyber and information security risk event data

Understand your risk exposure and see how it compares to your peer group

Improve your practice by learning from other financial organisations

Enhance your scenarios and models with more focused data

Understand the latest industry trends through data and analysis

Why is managing cyber and information security a challenge?

Through our work with banks and insurers around the world, we identified four main obstacles that are currently hindering cyber and information security risk management:

Lack of easily available, relevant data
Lack of clarity and consistency in practice
Difficulty comparing and benchmarking data and practice
Multiple and conflicting industry frameworks

ORX Cyber is designed to break down these barriers, enabling more effective and efficient cyber risk management. This ultimately helps the second line to support the business to achieve their strategic goals in a safe and sustainable way, and protects your customers, shareholders and reputation from the damaging effects of cyber attacks.

Overcome these challenges with ORX Cyber through

Cyber event data exchange

Get a fuller understanding of cyber events through secure data exchange for all participants

Sharing & documenting practice

Share, benchmark and learn from each other's practice to find better ways of managing cyber risk

Research studies & white papers

Research and thought leadership focusing on the areas of cyber most important to you

Collaboration & networking

Share knowledge and experiences with your peers and work together to improve cyber risk management

Controls and indicators library

The first of its kind, this library will be included in ORX Cyber and allows you to compare and benchmark your cyber risk management controls and indicators against those of your peers. The library will help you identify effective controls and indicators for cyber and information security risk management. You can also use it to support the effective allocation of IT budget.

Take a look at a selection of reports, highlights and other outputs from the service so far...

ORX Cyber

Key themes in overseeing cyber supplier risk exposure

Melanie Lavallin

29 July 2021

In June 2021, we ran a research study with subscribers of our ORX Cyber service exploring how financial firms approach the oversight of supply chain cyber risk exposure. The results of the study highlighted 5 key themes - find out what they are.

ORX Cyber: A guiding light for cyber risk management