The presenter shares timely insights on emerging trends in modern cybersecurity governance he contributed to two WEF whitepapers for the oil and gas industry including authoring one of seven case studies highlighting the importance of public-private collaboration in protecting critical infrastructure. The session brings attention to the recent regulatory adoption of security ratings by the New York Department of Financial Services for fulfilling its mission of supporting business resilience in the oversight of nearly 3,000 financial institutions. These are just a few real-world examples of third-party risk management operating at scale. Drawing from work that supports continuous monitoring for the insurance sector (Tokio Marine), entertainment (Disney), manufacturing (Intel) and banking (Rabobank) an overview of strategic thinking about risk at the governance level gives the attendees a new perspective crafting an innovative vision of security frameworks powered by 'event-based' assessments of security posture as well as cognitive and systemic risk indicators.