From Heatmaps to Histograms

Transform how your organization measures cyber risk — move beyond vague heatmaps to data-driven, decision-ready analysis.

Coming Early 2026

PREORDER NOW
JOIN THE NEWSLETTER

Book Overview

A Practical Guide to Cyber Risk Quantification

From Heatmaps to Histograms is a beginner’s guide to cyber risk quantification, turning vague heatmaps into actionable data and scenarios.

Line graph with an upward trend and an arrow at the end.

From Vague to Credible

Learn how to replace heat maps and color codes with measurable, data-based insights that drive business outcomes.

Icon of a calculator on a blue background

Practical Methods

Use accessible tools like Excel and Monte Carlo simulations to quantify cyber risk without advanced math.

Icon of a checkmark inside a circle connected to two person icons, representing a completed connection or successful interaction.

Executive Communication

Translate complex risk data into clear stories that executives understand and make informed decisions.

A blue icon with a white target and arrow symbol

Future-Proof Your Cyber Risk Career

Quantitative risk skills are becoming the standard. Get the methods, models, and confidence to stand out and move up.

MORE ABOUT THE BOOK

About the Author

Meet Tony Martin-Vegue

Tony Martin-Vegue is a cyber risk consultant, speaker, and writer. He’s built and led technology risk programs at Netflix, fintechs, and global financial services firms — helping organizations move from vague heatmaps to data-driven risk decisions.

Tony Martin-Vegue is giving a presentation with a slide in the background.
LEARN MORE ↗

Praise for From Heatmaps to Histograms

  • "Tony Martin-Vegue makes a strong case for replacing certain popular risk assessment methods and he goes further with practical approaches needed to implement better methods. He adds multiple case examples and step-by-step procedures with the primary goal of making even more quantitative concepts accessible to every reader. I highly recommend his book."

    Douglas Hubbard, author and measurement expert

  • "From Heatmaps to Histograms is a significant contribution to our profession, and would be required reading for anyone in my organization if I was still a CISO. Brilliantly written for those with little or no background in quantitative risk measurement, it also will be very useful to those with years of experience. This is just further evidence that Tony is one of the leading contributors to the future of our profession."

    Jack Jones, Creator of FAIR

  • "I finally have a clear answer to the question I’m asked most often by those just starting out: Where do I begin with measuring cyber risk? This book is the definitive starting point for anyone serious about becoming a cybersecurity risk modeler."

    Richard Seiersen, Author and Chief Risk Technology Officer, Qualys.

Learn How to Turn Risk Into Better Decisions

Stay updated — Get practical insights, case studies, and tools from Heatmaps to Histograms: Field Notes — my free newsletter on cyber risk quantification.

Read More From Tony

Read Tony’s essays on cyber risk quantification, decision science, and security analytics, linking From Heatmaps to Histograms with real-world risk challenges.

SEE ALL ESSAYS →

Tools That Turn Insight Into Action

Tools & Downloads

Access practical worksheets and templates from From Heatmaps to Histograms to put cyber risk quantification into action.

Person using a MacBook Air laptop on a dark table with a coffee mug and two pens nearby.
EXPLORE TOOLS ↗