---
type: "term"
title: "KRI (Key Risk Indicator)"
description: "A leading indicator demonstrating the potential for a future cyber threat."
resource: "tlctc:term:kri-key-risk-indicator"
tags:
  - "glossary"
---
# KRI (Key Risk Indicator)

A leading indicator demonstrating the potential for a future cyber threat. KRIs show possible risks before a threat occurs and must be observed in a meaningful timeframe. Example: "Number of unpatched critical vulnerabilities older than 7 days" indicates how processes handle critical vulnerabilities, helping identify, understand, and prioritize security efforts to prevent incidents.