I updated my cheat sheet for creating cybersecurity assessment reports. It's a one-page doc, which you can customize:
https://zeltser.com/security-assessment-report-cheat-sheet
In a strong cybersecurity assessment report, you rate each finding by its risk to the organization rather than its raw tool score. You give readers the context and remediation steps they need to act on it. This cheat sheet covers how to analyze the data, document scope and methodology, write up find
