Annual Loss Expectancy is the headline output of a quantitative risk analysis. In FAIR terms it is Loss Event Frequency multiplied by Loss Magnitude. In a Monte Carlo simulation it is a distribution; the question "what is our ALE for ransomware?" is properly answered with a range (90th percentile, median, 10th percentile) rather than a single number.
The framing matters because boards make capital allocation decisions, not heatmap colour decisions. A scenario with an ALE distribution that has a 10% chance of exceeding 5 million euros annually is a different conversation than the same scenario filed as "high impact, medium likelihood". The former lets a CFO compare it to the cost of mitigation, an insurance premium, or the loss of a major contract; the latter does not.
ALE figures should always be reported with their uncertainty intact. A median ALE of 800,000 euros with a 90th-percentile of 4 million tells a different operating story than an 800,000 euro point estimate. Quantitative risk done well preserves the spread; quantitative risk done badly collapses it back to a single number that gets argued over instead of acted on.