HOME OF FAIR

THE STANDARD QUANTITATIVE MODEL FOR INFORMATION SECURITY AND OPERATIONAL RISK

Join leading information risk, cybersecurity and business executives to collaborate on the development and the sharing of industry-leading best practices for quantifying and managing information risk.

upcoming-events-bg.png

2017 FAIR CONFERENCE

FAIRCON 17 is October 16 & 17 in Dallas, Texas!
FAIR_yellow_21.png
A STANDARD BY
partners_12
TECHNICAL ADVISOR
partners_09
SPONSORS
partners_09
EDUCATION PARTNERS

partners_03      partners_06      partners_17       FAIR_yellow_49                        

RECENT BLOGS

Jack Jones’ Top 10 Blog Posts

Jack Jones…creator of the FAIR model (that’s Factor Analysis of Information Risk)…author of  the FAIR book Measuring and Managing Information Risk: A FAIR Approach…chairman of the FAIR Institute…and the leading evangelist for effective risk measurement based on critical thinking.  For a quick education on Jack’s thinking and the FAIR approach to risk, check out this reading list of Jack’s 10 most popular writings on the FAIR Institute blog.

Read More >>

AML & Sanctions Compliance: Top Operational “Risks” for 2017? – Part 3

After a short summer break, the FAIR Institute Operational Risk workgroup met again in August to continue our project using the FAIR methodology to revise a typical list of “top operational risks” (we found our list on Risk.net). 

Read More >>

Hot Job: Data Protection Officer for the EU’s GDPR

Look for thousands of job listings next year for “data protection officer” to meet a requirement of the European Union’s General Data Protection Regulation, the privacy law that goes into effect May 18, 2018. Here’s a quick rundown to see if you need to start shopping for a DPO, as well.

Read More >>

SEE ALL BLOGS

POPULAR BLOGS

Post Image
5 Must Read Books to Jumpstart Your Career in Risk Management

What are the must have resources for people new to operational and cyber risk? This list outlines what books I would recommend to new analyst or manager.

They’re not ranked by which book is best....

Read More >>
Post Image
NIST CSF & FAIR - Part 1

The question often arises, “How is FAIR different from (or better than) a framework like NIST’s Cybersecurity Framework (CSF)?” The simple answer is: FAIR isn’t inherently better or worse; it is...

Read More >>
Post Image
What is a Cyber Value-at-Risk Model?

Over the past year, executive teams and board members across multiple industries have started to ask questions more forcefully about the risk posed by cybersecurity attacks. They are no longer...

Read More >>