FAIR Institute Blog

Jon Matthews

Jon Matthews

Recent Posts

Video: A FAIR Case Study From Bank of Montreal

[fa icon="calendar'] May 12, 2016 11:30:00 AM / by Jon Matthews posted in FAIR, Case Studies

[fa icon="comment"] 0 Comments

This case study by Laura Payne on 'Quantitative Risk Analysis & Information Security' does a very good job in explaining the journey of an organization like BMO, as it evolved from a 'High, Medium and Low' approach to measure and express risk to to a more scientific and quantitative approach. 

Read More [fa icon="long-arrow-right"]

How Infosec Maturity Models Are Missing The Point

[fa icon="calendar'] Mar 3, 2016 1:24:06 PM / by Jon Matthews posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Over 600 people attended Jack Jones' two sessions at RSA Conference 2016 on the subject of "How Infosec Maturity Models Are Missing The Point". 

Read More [fa icon="long-arrow-right"]

Learn from Jack Jones at the RSA Conference

[fa icon="calendar'] Feb 3, 2016 11:26:14 AM / by Jon Matthews posted in Risk Management, Events

[fa icon="comment"] 0 Comments

Don't miss the exciting opportunity to learn how to improve your information risk management program directly from the author of FAIR,  Jack Jones.  

Read More [fa icon="long-arrow-right"]

Free Open FAIR Seminar - Learn about Quantitative Risk Analysis

[fa icon="calendar'] Jan 26, 2016 7:05:33 PM / by Jon Matthews posted in FAIR, Events

[fa icon="comment"] 1 Comment

Reserve your spot at a free half-day seminar on Open FAIR, a Open Group standard for quantifying information and operational risk. 

Jumpstart your knowledge and leave with valuable and actionable insights that can help you analyze risk better. 

When: Thursday,  Jan 28 2015, from 9 am to 1 pm 

Where: The Open Group Offices, 44 Montgomery Street, Suite 960, San Francisco, CA 94104

Read More [fa icon="long-arrow-right"]

How Was FAIR Started?

[fa icon="calendar'] Jan 19, 2016 11:50:23 AM / by Jon Matthews posted in FAIR, Events

[fa icon="comment"] 0 Comments

The standard risk model known as Factor Analysis of Information Risk (FAIR) was authored by Jack Jones while he was a new CISO at Nationwide Insurance in 2001. Part of his job was to put together an information security strategy, present it to senior executives and ask for money. During this process, one of the executives asked, “How much risk do we have?” The only answer Jack had was a shrug of his shoulders and a single word, “Lots”. The executive then asked the question, “If we spend these millions of dollars, how much less risk will we have?” Jack shrugged again and replied, “Less”. The executive knew he wasn't going to get a better answer, but wanted to make a point.

Read More [fa icon="long-arrow-right"]

Who is the Author of FAIR?

[fa icon="calendar'] Jan 15, 2016 3:53:23 PM / by Jon Matthews posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

FAIR was originally authored by Jack Jones, a 3-time CISO and IT risk officer. Jack Jones is the foremost authority in the field of information risk management. As the Chairman of the  FAIR Institute and co-founder and EVP R&D at RiskLens, he continues to lead the way in developing effective ways to manage and quantify information risk. 
Read More [fa icon="long-arrow-right"]

The Open Group Conference – How to Quantify Information Risk Through the Open FAIR Standard

[fa icon="calendar'] Jan 7, 2016 4:39:16 PM / by Jon Matthews posted in FAIR, Risk Management, Events

[fa icon="comment"] 0 Comments

Tired of the same old way of determining risk? What if there was an accurate way to quantify cyber risk? Want to learn how to be a better manager of cyber risk? If you answered yes to any of these questions, then this is the place for you!

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts