FAIR Institute Blog

Q&A: Teaching FAIR to “Security Warriors” at Arizona State University

[fa icon="calendar'] Oct 30, 2017 10:00:00 AM / by Jeff B. Copeland posted in FAIR, Fair Conference 2017

[fa icon="comment"] 0 Comments

Kim Jones is a 30-year cybersecurity and intelligence veteran – his most recent private sector job was CSO at credit card processor Vantiv, where he started experimenting with FAIR more than five years ago. Recently, he turned cyber-educator as Director of the Cybersecurity Education Consortium at Arizona State University. We talked to Kim at the recent FAIR Conference 2017, where he appeared on the panel “What CISOs Need to Tell the Board”.

Read More [fa icon="long-arrow-right"]

FAIR Conference 2017: Highlights from the Sessions

[fa icon="calendar'] Oct 27, 2017 4:01:25 PM / by Jeff B. Copeland posted in FAIR, Events, Fair Conference 2017

[fa icon="comment"] 1 Comment


Front-line experience, freely shared among friends – that about sums up the spirit of the speakers at the recent FAIR Conference 2017, a lineup of leading FAIR practitioners who were amazingly candid about their success and challenges in spreading the
FAIR risk revolution to their organizations.

Read More [fa icon="long-arrow-right"]

Now Available: Practice FAIR with Our Free Training App

[fa icon="calendar'] Oct 23, 2017 10:08:57 AM / by Jeff B. Copeland posted in FAIR

[fa icon="comment"] 0 Comments

Big news if you’re a student of FAIR, an organization evaluating FAIR before taking the plunge on a paid risk analysis solution, a do-it-yourselfer who’s been running FAIR on a spreadsheet, or just curious about the buzz around the quantitative model that’s shaking up the risk-analysis profession. The FAIR Institute has just released FAIR-U, the first officially sanctioned training app for FAIR. The tool is offered free of charge by RiskLens, Technical Advisor to the FAIR Institute.

Read More [fa icon="long-arrow-right"]

A Crash Course on Capturing Loss Magnitude with the FAIR Model

[fa icon="calendar'] Oct 20, 2017 2:32:01 PM / by Teresa Suarez posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

In the FAIR model for risk analysis, Loss Magnitude—i.e. the monetary impact of a loss event—is bucketed in six Forms of Loss: Productivity, Response, Replacement, Competitive Advantage, Fines & Judgements, and Reputation.

Read More [fa icon="long-arrow-right"]

ADP's Roland Cloutier and Bank of America's David Sheronas Honored with 2017 FAIR Awards

[fa icon="calendar'] Oct 19, 2017 9:53:34 AM / by Jeff B. Copeland

[fa icon="comment"] 0 Comments

Two pioneers of quantitative risk management based on the FAIR risk model were honored by their peers in information and operations risk this week at the FAIR Institute's 2017 FAIR Conference in Dallas.

Read More [fa icon="long-arrow-right"]

Jack Jones’ Top 10 Blog Posts

[fa icon="calendar'] Oct 13, 2017 8:30:00 AM / by Jeff B. Copeland posted in FAIR, Jack Jones

[fa icon="comment"] 0 Comments

Jack Jones…creator of the FAIR model (that’s Factor Analysis of Information Risk)…author of  the FAIR book Measuring and Managing Information Risk: A FAIR Approach…chairman of the FAIR Institute…and the leading evangelist for effective risk measurement based on critical thinking.  For a quick education on Jack’s thinking and the FAIR approach to risk, check out this reading list of Jack’s 10 most popular writings on the FAIR Institute blog.

Read More [fa icon="long-arrow-right"]

AML & Sanctions Compliance: Top Operational “Risks” for 2017? – Part 3

[fa icon="calendar'] Oct 12, 2017 10:52:53 AM / by Evan Wheeler posted in FAIR

[fa icon="comment"] 0 Comments

After a short summer break, the FAIR Institute Operational Risk workgroup met again in August to continue our project using the FAIR methodology to revise a typical list of “top operational risks” (we found our list on Risk.net). 

Read More [fa icon="long-arrow-right"]

Hot Job: Data Protection Officer for the EU’s GDPR

[fa icon="calendar'] Oct 9, 2017 8:25:39 AM / by Jeff B. Copeland posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Look for thousands of job listings next year for “data protection officer” to meet a requirement of the European Union’s General Data Protection Regulation, the privacy law that goes into effect May 18, 2018. Here’s a quick rundown to see if you need to start shopping for a DPO, as well.

Read More [fa icon="long-arrow-right"]

Amazon S3 Bucket Data Breaches – a FAIR Risk Analysis

[fa icon="calendar'] Oct 6, 2017 8:00:00 AM / by Rebecca Merritt posted in FAIR, Risk Management, Case Studies

[fa icon="comment"] 1 Comment

Sensitive documents from the US National Geospatial-Intelligence Agency…data on 14 million Verizon customers…voter information on 198 million Americans…Just a few of the reports this year on data breaches—or open data discovered by security researchers before a breach occurred—on Amazon S3 “buckets”.

Read More [fa icon="long-arrow-right"]

FBI’s Donald Freese Praises FAIR Approach at (ISC)² Security Congress

[fa icon="calendar'] Oct 3, 2017 12:35:20 PM / by Jeff B. Copeland posted in FAIR

[fa icon="comment"] 0 Comments

Donald Freese, Deputy Assistant Director of the FBI in the information technology branch, gave the opening keynote talk last week to the (ISC)² Security Congress in Austin, and hit some themes inspired by FAIR.

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts