FAIR Institute Blog

Improving How Cyber Risk Is Reported to the Board

[fa icon="calendar'] Jan 31, 2017 8:15:00 AM / by James Finn posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

"Evolving Cyberrisk Practices to Meet Board-level Reporting Needs," is Jack Jones' latest article featured in the ISACA Journal, Volume 1, 2017.

Read More [fa icon="long-arrow-right"]

A FAIR Risk Analyst's Take on the NIST CSF 1.1 Draft Update

[fa icon="calendar'] Jan 27, 2017 8:15:00 AM / by Chad Weinman posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

FAIR specialist Chad Weinman from RiskLens recently shared his thoughts about the draft update 1.1 to the NIST Cybersecurity Framework in a RiskLens blog post. We are re-posting the most salient parts of his article for the benefit of FAIR Institute members. 

Read More [fa icon="long-arrow-right"]

Cyber Risk Workgroup Discusses "Clarifying Risks"

[fa icon="calendar'] Jan 25, 2017 4:45:00 PM / by Jack Jones posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Last week we held the second Cyber Risk Workgroup call, with excellent attendance and active engagement. During the call, we discussed the white paper I wrote regarding “Clarifying Risks”.

Read More [fa icon="long-arrow-right"]

What Is Vulnerability?

[fa icon="calendar'] Jan 23, 2017 8:30:00 AM / by Steve Poppe posted in FAIR, Risk Management

[fa icon="comment"] 4 Comments

If you are confused by what standards and reputable sources mean by “vulnerability,” or “a vulnerability,” take heart.  You have company.  Our profession has done a great job in confusing itself.  Let’s sort it out.

Read More [fa icon="long-arrow-right"]

What is Open FAIR™ and Who is The Open Group?

[fa icon="calendar'] Jan 20, 2017 8:00:00 AM / by Jim Hietala posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Risk Practitioners should be informed about the Open FAIR body of knowledge, and the role that The Open Group has played in creating a set of open and vendor-neutral standards and best practices in the area of Risk Analysis.

Read More [fa icon="long-arrow-right"]

Examining a Defense of NIST 800-30

[fa icon="calendar'] Jan 17, 2017 12:15:00 PM / by Jack Jones posted in FAIR, Risk Management

[fa icon="comment"] 2 Comments

A couple of weeks ago I wrote a blog post pointing out some problems with NIST 800-30 (Fixing NIST 800-30). 

Read More [fa icon="long-arrow-right"]

Calling for FAIR Institute Blog Contributors

[fa icon="calendar'] Jan 13, 2017 7:10:12 PM / by James Finn posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

We believe strongly in creating a sense of community with our members and would like to offer this unique opportunity to become a thought leader in a community that is rich with CISOs, CIROs, academics, and other established cyber risk professionals. With a well-established membership of over 700 members, the FAIR Institute continues to grow every month.

Read More [fa icon="long-arrow-right"]

[White Paper] A Clarification of "Risks"?

[fa icon="calendar'] Jan 12, 2017 8:00:00 AM / by Jack Jones posted in FAIR, Risk Management, White Paper

[fa icon="comment"] 4 Comments

One of the most significant barriers to effectively measuring and communicating about risk is the imprecise use of fundamental nomenclature.

Read More [fa icon="long-arrow-right"]

Mark Your Calendars For 2017 Cyber Risk Workgroup Calls

[fa icon="calendar'] Jan 4, 2017 8:00:00 AM / by James Finn posted in FAIR, Risk Management, Events

[fa icon="comment"] 0 Comments

We closed out the end of 2016 with the inaugural Cyber Risk workgroup call.

Read More [fa icon="long-arrow-right"]

Fixing NIST 800-30

[fa icon="calendar'] Jan 3, 2017 8:30:00 AM / by Jack Jones posted in FAIR, Risk Management

[fa icon="comment"] 11 Comments

I’ve encountered a number of organizations that use guidance provided by special publication NIST’s 800-30 to measure the risk associated with one thing or another.

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts