FAIR Institute Blog

[Video] 4 Tips for Starting Your FAIR Program from Musso Shaikh of Fannie Mae

[fa icon="calendar'] Aug 7, 2019 10:44:22 AM / by Jeff B. Copeland posted in FAIR, Events

[fa icon="comment"] 0 Comments

Attendees at the FAIR Institute Breakfast during the recent Gartner Summit on Security and Risk Management heard tales of three successful FAIR cyber risk quantification programs from Matthew Martin of LPL Financial, Robert Immella of Key Bank and, lastly, Musso Shaikh, Program Manager, Cyber Threat Intelligence, at Fannie Mae, the big provider of mortgage financing.

Read More [fa icon="long-arrow-right"]

FAIR Institute Launches FAIR Enablement Program

[fa icon="calendar'] Aug 6, 2019 12:22:33 PM / by Luke Bader posted in FAIR, Fair Institute

[fa icon="comment"] 0 Comments

To support the rapid pace of growth in new membership to the FAIR Institute - now at 6,000 members strong and anticipated to surpass 7,000 by year end - the FAIR Institute is growing its support capability and focus on enablement programs for all of its members worldwide.

Read More [fa icon="long-arrow-right"]

Capital One Breach Shows Cybersecurity Is “Lost in Noise”,  Jack Jones Tells New York Times

[fa icon="calendar'] Aug 1, 2019 8:13:20 AM / by Jeff B. Copeland posted in FAIR, Jack Jones

[fa icon="comment"] 0 Comments

New York Times reporters Stacy Cowley and Nicole Perlroth turned to FAIR Institute Chairman and RiskLens Chief Risk Scientist Jack Jones to answer the question, why are big banks in an Endless Fight with Hackers, as their article on the massive Capital One breach asks. 

Read More [fa icon="long-arrow-right"]

GAO Grades Federal Agencies ‘Fail' on Cyber Risk, Accelerating Movement to FAIR

[fa icon="calendar'] Jul 30, 2019 4:50:39 PM / by Jeff B. Copeland posted in Risk Management

[fa icon="comment"] 0 Comments

It’s a devastating report from the General Accounting Office that should accelerate the movement to cyber risk quantification (CRQ) and the FAIR model, already underway at the Department of Energy.

Read More [fa icon="long-arrow-right"]

3 Tips on How to Talk to SMEs about Cyber Risk Quantification

[fa icon="calendar'] Jul 30, 2019 12:49:04 PM / by Jeff B. Copeland posted in FAIR

[fa icon="comment"] 0 Comments

SMEs (that’s subject matter experts) own the systems, the applications, the processes and the business units in your organization—and own the data and insights you need to feed your cyber risk analytics.  

Read More [fa icon="long-arrow-right"]

Targeting Cybersecurity Investment - a FAIR Approach

[fa icon="calendar'] Jul 24, 2019 8:30:00 AM / by Denny Wan posted in Risk Management

[fa icon="comment"] 2 Comments

Targeting can be applied to the following tasks in the investment decision process based on the potential financial loss against an asset:

  1. Prioritizing the risk assessment scope
  2. Prioritizing the recommendations on remediation actions
Read More [fa icon="long-arrow-right"]

‘Healthcare Innovation’ Profiles Highmark FAIR Program: ‘Cybersecurity and Business Align’

[fa icon="calendar'] Jul 23, 2019 3:17:08 PM / by Jeff B. Copeland posted in FAIR, Risk Management, FAIR Conference 2019

[fa icon="comment"] 0 Comments

Just published on Healthcare Innovation, Where Cybersecurity and Business Align: One CISO’s High-Level Perspective, profiles CISO Omar Khawaja’s success at introducing FAIR to Highmark Health, a leading healthcare delivery and insurance organization.

Read More [fa icon="long-arrow-right"]

Aggregating Expert Opinion in Risk Analysis: An Overview of Methods

[fa icon="calendar'] Jul 23, 2019 8:02:31 AM / by Tony Martin-Vegue posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Expert elicitation is simple to define, but difficult to effectively use given its complexities. Most of us already use some form of expert elicitation while performing a risk analysis whenever we ask someone their opinion on a particular data point. The importance of using a structured methodology for collecting and aggregating expert opinion is understated in risk analysis
Read More [fa icon="long-arrow-right"]

FAIR Beginner's Guide: What Do the Numbers Mean?

[fa icon="calendar'] Jul 18, 2019 4:38:00 PM / by Taylor Maze posted in FAIR

[fa icon="comment"] 0 Comments

As a FAIR consultant, I have seen many organizations go through the transformation from qualitative to quantitative risk management. Often what I have found is that the transition from a world of no numbers (or very few numbers) to the quantitative risk world of numbers galore can be a little daunting.

Read More [fa icon="long-arrow-right"]

Meet a Member Podcast: Simone Petrella, CEO, CyberVista, and New FAIR Institute Board Member

[fa icon="calendar'] Jul 18, 2019 7:30:00 AM / by Jeff B. Copeland posted in Meet a Member

[fa icon="comment"] 0 Comments

Simone Petrella, the newest member of the FAIR Institute Advisory Board, comes from a key partner of the Institute, CyberVista, the leading cybersecurity education and workforce development company, particularly known for its board of directors education work.

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts