FAIR Institute Blog

Honoring Excellence in Information and Operational Risk Management: Submit Your Nominations for the FAIRCON19 Awards!

[fa icon="calendar'] Jun 12, 2019 1:17:28 PM / by Luke Bader posted in FAIR Conference 2019

[fa icon="comment"] 0 Comments

The 2019 FAIR Conference at the Gaylord National Resort & Convention Center in National Harbor near DC on September 24-25, will honor risk management leaders for their initiative, ingenuity and contributions to information and operational risk management.

Read More [fa icon="long-arrow-right"]

Meet a Member: Tim Titcomb, VP, Technology Risk, at Fidelity Investments

[fa icon="calendar'] Jun 7, 2019 9:00:00 AM / by Jeff B. Copeland

[fa icon="comment"] 0 Comments

When Tim Titcomb was first introduced to FAIR by co-workers at Fidelity, "we walked out of the room and sort of shrugged and we did not have the red pill/blue pill moment. But I'd been looking for an opportunity to re-engergize the risk team I had just taken over, give us some direction and really start to do more proactive risk assessment...

Read More [fa icon="long-arrow-right"]

Take a Listen to this Webinar: Combining NIST-CSF and FAIR, Quantifying Risk to Drive Better Decision Making

[fa icon="calendar'] Jun 6, 2019 9:55:19 AM / by Luke Bader posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

From time to time, we come across some interesting FAIR related thoughts being shared by our partners. Last week, a fascinating webinar was hosted by Institute Technical Advisor, RiskLens

Read More [fa icon="long-arrow-right"]

How a Risk Analysis Scope Gets Off Track (and How to Fix It)

[fa icon="calendar'] Jun 4, 2019 11:34:09 AM / by Cary Wise posted in Risk Management

[fa icon="comment"] 0 Comments

The most important step in conducting a quantitative cyber risk analysis is scoping - identifying the asset, threat, and effect related to the scenario at hand. But what happens if you are so excited to get into your FAIR analysis that you skip this crucial step?

Read More [fa icon="long-arrow-right"]

Video: Jack Jones Tells Enterprise Security Weekly Infosec Makes Risk Management Harder than It Has to Be

[fa icon="calendar'] May 31, 2019 9:12:00 AM / by Jeff B. Copeland posted in Risk Management

[fa icon="comment"] 0 Comments

FAIR Institute Chairman and FAIR model creator Jack Jones gives a concise, high level view of the limitations of conventional thinking in the cybersecurity profession, and how FAIR and a quantitative approach to cyber risk shows the way forward, in this Enterprise Security Weekly podcast hosted by Paul Asadoorian.

Read More [fa icon="long-arrow-right"]

The Economic Impact of ICS Vulnerabilities

[fa icon="calendar'] May 28, 2019 8:12:56 AM / by Denny Wan and Daniel Marsh posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Synopsis: The Common Vulnerability Scoring System (CVSS) is used throughout various industries for scoring vulnerabilities based on several metrics. These metrics focus on confidentiality, integrity and availability, the very well known CIA triad ingrained in the mentality of cybersecurity professionals and extends to maturity and environmental when and where the additional information is required.

Read More [fa icon="long-arrow-right"]

3 Steps to Improving IT Hardware Lifecycle Management with FAIR

[fa icon="calendar'] May 23, 2019 10:52:49 AM / by Leanne Scott posted in Risk Management

[fa icon="comment"] 0 Comments

How can you determine at what point in a piece of IT hardware’s lifecycle it should be updated? Using FAIR, the international standard for quantitative cyber and technology risk management, it is as simple as a three-step process.

Read More [fa icon="long-arrow-right"]

There's More than One Bear...

[fa icon="calendar'] May 23, 2019 10:35:02 AM / by Jack Jones posted in Risk Management

[fa icon="comment"] 0 Comments

If you’ve been in the cybersecurity profession for any length of time, you’ll have heard (or said) the old chestnut about two hikers who run into a bear on the trail.  One hiker immediately takes off his hiking boots and puts on his running shoes. 

Read More [fa icon="long-arrow-right"]

ZombieLoad at the Gates - FAIR on Defense

[fa icon="calendar'] May 16, 2019 10:00:00 AM / by Jack Freund

[fa icon="comment"] 0 Comments

Intel revealed a new speculative execution vulnerability named ZombieLoad and it is yet another processor execution bug in the style of Spectre and Meltdown that were made public in January of 2018.

Read More [fa icon="long-arrow-right"]

Meet Donna Gallaher, New FAIR Institute Board of Advisors Member and Atlanta FAIR Chapter Leader

[fa icon="calendar'] May 16, 2019 7:30:00 AM / by Luke Bader posted in Fair Institute, Meet a Member

[fa icon="comment"] 0 Comments

The FAIR Institute is proud to announce the newest addition to the FAIR Institute Board of Advisors, Donna Gallaher, President and CEO, New Oceans Enterprises.

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts