FAIR Institute Blog

What would you like to see in the FAIR Institute blog that would most advance your knowledge, skills and awareness of FAIR and the fast-growing movement for critical thinking and quantification in risk analysis?

A large population of risk professionals are truly gifted. Gifted with the gift of gab, that is. This is because they haven't had any other choice until recently.

I have had the privilege or the curse of working with metrics--depending on which side of the fence you are on--through the course of my career.  I have tended to lean towards the latter. 

When I saw Jack Jones present on FAIR at an IANS Research Forum several years ago, it was like a light bulb went off in my head. I immediately ordered the FAIR book and began a cover-to-cover reading, twice. I had been unsatisfied with existing methods to assess privacy risks and I was excited to apply my new-found knowledge of FAIR to privacy.

As we start 2019, the Institute community is very excited about the first of our lineup of events throughout the year. Sign up for the events below today to reserve your spot. We look forward to seeing you in 2019!

How do you quantify the loss of all an organization’s data?  Or loss of all availability?  Or loss of data integrity that might lead to lives endangered?  

In an article for Forbes Technology Council, Two Frameworks For Securing A Decentralized Enterprise, Ian Amit, Chief Security Officer at Cimpress (parent company of Vistaprint), tells how he combines the NIST CSF and the FAIR model to handle a challenging situation

At the recent FAIR Conference at Carnegie Mellon University that drew a record turnout from around the world, we heard one message repeated many ways – the movement toward a rational, data-driven, model-based approach to cyber risk (and away from qualitative, guesswork approaches) is growing fast.

The Securities and Exchange Commission, the European Union and the International Monetary Fund all pointed cyber risk managers toward cyber risk quantification in 2018