FAIR Institute Blog

ZombieLoad at the Gates - FAIR on Defense

[fa icon="calendar'] May 16, 2019 10:00:00 AM / by Jack Freund

[fa icon="comment"] 0 Comments

Intel revealed a new speculative execution vulnerability named ZombieLoad and it is yet another processor execution bug in the style of Spectre and Meltdown that were made public in January of 2018.

Read More [fa icon="long-arrow-right"]

Meet Donna Gallaher, New FAIR Institute Board of Advisors Member and Atlanta FAIR Chapter Leader

[fa icon="calendar'] May 16, 2019 7:30:00 AM / by Luke Bader posted in Fair Institute, Meet a Member

[fa icon="comment"] 0 Comments

The FAIR Institute is proud to announce the newest addition to the FAIR Institute Board of Advisors, Donna Gallaher, President and CEO, New Oceans Enterprises.

Read More [fa icon="long-arrow-right"]

The FAIR Institute Launches the Enterprise Membership Program

[fa icon="calendar'] May 13, 2019 12:03:26 PM / by Luke Bader posted in Fair Institute

[fa icon="comment"] 0 Comments

To provide a more convenient way to train your organization on risk quantification and assess the maturity of your risk management program...

The Enterprise Membership Program has been designed and created to provide group benefits to Institute member organizations.

Read More [fa icon="long-arrow-right"]

How to Hire a FAIR Cyber Risk Analyst

[fa icon="calendar'] May 10, 2019 8:20:00 AM / by Jeff B. Copeland posted in Risk Management

[fa icon="comment"] 0 Comments

Looking for a Quantitative Cyber Risk Specialist, a Risk Quantification Analyst or even a Senior Factor Analysis of Information Risk (FAIR) Analyst?  It’s a sign of the rapid adoption of FAIR that organizations have recently been advertising for new hires with those titles

Read More [fa icon="long-arrow-right"]

How to Start a FAIR Program? Start Small

[fa icon="calendar'] May 8, 2019 11:37:30 AM / by Jeff B. Copeland posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

It’s an issue that comes up again and again at FAIR conferences, chapter meetings, webcasts or discussion boards: “I get the value of FAIR quantitative risk analysis – but I don’t know how or where I could start implementing it.”

Read More [fa icon="long-arrow-right"]

3 Remedies for Analysis Paralysis

[fa icon="calendar'] May 7, 2019 1:42:33 PM / by Teresa Suarez posted in FAIR

[fa icon="comment"] 0 Comments

I’ve observed an epidemic that is endemic to perfectionists and newer practitioners of quantitative cyber risk analysis: analysis paralysis. Here are some of the symptoms:

Read More [fa icon="long-arrow-right"]

What Makes a Good KRI? Steve Reznik of ADP on Better Metrics through FAIR [VIDEO]

[fa icon="calendar'] May 3, 2019 11:48:06 AM / by Jeff B. Copeland posted in Risk Management, FAIR risk model

[fa icon="comment"] 0 Comments

You’ve tried your hand at running one-off scenarios with FAIR, say to identify your top risks – now learn an ongoing use for FAIR to monitor your key risk indicators (KRIs).

Read More [fa icon="long-arrow-right"]

Good or Lucky? 3 Questions to Ask When Cyber Risk Analysis Shows Low Risk

[fa icon="calendar'] May 1, 2019 12:02:45 PM / by Taylor Maze posted in Risk Management

[fa icon="comment"] 0 Comments

‘Low’ loss exposure scenarios are often cause for celebration, or at least an exhausted sigh of relief from the CISO who is already juggling the remediation plans of countless other higher risk scenarios.

Read More [fa icon="long-arrow-right"]

Define Your Company’s Appetite for Risk with FAIR Analysis

[fa icon="calendar'] Apr 30, 2019 6:59:42 AM / by Rebecca Merritt posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

In basic terms, a company’s “risk appetite” is the level of risk the organization sees as acceptable.  Not surprisingly, some use the phrase “risk tolerance” interchangeably with “risk appetite” (there is an important difference: "tolerance" is how far off "appetite" the organization will go).

Read More [fa icon="long-arrow-right"]

3 Ways to Improve Identifying Your Cybersecurity Risks

[fa icon="calendar'] Apr 26, 2019 12:00:00 PM / by Christina Dulovich posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Risk register has become a dirty phrase. It is a catch-all for any concern that keeps an executive up at night. Items such as “insiders”, “the Cloud”, and “data loss” adorn risk registers in organizations across industries. FAIR trained or not, it does not take a risk expert to tell you those items are not actionable.

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts