After a short summer break, the FAIR Institute Operational Risk workgroup met again in August to continue our project using the FAIR methodology to revise a typical list of “top operational risks” (we found our list on Risk.net).
Evan Wheeler

Recent Posts
AML & Sanctions Compliance: Top Operational “Risks” for 2017? – Part 3
[fa icon="calendar'] Oct 12, 2017 10:52:53 AM / by Evan Wheeler posted in FAIR
Risks from Regulations: Top Operational 'Risks' for 2017? – Part 2
[fa icon="calendar'] May 3, 2017 8:47:43 PM / by Evan Wheeler posted in FAIR, Risk Management
During the April meeting of the Operational Risk workgroup, the members continued working on a project to recast a list of top operational risks using the FAIR model. Quick recap of this effort so far - every year, you’ll find numerous lists of supposed “top risks” from various sources, but are they even risks?
Top Operational “Risks” for 2017? – Part 1
[fa icon="calendar'] Mar 22, 2017 12:26:31 PM / by Evan Wheeler posted in FAIR, Risk Management
During the March meeting of the Operational Risk Workgroup, the members took on a project to recast a list of top operational risks using the FAIR risk model. Every year, you’ll find numerous lists of supposed “top risks” from analysts, surveys, professional organizations, etc. with something in common: They don’t actually provide true risks.
Breaking Risk Paradigms with FAIR
[fa icon="calendar'] Mar 16, 2017 1:48:17 PM / by Evan Wheeler posted in FAIR, Events
Every year the masses of information security professionals gather at the Moscone Center in San Francisco for the RSA Conference looking for opportunities to learn from peers and discuss their latest challenges, and this year was no different. I had the privilege to share my own perspective as a speaker in the GRC track.
Take Another Look at Inherent Risk
[fa icon="calendar'] Feb 9, 2017 10:00:00 AM / by Evan Wheeler posted in FAIR, Risk Management
During the February meeting of the FAIR Institute's Operational Risk workgroup, members discussed the ever popular concept of “inherent risk” and how it could be best used in the context of a standard risk methodology like FAIR.
Enterprise Risk Standards – Where does FAIR fit in?
[fa icon="calendar'] Sep 14, 2016 7:30:00 AM / by Evan Wheeler posted in FAIR, Risk Management
The Operational Risk workgroup meets monthly to discuss uses of FAIR and to share experiences.
Beginning Your Operation Risk Journey with FAIR
[fa icon="calendar'] Jul 19, 2016 5:30:00 PM / by Evan Wheeler posted in FAIR, Risk Management
Over the years many risk professionals have found their risk religion with Factor Analysis of Information Risk (FAIR), but how to start integrating it into your organization isn’t always obvious.
FAIR Institute Operational Risk Workgroup: Using FAIR to Understand Operational Risks
[fa icon="calendar'] Jun 9, 2016 7:30:00 AM / by Evan Wheeler posted in FAIR, Risk Management
From the desk of Evan Wheeler, chair of the Operational Risk workgroup at the FAIR Institute
What first attracted me to FAIR, was its applicability to information security risks, but it offers so much more than that.