After so many high-profile breaches and other large-scale loss events, cybersecurity risk has been elevated to a board level concern – and infosec and risk professionals need to elevate their point of view to board level to be truly successful.
Recent Posts
A recent article from the Wall St. Journal “Cyber Chiefs Calculate Data Breach Costs to Explain Risks to Executives” (subscription required to read) is a welcome endorsement of cyber risk quantification from the influential business publication.
Your infosecurity budget is being challenged – it may be that you’ve positioned your security program only as a cost center, not a builder of business value.
In under 15 minutes, watch this webinar and learn about the FAIR™ model, the open-source standard for cyber and operational risk quantification, and the FAIR Institute, the international community that’s leading the risk management profession toward business-aligned and cost-effective risk management.
If digital transformation is the order of the day at your organization, you’ll want to hear how the team led by Harold Marcenaro, Digital Risk Officer at BCP, Peru’s largest bank, transformed themselves to meet that challenge with FAIR™.
Good risk analysis runs on defensible data, and to lead our discussion on how to get the best possible data to take to decision-makers, the 2020 FAIR Conference has lined up an expert discussion panel led by the best-known data crusader in cyber risk management.
It’s a question increasingly asked by boards in these uncertain times: How resilient is our organization? FAIR Institute partner Protiviti is advancing a creative way to answer that question quantitatively using FAIR™.
In a recent National institute of Standards and Technology webinar on integrating cybersecurity and ERM, Energy Dept. CISO Emery Csulak shared the goals his agency set for its transition to a cyber risk management program based on FAIR™ -- high-level principles that could apply equally to the government or corporate information security.
In this webinar, FAIR Institute President Nick Sanna gives the Association for Federal Enterprise Risk Management (AFERM) an introduction to FAIR, the international standard for cyber risk quantification
In a blog post for ISACA, FAIR™ model creator Jack Jones reviews the recently released Risk IT Framework, 2nd Edition and Risk IT Practitioner Guide, 2nd Edition, and finds them “revitalized.”
