For ground-level, hands-on, advice on starting a FAIR™ quantitative risk management program, the Use Case Panorama session at the recent 2019 FAIR Conference was the place to be.
Jeff B. Copeland
Recent Posts
FAIRCON19 Video: Use Case Panorama – FAIR™ Practitioner Success Stories from BB&T, Swisscom, Fidelity Investments and Daimler Mobility
[fa icon="calendar'] Nov 22, 2019 10:11:30 AM / by Jeff B. Copeland posted in FAIR Conference 2019
NIST Maps FAIR to the CSF - Big Step Forward in Acceptance of Cyber Risk Quantification
[fa icon="calendar'] Nov 19, 2019 2:36:00 PM / by Jeff B. Copeland posted in FAIR, Risk Management
It's official: NIST has formally published FAIR as an Informative Reference to the NIST CSF, the most widely used cybersecurity framework in the U.S, a major milestone in the history of FAIR. This means that there is mapping between FAIR and the NIST CSF standard in the sections covering risk analysis and risk management.
FAIRCON19 Video: Tips on Building a Cybersecurity Program with a Risk Management Framework & FAIR
[fa icon="calendar'] Nov 14, 2019 10:43:57 AM / by Jeff B. Copeland posted in Risk Management, FAIR Conference 2019
Don’t think of cybersecurity standards and frameworks as checklists – think of them as recipes with plenty of room for “season to taste.” That was the message coming out of a panel discussion at the 2019 FAIR Conference on the topic “Building a Cybersecurity Program with a Risk Management Framework & FAIR,”
FAIRCON19 Video: CISOs from Fannie Mae, Highmark Health, Department of Energy, and Premise Health Talk FAIR Cyber Risk Quantification
[fa icon="calendar'] Nov 6, 2019 12:02:00 PM / by Jeff B. Copeland posted in FAIR Conference 2019
Led by FAIR model creator Jack Jones, the panel discussion “CISO Panel: Defining the Goals of an Effective Risk Management Program” at the recent 2019 FAIR Conference, covered a lot of ground. Four chief information security officers - speaking from hands-on experience - discussed everything from building a FAIR program, to briefing the board
Watch the FAIRCON19 Video: Doug Hubbard on Overcoming the Myths of Cyber Risk Measurement
[fa icon="calendar'] Oct 31, 2019 7:30:00 AM / by Jeff B. Copeland
Prepare to have at least some of your preconceptions about risk, cyber and otherwise, blown away by Douglas W. Hubbard in this video of his talk at the 2019 FAIR Conference, “How to Measure Risk with Limited and Messy Data: Overcoming the Myths.”
Gartner’s John Wheeler: Many Organizations Using IRM and FAIR to Achieve ‘Techquilibrium’
[fa icon="calendar'] Oct 22, 2019 12:15:00 PM / by Jeff B. Copeland posted in Risk Management
John A. Wheeler, Gartner’s influential global research leader for risk management technology solutions and services, is just out with a new blog post introducing the concept of “techquilibrium”, defined as “the balance point where the enterprise has the right mix of traditional and digital capabilities
Health IT Security Interviews Highmark Health’s Omar Khawaja on How FAIR Drives Security Processes
[fa icon="calendar'] Oct 15, 2019 11:29:30 AM / by Jeff B. Copeland posted in Risk Management
CISO Omar Khawaja built a highly rated security program for Highmark Health, the major manager of health plans and hospitals – but something was missing, he told Health IT Security in a recently published interview.
Watch the Video: Congressional Cybersecurity Leader Jim Langevin to FAIRCON19: “You Are Moving the Country to a Better Place”
[fa icon="calendar'] Oct 8, 2019 3:52:00 PM / by Jeff B. Copeland posted in FAIR Conference 2019
(We just added the video so you can watch in its entirety this significant speech looking back and forward on US government cybersecurity policy. Watch the video now. FAIR Institute membership and LINK community site registration -- both free-- required to view the video.)
FAIRCON19 Media Coverage Gets the Message Out about ‘Rethinking Risk Management’
[fa icon="calendar'] Oct 2, 2019 2:09:39 PM / by Jeff B. Copeland posted in FAIR Conference 2019
Last week’s 2019 FAIR Conference in National Harbor, MD, drew a record crowd of enthusiastic practitioners and learners of FAIR quantitative risk analysis. thorough media coverage of the event spread the word to a wider audience that risk management, particularly on the cyber side, is undergoing a fundamental change for the better
FAIR Conference 2019 Day 2: Advice on 3rd Party Risk, Pitching the Board, ERM, IRM and Messy Data from Doug Hubbard, Gartner and More
[fa icon="calendar'] Sep 26, 2019 8:54:32 AM / by Jeff B. Copeland posted in FAIR Conference 2019
Like Day One of FAIRCON19, the second day of the FAIR Institute’s annual gathering covered a wide range of top-of-mind topics for cybersecurity and risk professionals