Daniel Davis, Security Analyst at Lyft in San Francisco, came to FAIR from an unusual, non-IT perspective – safety engineering. He first came to Lyft to work on safety for autonomous cars. “The way that FAIR defines risk as threat, asset and impact…is very similar to the way that safety engineering has treated hazards for years,” he says.
Luke Bader
Recent Posts
If you’re in cyber risk management for a financial institution, here’s an opportunity to hear the latest thinking from regulators at the Fed, and from FAIR Institute Chairman and FAIR model creator Jack Jones – The Federal Reserve Bank of Richmond hosts an all-day Cyber Risk Workshop in Charlotte on Nov. 20 (see the details here).
If you’re not in government IT, particularly state and local government, you may not have heard of Tyler Technologies, but it’s the largest software company in the nation solely focused on providing integrated software and technology services to the public sector. The company offers a huge range of software as a service applications
Keith Weinbaum stood the standard FAIR adoption model on its head: He introduced FAIR and cyber risk quantification to executives at Quicken Loans by applying it to risk scenarios they understood already from the mortgage business, and with that acceptance in hand moved on to using FAIR in enterprise risk management, and finally cyber.
Watch the Video from FAIRCON19: Perfecting a CISO Board Presentation with James Lam and Chris Inglis
It was one of the most closely listened-to panel discussions of the recent 2019 FAIR Conference: “Pen-Testing Your Board Pitch,” starring two veteran board members, James Lam (E*TRADE) and Chris Inglis (FedEx) [photo, right], presenting attendees with a rare opportunity to hear directly from the source
With FAIR – and risk quantification -- increasingly accepted as the standard for cyber risk analysis, FAIR Institute Chairman Jack Jones talked to what’s next in his keynote address to the recent 2019 FAIR Conference: Setting up successful FAIR-based programs that manage risk cost-effectively.
At FAIRCON19, we caught up with Annie Lavoie, Director, IT Risk Management for the Business Development Bank of Canada (BDC), a government-supported financial institution devoted exclusively to funding entrepreneurs. Annie is an auditor who moved into IT risk at BDC within the past three years and is now one of the leaders of the FAIR adoption program
National Harbor, MD, Sept. 25, 2019 – The FAIR Institute, an expert, nonprofit organization led by information risk officers, CISOs and business executives to develop standard information, cybersecurity and operational risk management practices based on the Factor Analysis of Information Risk (FAIR) model, recognized three risk management leaders this week during its annual FAIR Conference (FAIRCON19) at National Harbor, MD.
We’re looking forward to seeing you – and the rest of the worldwide FAIR community of innovative thinkers and doers in the fields of cyber, technology and operational risk – Tuesday and Wednesday of next week, September 24 -25, at the 2019 FAIR Conference
We are very pleased to announce that Douglas W. Hubbard, whose original thinking on measuring risk has been a building block of Factor Analysis of Information Risk (FAIR), will speak at the 2019 FAIR Conference, September 24-25. Doug’s topic “How to Measure Risk with Limited and Messy Data: Overcoming the Myths”
