What the New SEC Regulation on Cyber Reporting Means for the Risk Management Profession Cyber risk assessment and management will increasingly become real-time -- and more effects, from CISOs up to the board. Read More
RiskLens, Technical Advisor to the FAIR Institute, Joins Forces with Safe Security Institute to continue as separate, expert non-profit organization to maintain open and transparent nature of FAIR and FAIR-CAM as industry standards. Read More
10 Reasons Why FAIR Is Winning No other risk model supports defensible quantitative risk analysis in financial terms. Read More
SEC Proposes Rules for Faster, More Defensible Cyber Risk Reporting. It Could Do Better Still SEC proposal would necessitate quantitative analysis of data breaches. We’d like to also see a directive for ongoing quantitative risk management. Read More
Three Tips to Make Cyber Risk Quantification Work for Your General Counsel as Well How to turn objections to quantitative analysis into a win-win situation. Read More
FAIR Institute Pres. Nick Sanna’s Message to SEC Nominee Gary Gensler: "Stop the Opaqueness of Cyber Risk Reporting" Boards and regulators should demand better disclosure of cyber risk - in financial terms. Read More
John Carlin, Pioneer of Risk Quantification in Government, Will Lead Cyber Law Enforcement at Department of Justice A friend of the FAIR Institute and quantitative risk management takes on a key role. Read More
2021 Is the Year of Operationalizing Cyber Risk Quantification We are headed for far-reaching improvements in cyber risk management, led by Factor Analysis of Information Risk (FAIR). Read More
How FAIR™ Can Help the US Federal Government Better Prioritize and Right-Size Its Cybersecurity Investments Now agencies can answer in budget terms questions such as "how much cyber risk do we have?" Read More
Cyberspace Solarium Commission Proposes Amending Sarbanes-Oxley to Include Cybersecurity Sets a new tone for government, much more in line with the principles of the FAIR Institute. Read More
