Common Sense: The Underrated Skill in FAIR Analysis Over my years as a FAIR practitioner, I’ve observed some outlandish (humorously so) estimates. Read More
3 Remedies for Analysis Paralysis I’ve observed an epidemic that is endemic to perfectionists and newer practitioners of quantitative cyber risk analysis... Read More
Risk Measurement vs. Risk Blarney in Cyber Analytics Risk blarney consists of giving the appearance of measuring risk, while not providing any meaningful inforisk measurements at all. Read More
Quantitative Risk Analysis: Just Guesswork with Numbers? Debating subjectivity vs objectivity in risk analysis. The FAIR model for risk quantification enables more objective cyber risk analysis. Read More
How to Filter Out ‘Fake Risks’ from Your Risk Register Risk registers are often filled with fake risks that don’t really have the potential to cause loss. Read More
Finding Your Goldilocks Moment in Cyber Risk Analysis Balance accuracy vs precision in risk analysis and get your best bowl of porridge, so to speak. Read More
Marketing FAIR to Your Organization Get your organization to buy in to FAIR quantitative risk analysis; follow the FAIR "marketing funnel". Read More
Report from SIRACon: Data + Quantification Beats Dogma Highlights from the risk analysts and risk managers conference: focus on data quality and quantitative risk analysis Read More
Santa’s Naughty and Nice List for Risk Registers Give yourself a present: a cleaned-up risk register, focused on your true risks. Follow Santa's tips. Read More
Memoir of My Love Of-FAIR A FAIR risk consultant found happiness through risk quantification – you can too! Read More
