Return of the Summer Book Club Reading the FAIR Book, Part 2: Basics of Risk Concepts and Measurement

Summer Book Club 2020 Part 2For the second year, we are reading and the FAIR™ book, Measuring and Managing Information Risk, the authoritative text on quantitative cyber risk analysis and risk management, with a series of short discussion guides to help FAIR summer book clubs spark conversations, at a pace of two book chapters per guide. 

In Part 2, we’re covering Chapter 4 (on FAIR terminology) and Chapter 5 (on measurement), two key categories for both understanding the FAIR approach and generally clearing up the rampant confusion surrounding risk analysis. Can you define a “loss event” and describe how it would unfold at your organization? Discuss.  

Also, we’re hosting a discussion board in LINK, the FAIR Institute’s community site, to contribute discussions points to the community or pose questions – FAIR experts and community members will answer. (A FAIR Institute membership and signup for LINK is required to access the discussions. Turn your notifications on in your LINK profile settings to make sure that you receive updates to the discussions.) Visit the FAIR book discussion board.

Here are the six FAIR study guides:

With thanks to author Rebecca Merritt, Senior Manager, Professional Services at RiskLens, the technical adviser to the FAIR Institute.

About the FAIR Book

Using the Factor Analysis of Information Risk (FAIR) methodology developed over ten years and adopted by organizations worldwide, Measuring and Managing Information Risk provides a proven and credible framework for understanding, measuring, and analyzing information risk of fair-book-coverany size or complexity. Intended for organizations that need to either build a risk management program from the ground up or strengthen an existing one, this book provides a unique and fresh perspective on how to do a basic quantitative risk analysis. Covering such key areas as risk theory, risk calculation, scenario modeling, and communicating risk within the organization, Measuring and Managing Information Risk helps managers make better business decisions by understanding their organizational risk.  

Related: What Is FAIR?

Learn How FAIR Can Help You Make Better Business Decisions

Order today
image 37