Just published on Healthcare Innovation, Where Cybersecurity and Business Align: One CISO’s High-Level Perspective, profiles CISO Omar Khawaja’s success at introducing FAIR to Highmark Health, a leading healthcare delivery and insurance organization.
As a FAIR consultant, I have seen many organizations go through the transformation from qualitative to quantitative risk management. Often what I have found is that the transition from a world of no numbers (or very few numbers) to the quantitative risk world of numbers galore can be a little daunting.
Simone Petrella, the newest member of the FAIR Institute Advisory Board, comes from a key partner of the Institute, CyberVista, the leading cybersecurity education and workforce development company, particularly known for its board of directors education work.
Join some of the world's leading CISOs for an engaging cyber risk discussion at Black Hat in Las Vegas, August 7, focused on enabling cybersecurity professionals to measure the effectiveness of their security initiatives and prioritize them based on business impact.
Do you want to hear from and network with the best in cyber and operational risk management – and learn about the worldwide movement to risk quantification? (Data point: FAIR Institute membership approaching 6,000.)
Cyber insurance is an important element in the cyber risk management program, to enable the transfer of residual risks. As a result, insurance is often seen as the “doing nothing” option which represents a “moral hazard” to the insurer. This is far from the truth as policyholders must manage the non-insurable residual risks themselves
At the FAIR Institute Breakfast during the recent Gartner Security and Risk Management Summit, Robert Immella FAIR cyber risk analyst for Key Bank, gave a talk filled with actionable tips
Despite the increased focus and attention on data privacy triggered by GDPR that went into effect in May 2018, studies have shown that organizations still have some strides to make in order to be fully in compliance with the mandate. In fact, a recent survey by Varonis reported that many organizations continue to accumulate data that no longer needs to be retained, despite GDPR’s right-to-be forgotten clause.
Hosted by the FAIR Institute, the 2019 FAIR Conference brings leaders in information security, risk management, government, and academia together to explore best practices for FAIR adoption that produce greater value and alignment with business goals.