Toymaker Funko got its cyber risk quantification program up and running with a team of two – CISO Markus Kaufmann and consultant Tom Callaghan from C-Risk – by staying tightly focused
Jack Jones, creator of Factor Analysis of Information Risk (FAIR™) and Chairman of the FAIR Institute, delivered a keynote address to the 2022 FAIR Conference emphasizing the fact that cyber risk measurement practices have been profoundly immature
If you’re already trained on Factor Analysis of Information Risk (FAIR™) and looking to better communicate your risk analyses to stakeholders – or looking to get started in quantitative risk analysis with FAIR
At the recent 2022 FAIR Conference, David Hirsch, the Securities and Exchange Commission enforcement chief for cybersecurity, and his predecessor in the job, Kristy Littman, now in private practice at Willkie Farr & Gallagher, answered some timely questions
In this video from the 2022 FAIR Conference, Cedric De Carvalho, Head of Group Cyber Risk & Advisory for Richemont, talks scaling quantitative risk management across the 26 lines of business of the fashion conglomerate.
At the FAIR Institute, our goal is to continue working on advancing the risk profession and providing our members with the proper resources to advance their knowledge and risk practices.
“It’s not perfect.” “It takes longer.” “I don’t know statistics.” In successfully introducing Factor Analysis of Information Risk (FAIR™) at Netflix, Prashanthi Koutha and Tony Martin-Vegue have heard every objection
At the recent 2022 FAIR Conference, a panel from both sides of the board table, including veteran corporate director and enterprise risk management authority James Lam and experienced board presenters, delivered many actionable tips on briefing the board
Michael Meis is four months into launching a cyber risk management program based on Factor Analysis of Information Risk (FAIR™) at The University of Kansas Health System
At the recent 2022 FAIR Conference for practitioners of Factor Analysis of Information Risk, a panel of CISOs debated the proposition: Now that cyber risk quantification with FAIR accurately shows us the cost vs. benefit in risk reduction for our decisions on cybersecurity, do we really need to buy the blanket protection of cyber insurance?