While FAIR is primarily known for cyber and technology risk analytics, its principles and quantification methods apply equally to operational, strategic and other forms of risk in the enterprise.
As the SolarWinds incident earlier this year reminded us, we’re only as secure as our vendors. But finding a window into third-party risk is notoriously difficult. Josh Malnourie, Information Security Advisor at Blue Cross Blue Shield of North Dakota (BCBSND), has been working the problem with FAIR™
What’s the most valuable control for risk reduction in your cybersecurity stack? The least valuable? Your team probably has opinions, but no hard, quantitative data
Tony Martin-Vegue, San Francisco Chapter Co-Chair, member of the quant risk team at Netflix, and one of the best FAIR™ educators we know, leads a webinar designed to answer the two most common questions from beginners at Factor Analysis of Information Risk:
Krebs On Security, the website of security researcher Brian Krebs…banks and post offices in New Zealand…Internet infrastructure provider Cloudflare…Russian Internet search company Yandex – all slammed in recent weeks
Here it is - the agenda for the 2021 FAIR Conference (FAIRCON21), to be held virtually on October 19 and 20. This year’s theme is “Managing Risk and Building Resilience,” and we designed every session to give you actionable insights
Phillip Mahan, Director, IT Privacy, Risk and Compliance at Serta Simmons Bedding likes to explain risk with an analogy to flipping a coin. You may think the heads vs. tails odds are 50-50, but they could be 33% if the coin lands on its side. In fact, they could be 25% if a bird flies by and grabs the coin in the air.
In an extensive white paper, Evan Wheeler, FAIR Institute Advisory Board Member and VP of Risk Management at Fintech firm NVDR, makes a strong case for the importance of data quality, integrity, and usability as core tenets of the data governance process
The 2021 FAIR Conference will shift from a hybrid conference to a fully virtual event on the same schedule, October 19 and 20. Although the FAIR Institute team was excited to offer an in-person conference this year, our decision was to put the health and safety of our members and attendees first.
Talk about convergent evolution - Michael Rich, Director of IT Security, Infrastructure, and Operations at Motion Picture Industry Pension & Health Plans (MPI) in Studio City, CA, created his own quantitative risk analysis system that’s close to FAIR™