FAIR Institute Blog

Targeting Cybersecurity Investment - a FAIR Approach

[fa icon="calendar'] Jul 24, 2019 8:30:00 AM / by Denny Wan posted in Risk Management

[fa icon="comment"] 3 Comments

Targeting can be applied to the following tasks in the investment decision process based on the potential financial loss against an asset:

  1. Prioritizing the risk assessment scope
  2. Prioritizing the recommendations on remediation actions
Read More [fa icon="long-arrow-right"]

‘Healthcare Innovation’ Profiles Highmark FAIR Program: ‘Cybersecurity and Business Align’

[fa icon="calendar'] Jul 23, 2019 3:17:08 PM / by Jeff B. Copeland posted in FAIR, Risk Management, FAIR Conference 2019

[fa icon="comment"] 0 Comments

Just published on Healthcare Innovation, Where Cybersecurity and Business Align: One CISO’s High-Level Perspective, profiles CISO Omar Khawaja’s success at introducing FAIR to Highmark Health, a leading healthcare delivery and insurance organization.

Read More [fa icon="long-arrow-right"]

Aggregating Expert Opinion in Risk Analysis: An Overview of Methods

[fa icon="calendar'] Jul 23, 2019 8:02:31 AM / by Tony Martin-Vegue posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Expert elicitation is simple to define, but difficult to effectively use given its complexities. Most of us already use some form of expert elicitation while performing a risk analysis whenever we ask someone their opinion on a particular data point. The importance of using a structured methodology for collecting and aggregating expert opinion is understated in risk analysis
Read More [fa icon="long-arrow-right"]

FAIR Beginner's Guide: What Do the Numbers Mean?

[fa icon="calendar'] Jul 18, 2019 4:38:00 PM / by Taylor Maze posted in FAIR

[fa icon="comment"] 0 Comments

As a FAIR consultant, I have seen many organizations go through the transformation from qualitative to quantitative risk management. Often what I have found is that the transition from a world of no numbers (or very few numbers) to the quantitative risk world of numbers galore can be a little daunting.

Read More [fa icon="long-arrow-right"]

Meet a Member Podcast: Simone Petrella, CEO, CyberVista, and New FAIR Institute Board Member

[fa icon="calendar'] Jul 18, 2019 7:30:00 AM / by Jeff B. Copeland posted in Meet a Member

[fa icon="comment"] 0 Comments

Simone Petrella, the newest member of the FAIR Institute Advisory Board, comes from a key partner of the Institute, CyberVista, the leading cybersecurity education and workforce development company, particularly known for its board of directors education work.

Read More [fa icon="long-arrow-right"]

Quantifying the Value of Cybersecurity in Dollars & Cents: FAIR Institute and CyberVista CISO Breakfast Meeting at Black Hat

[fa icon="calendar'] Jul 11, 2019 2:25:22 PM / by Luke Bader posted in Events

[fa icon="comment"] 0 Comments

Join some of the world's leading CISOs for an engaging cyber risk discussion at Black Hat in Las Vegas, August 7, focused on enabling cybersecurity professionals to measure the effectiveness of their security initiatives and prioritize them based on business impact.

Read More [fa icon="long-arrow-right"]

7 People You Will Meet at FAIRCON19

[fa icon="calendar'] Jul 11, 2019 8:45:00 AM / by Luke Bader posted in FAIR Conference 2019

[fa icon="comment"] 0 Comments

Do you want to hear from and network with the best in cyber and operational risk management – and learn about the worldwide movement to risk quantification? (Data point: FAIR Institute membership approaching 6,000.)  

Read More [fa icon="long-arrow-right"]

A FAIR-Based Cyber Insurance Claim

[fa icon="calendar'] Jul 9, 2019 9:35:28 AM / by Denny Wan posted in FAIR

[fa icon="comment"] 0 Comments

Cyber insurance is an important element in the cyber risk management program, to enable the transfer of residual risks. As a result, insurance is often seen as the “doing nothing” option which represents a “moral hazard” to the insurer. This is far from the truth as policyholders must manage the non-insurable residual risks themselves

Read More [fa icon="long-arrow-right"]

[Video] Overcoming 3 Challenges in Your FAIR Risk Analysis Program: Robert Immella, Key Bank

[fa icon="calendar'] Jul 2, 2019 1:22:14 PM / by Jeff B. Copeland posted in FAIR, Case Studies, Meet a Member

[fa icon="comment"] 2 Comments

At the FAIR Institute Breakfast during the recent Gartner Security and Risk Management Summit, Robert Immella FAIR cyber risk analyst for Key Bank, gave a talk filled with actionable tips

Read More [fa icon="long-arrow-right"]

Evaluating Data Retention Risk from GDPR Using FAIR

[fa icon="calendar'] Jul 1, 2019 8:45:00 AM / by Rachel Slabotsky posted in FAIR, Risk Management, Case Studies

[fa icon="comment"] 0 Comments

Despite the increased focus and attention on data privacy triggered by GDPR that went into effect in May 2018, studies have shown that organizations still have some strides to make in order to be fully in compliance with the mandate. In fact, a recent survey by Varonis reported that many organizations continue to accumulate data that no longer needs to be retained, despite GDPR’s right-to-be forgotten clause.

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts