It was a meeting of the minds: FAIR model creator Jack Jones, who’s dedicated his career advocating for quantitative, critical thinking against the easy-button practices of conventional cyber risk management—and Michele Wucker, author of The Gray Rhino: How to Recognize and Act on the Obvious Dangers We Ignore
The FAIR Institute is excited to announce our second annual nomination in the 2020 Advisen Cyber Risk Awards for the category of "Cyber Risk Model of the Year."
“Coronavirus is the black swan of 2020,” says a recent statement by Sequoia, the prominent venture capital firm, repeating a buzzy term that’s being widely circulated to describe the current pandemic crisis
While the beachhead for FAIR™ adoption in most organizations is on the cyber side, Michael Kenney, Vice President of Operational Risk for the Multifamily business line at Freddie Mac, the big secondary mortgage buyer, is introducing FAIR and quantification starting from the operational risk side – or, as he says with a “wider footprint.”
One of the questions I like to ask CISO’s is, “What is the most cost-effective control in your arsenal?” The responses are varied and interesting, but their answers are pretty consistently based on bias
We took a short survey of FAIR™ Institute email subscribers to get a quick read on their involvement with business continuity planning for the impact of COVID-19. The poll keyed off a podcast with Jack Freund
You may think of FAIR™ quantitative cyber risk analysis as narrowly focused on the technical side of cybersecurity but watch this short video of Christopher Porter, CISO at Fannie Mae and member of the FAIR Institute Advisory Board to learn how FAIR enables CISOs to think more broadly
Organizations are rethinking their business continuity plans to get ahead of the coronavirus COVID-19 pandemic– an opportunity for IT risk analysts to bring to the table the critical thinking skills of Factor Analysis of Information Risk (FAIR™) and quantitative cyber risk analysis.
In this short talk at the FAIR Institute Breakfast during the 2020 RSA Conference, Ascena Retail CISO Mark Tomallo transferred a lot of knowledge about starting and winning with a FAIR™ program
There are many reasons why cyber risk quantification utilizing the FAIR™ model has been adopted by 30% of the Fortune 1000.