FAIR Institute Blog

Webinar on Demand: Jack Jones' Tips on SEC Cybersecurity Guidance

[fa icon="calendar'] Apr 5, 2018 9:49:33 AM / by Jeff B. Copeland posted in FAIR, Jack Jones

[fa icon="comment"] 0 Comments

The Securities and Exchange Commission’s new guidance on cybersecurity risk disclosure landed with a thud in board rooms, C-suites and infosecurity shops, particularly for its requirements on reporting ongoing cyber risks

Read More [fa icon="long-arrow-right"]

Who (or What) Is Really a “Cyber Threat”

[fa icon="calendar'] Apr 2, 2018 3:10:15 PM / by David Musselwhite posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

The MIT Technology Review recently published an article about what they called “cyber threats.” While the article identifies trending attack methods and scenarios to be concerned about, none of the things that made the list are actually threats.

Read More [fa icon="long-arrow-right"]

Jack Jones Webinar on SEC Cyber Risk Disclosure Guidance: The FAIR Advantage

[fa icon="calendar'] Mar 29, 2018 11:37:13 AM / by Jeff B. Copeland posted in FAIR, Jack Jones

[fa icon="comment"] 0 Comments

Join Jack Jones, creator of the FAIR model for risk analysis, for a webinar on Tuesday, April 3, at 2 PM ET on “New SEC Cyber Risk Disclosure Guidance: The FAIR Advantage”.

Read More [fa icon="long-arrow-right"]

3 Tips for Better Risk Analysis Reporting

[fa icon="calendar'] Mar 27, 2018 11:30:00 AM / by Tyanna Smith posted in FAIR

[fa icon="comment"] 0 Comments

Reporting results from a risk analysis can seem like a daunting and cumbersome task. Even after a lot of work, key stakeholders may walk away without a good understanding of what the results truly mean.

Read More [fa icon="long-arrow-right"]

Marketing FAIR to Your Organization

[fa icon="calendar'] Mar 21, 2018 11:04:12 AM / by Teresa Suarez

[fa icon="comment"] 0 Comments

A recurring question in the early stages of FAIR adoption is, “How do I get organizational buy-in for FAIR?” The short answer is: You communicate FAIR’s value proposition. 

Read More [fa icon="long-arrow-right"]

Webinar: FAIR Univ. Curriculum for Next-Generation Cyber Risk Executives

[fa icon="calendar'] Mar 20, 2018 9:00:00 AM / by Luke Bader posted in FAIR, FAIR University

[fa icon="comment"] 0 Comments

The FAIR Institute recently hosted a Virtual Panel Webinar on our FAIR University Curriculum. The webinar was held for interested professors and deans from academic institutions that are building information risk management courses, based on FAIR.

Read More [fa icon="long-arrow-right"]

Black Swans in Risk: Myth, Reality and Bad Metaphors

[fa icon="calendar'] Mar 19, 2018 12:00:00 PM / by Tony Martin-Vegue posted in FAIR, Risk Management

[fa icon="comment"] 3 Comments

The term “Black Swan event” has been part of the risk management lexicon since its coinage in 2007 by Nassim Taleb in his eponymous book titled The Black Swan: The Impact of the Highly Improbable.

Read More [fa icon="long-arrow-right"]

The SEC's New Cyber Risk Disclosure Guidance: Textbook Case for FAIR

[fa icon="calendar'] Mar 16, 2018 9:00:00 AM / by Jeff B. Copeland posted in FAIR, Risk Management

[fa icon="comment"] 2 Comments

Tips and insight from Jack Jones and Jack Freund, authors of the FAIR book...

The Securities and Exchange Commission’s new guidance on cyber risk disclosure has shaken up infosec teams, C-suiters and board members at public companies over the past two weeks.

Read More [fa icon="long-arrow-right"]

The Skeptic's Guide to Cyber Risk Surveys

[fa icon="calendar'] Mar 12, 2018 9:00:00 AM / by Rachel Slabotsky posted in FAIR

[fa icon="comment"] 1 Comment

I recently attended the SIRACon conference in Seattle where I had the privilege to hear leaders from prestigious companies speak about their experience using quantitative analysis of cyber risks. One of the presentations that stood out related to sources of error and bias in survey results.

Read More [fa icon="long-arrow-right"]

Is Cyber Risk Measurement Just Guessing? Part 3 (of 3)

[fa icon="calendar'] Mar 8, 2018 9:02:00 AM / by Jack Jones posted in FAIR

[fa icon="comment"] 0 Comments

This last post in the series will focus on briefly summarizing and answering the thoughts/concerns posted by Martin Huddleston in his comments following Part 2.  I felt this follow-up post was warranted because some readers seemed to misinterpret Martin’s comments as an indictment

Read More [fa icon="long-arrow-right"]

Subscribe to Email Updates

Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts