This week, it’s Chapter 6 (Analysis Process) and 7 (Understanding Results) in Measuring and Managing Information Risk, the FAIR book, and we’re getting hands-on with a working knowledge of quantitative cyber risk analysis. But first...
Join the Summer Book Club Competition- Show your knowledge of FAIR - be the first to answer FAIR questions, win FAIR swag from our new online store!
Go to the contest page on LINK now (FAIR Institute membership and sign-up for LINK discussion board required).
Book Club topics for discussion this week:
- Four steps to applying the FAIR model
- How to scope an analysis - and not let it creep
- What’s Annualized Loss Exposure (ALE)
- How to target your analysis results to your audience.
Here are all six Summer Book Club discussion guides, with thanks to author Rebecca Merritt, Senior Manager, Professional Services at RiskLens, the technical adviser to the FAIR Institute.
- Chapter 1, (Introduction), Chapter 2 (Basic Risk Concepts) and Chapter 3 (The FAIR Risk Ontology)
- Chapter 4 (FAIR Terminology) and Chapter 5 (Measurement)
- Chapter 6 (Analysis Process) and 7 (Understanding Results)
- Chapter 8 (Risk Analysis Examples) and Chapter 9 (Thinking about Risk Scenarios Using FAIR)
- Chapter 10 (Common Mistakes) and Chapter 11 (Controls)
- Chapter 12 (Risk Management), Chapter 13 (Information Security Metrics) and Chapter 14 (Implementing Risk Management)
Also, we’re hosting a discussion board in LINK, the FAIR Institute’s community site, for further discussion or posting of questions – FAIR experts and community members will answer. (A FAIR Institute membership and signup for LINK is required to access the discussions. Turn your notifications on in your LINK profile settings to make sure that you receive updates to the discussions.) Visit the FAIR book discussion board.
Speaking of learning opportunities – The 2021 FAIR Conference Is Coming Oct. 19-20 -