FAIR Institute Blog

Starting Off on the Right Foot: How to Clearly Define a Risk Scenario Statement for FAIR Analysis

[fa icon="calendar'] Jun 23, 2020 2:41:33 PM / by Tim Wynkoop posted in FAIR

[fa icon="comment"] 0 Comments

Whether it is difficulty with data gathering, calibrating estimates, or presenting results, problems that come up in FAIR analysis tend to stem from the same source: a lack of a clearly defined risk scenario statement.

Read More [fa icon="long-arrow-right"]

Why Rationale Is Crucial in Cyber Risk Quantification

[fa icon="calendar'] Jun 17, 2020 12:04:00 PM / by Christina Dulovich posted in FAIR

[fa icon="comment"] 0 Comments

The foundation of any good risk analysis is the rationale -- the documentation of the thought process driving the ranges you selected for analysis with the FAIR model.

Read More [fa icon="long-arrow-right"]

Microsoft Promotes FAIR™ Analysis for Cloud Security Risk

[fa icon="calendar'] Jun 16, 2020 7:36:00 AM / by Jeff B. Copeland posted in FAIR

[fa icon="comment"] 0 Comments

Microsoft Learn, the software giant’s educational site for developers, architects and IT administrators, now highlights FAIR™ (Factor Analysis of Information Risk) in its tutorials on cloud security.

Read More [fa icon="long-arrow-right"]

FAIR Institute Summer Book Club Part 2 – Reading the FAIR Book Together

[fa icon="calendar'] Jun 10, 2020 10:44:20 AM / by Rebecca Merritt posted in FAIR

[fa icon="comment"] 0 Comments

All summer, we are reading and discussing the FAIR™ book, Measuring and Managing Information Risk by Jack Freund and Jack Jones, the authoritative text on quantitative cyber risk analysis and risk management, with a new discussion guide every two weeks to help FAIR summer book clubs spark conversation.  

Read More [fa icon="long-arrow-right"]

NASA’s Risk Management Handbook Shares the Spirit of FAIR™ and Quantitative Risk Analysis

[fa icon="calendar'] Jun 4, 2020 7:30:00 AM / by Jeff B. Copeland posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

With the first flight of an American spacecraft carrying NASA astronauts launched from US soil since 2011, a FAIR Institute Member sent us a note pointing out that the NASA Risk Management Handbook shares a lot of the spirit of FAIR™.  

Read More [fa icon="long-arrow-right"]

You DO Have Enough Data for a Quantitative Risk Analysis

[fa icon="calendar'] Jun 3, 2020 3:47:25 PM / by Sara Dominick posted in FAIR

[fa icon="comment"] 0 Comments

It’s a common misconception about quantitative risk analysis that not “enough” data or“bad” data means bad calibration. That’s not true in a couple of ways. First, one always has “enough” data to conduct an analysis and second, with calibrated estimation, we’re not dependent on the amount of data we bring to the table.  

Read More [fa icon="long-arrow-right"]

How FAIR™ Can Help the US Federal Government Better Prioritize and Right-Size Its Cybersecurity Investments

[fa icon="calendar'] May 15, 2020 7:45:00 AM / by Nicola (Nick) Sanna posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

>>DHS/OMB mean well in pushing for a risk-based approach to cybersecurity in the Federal Government, but their requirements fall short of helping agencies effectively prioritize and right-size their cybersecurity investments

Read More [fa icon="long-arrow-right"]

Watch These Videos of FAIR™ Experts from RSA Conference 2020

[fa icon="calendar'] Apr 14, 2020 11:02:00 AM / by Jeff B. Copeland posted in FAIR

[fa icon="comment"] 0 Comments

RSA has posted on YouTube many of the videos of the presentations at the 2020 RSA Conference, including several by FAIR™ advocates and experts that, if you missed them the first time around, are well worth a watch.  

Read More [fa icon="long-arrow-right"]

Amazon S3 Bucket Data Breaches – a FAIR™ Risk Analysis

[fa icon="calendar'] Apr 13, 2020 11:48:00 AM / by Rebecca Merritt posted in FAIR, Risk Management, Case Studies

[fa icon="comment"] 1 Comment

With the ongoing big move to cloud storage to support working from home, it seems inevitable that we’re going to see more data breaches on Amazon S3 “buckets”,  an evergreen cybersecurity problem. It happened again a week ago

Read More [fa icon="long-arrow-right"]

FAIR™ Analysis Case Study Webinar: Decrease Risk from Employees Working at Home

[fa icon="calendar'] Apr 9, 2020 8:29:56 AM / by Jeff B. Copeland posted in FAIR, Case Studies

[fa icon="comment"] 1 Comment

Here’s a timely topic, with an army of office workers moved over to working at home due to the pandemic. In this short webinar (watch it below), Risk Consultant Christina Dulovich walks you through a FAIR™ analysis

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts