FAIR Institute Blog

[Video] FAIRCON18 Panel: Optimizing Cyber Insurance Coverage with FAIR

[fa icon="calendar'] Dec 14, 2018 8:00:00 AM / by Jeff B. Copeland posted in FAIR Conference 2018, Risk Management

[fa icon="comment"] 0 Comments

With so much confusion in the marketplace about how much and what kind of cyber insurance to buy, experts from Marsh, AON, and more leading companies in the insurance space came together to form the FAIR Institute’s Cyber Insurance Workgroup to think through how the discipline of quantitative risk analytics could help clear the fog.

Read More [fa icon="long-arrow-right"]

[Video] FAIRCON18 Panel: How to Get Buy-In for a Quantitative Risk Program

[fa icon="calendar'] Dec 13, 2018 10:26:58 AM / by Jeff B. Copeland posted in FAIR Conference 2018, FAIR

[fa icon="comment"] 0 Comments

You’re sold on FAIR and quantitative risk analytics but until you bring your organization around, you’re just an army of one. In this panel discussion at the 2018 FAIR Conference, four successful FAIR intrapreneurs give some tips on how they built support, starting at the team level, and working their way up to the board of directors.

Read More [fa icon="long-arrow-right"]

FAIRCON18 Video: A Master Class on Reporting Cyber Risk to the Board

[fa icon="calendar'] Dec 5, 2018 8:29:00 AM / by Jeff B. Copeland posted in FAIR Conference 2018, Risk Management

[fa icon="comment"] 0 Comments

Case Study: Reporting to the Board: What Got You Here, Won't Get You There,  a  presentation by Omar Khawaja, CISO at Highmark Health at the recent 2018 FAIR Conference at Carnegie Mellon University was a master class in communicating risk to the board and the business. Omar was this year’s winner of the FAIR Institute’s Business Innovator Award for his ambitious and creative introduction of FAIR to Highmark.

Read More [fa icon="long-arrow-right"]

[Video] FAIRCON18 Table Top Exercise: Pay or Not Pay on Ransomware?

[fa icon="calendar'] Dec 4, 2018 8:00:00 AM / by Jeff B. Copeland posted in FAIR Conference 2018, Risk Management

[fa icon="comment"] 0 Comments

You’re the CISO of a Fortune 1000 company and the VP of sales comes to you with the typical ransomware lock on a laptop screen. The VP says there’s a $10 million sale that can’t be closed because all the deal data is sitting on the local laptop, not the network. The VP wants the company to pay the 3,000-bitcoin ransom. What’s your recommendation?

Read More [fa icon="long-arrow-right"]

FAIRCON18 Video: Walmart, Cisco, Ascena on ‘Shifting the Discussion to Cost-Effective Decision Making’

[fa icon="calendar'] Nov 29, 2018 11:51:02 AM / by Jeff B. Copeland posted in FAIR Conference 2018, Risk Management

[fa icon="comment"] 0 Comments

How do you move your organization off an opinion-based approach to risk management and on to fact-based discussions, with quantitative risk analysis as the starting point? 

Read More [fa icon="long-arrow-right"]

[Video] FAIRCON18 Case Study: Walmart Extends FAIR from Cyber to Operational Risk

[fa icon="calendar'] Nov 19, 2018 11:31:09 AM / by Jeff B. Copeland posted in Risk Management, FAIR Conference 2018

[fa icon="comment"] 0 Comments

Walmart is a FAIR champion in infosec (Joel Baese,  Director, Governance and Decision Science, Information Security, has been a FAIRCON honoree and panelist) but the retailing giant is also pioneering quantitative risk analytics on the physical security side, as Christina Nelson, Director, GISAT Risk and Strategy, told the 2018 FAIR Conference.

Read More [fa icon="long-arrow-right"]

[Video] FAIRCON18 Panel: How FAIR and TBM Work Together to Show the Business Value of Cybersecurity

[fa icon="calendar'] Nov 14, 2018 8:30:00 AM / by Jeff B. Copeland posted in FAIR Conference 2018, Risk Management

[fa icon="comment"] 0 Comments

In recent years, many CIOs in big enterprises and government have successfully positioned themselves as not just IT operators but business enablers, using the discipline of Technology Business Management (TBM), a set of best practices to consistently communicate both the cost and the value of IT services.

Read More [fa icon="long-arrow-right"]

[Video] FAIRCON18 Panel Explains How to Bridge the Gap Between CISO and CRO

[fa icon="calendar'] Nov 13, 2018 10:53:17 AM / by Jeff B. Copeland posted in FAIR Conference 2018, Risk Management

[fa icon="comment"] 0 Comments

As the FAIR model and risk quantification brings cyber risk management in line with the rest of enterprise risk management, the roles of CISO and CRO also pull closer together. A panel discussion at the recent 2018 FAIR Conference showed a cooperative CISO/CRO relationship in action

Read More [fa icon="long-arrow-right"]

[Video] James Lam’s FAIRCON18 Keynote on ERM, Cybersecurity Oversight and Cyber Risk's Future

[fa icon="calendar'] Nov 7, 2018 9:00:00 AM / by Jeff B. Copeland posted in FAIR Conference 2018, Risk Management

[fa icon="comment"] 0 Comments

At the recent 2018 FAIR Conference, James Lam, the enterprise risk management and corporate governance authority and chairman of the risk committee for the E*TRADE board of directors, gave a master class

Read More [fa icon="long-arrow-right"]

[Video] Jack Jones FAIRCON18 Keynote: “Too Often We Fall Back on Easy Answers”

[fa icon="calendar'] Oct 31, 2018 11:11:26 AM / by Jeff B. Copeland posted in FAIR Conference 2018, Jack Jones, FAIR, Risk Management

[fa icon="comment"] 0 Comments

Jack Jones, FAIR Institute chairman and creator of Factor Analysis of Information Risk, gave a remarkable keynote address to the 2018 FAIR Conference at Carnegie Mellon University in  Pittsburgh that was both an unsparing look at the limitations of the risk profession and a prescription for how to break through to The Next Frontier in Risk Management

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts