The 2021 FAIR Conference (FAIRCON21) brought together thought leaders and challengers of the status quo for information and technology risk management, so it’s not surprising that conventional thinking got challenged all over. Here are a few of the surprising takeaways
4 Counterintuitive Insights into Cyber Risk Management from the FAIR Conference
“10x the speed and ultimately the effectiveness” of FAIR risk scenario analysis – that was the promise of a forward-looking session at the recent 2021 FAIR Conference led by Ben Gowan and Justin Theriot, data scientists at RiskLens
Operational risk and cyber risk can be managed on equal terms when both are quantified using FAIR™, as Mike Radigan demonstrated with a case study from a power plant presented at the 2021 FAIR Conference (FAIRCON21).
Case Study: Analyze Ransomware Risk for a Bank, Satisfy Financial Regulators
At the 2021 FAIR Conference (FAIRCON21), Andy Retrum, Managing Director, Global Financial Services Security and Privacy for Protiviti, presented a use case for FAIR™ quantitative cyber risk analysis of ransomware that would both inform senior management and satisfy financial industry regulators
FAIR for Government Resilience: Sonoma County, CA, Quantifies Disaster Risk
When a huge fire devastated Sonoma County over three weeks in 2017, the county government was tested to the maximum as it stood up emergency services for citizens
Bob Kolasky, who runs the National Risk Management Center in CISA, gave the FAIR Conference 2021 a briefing on CISA’s Systemic Cyber Risk Reduction Venture, an effort to manage and reduce cyber risks to critical infrastructure.
FAIR Use Case: Introducing Quantitative Risk Management at Fashion Group Richemont
If you’re introducing FAIR™ and cyber risk quantification to your organization, look at this presentation from the 2021 FAIR Conference by Cedric De Carvalho, Cyber Risk Manager at Richemont International SA
5 Metrics for Cyber Risk Resilience – Advice from a Federal Reserve Expert
Matt Tolbert, Senior Cyber Specialist, Federal Reserve Bank of Cleveland, gave some specific pointers on cybersecurity resilience in a presentation at the recent 2021 FAIR Conference
The recent 2021 FAIR Conference (FAIRCON21) brought together three experts in corporate governance and risk management to debate how organizations should structure lines of responsibility for cyber risk and security before a cyber loss event
Three experienced FAIR™ (Factor Analysis of Information Risk) practitioners got together at the 2021 FAIR Conference (FAIRCON21) to compare notes on best practices for reporting to the board with risk quantification. Their bottom-line advice for a board command performance: Keep it simple and relatable to what the audience already knows.