FAIR Institute Blog

Jack Jones Previews the FAIR Controls Analytics Model (FAIR-CAM) at the 2021 RSA Conference

[fa icon="calendar'] May 24, 2021 11:56:19 AM / by Jeff B. Copeland posted in Jack Jones, FAIR Controls Model

[fa icon="comment"] 0 Comments

Jack Jones, creator of Factor Analysis of Information Risk (FAIR™), the international standard for quantification of cyber risk, gave an RSAC21 audience a preview of his breakthrough FAIR Controls Analytics Model (FAIR-CAM) that will, for the first time, enable security teams to reliably evaluate how controls affect risk in quantitative terms.

Read More [fa icon="long-arrow-right"]

Jack Jones on the Cybersecurity Executive Order: Bold Changes, but Missed Opportunity for Measuring Risk?

[fa icon="calendar'] May 20, 2021 9:36:51 AM / by Jack Jones posted in Jack Jones, Government

[fa icon="comment"] 2 Comments

I’m thrilled with many of the provisions in the President’s recent Executive Order on Improving the Nation’s Cybersecurity. The tiered software security ratings system, the IoT consumer labeling, the cybersecurity review board, and the emphasis on sharing information on breaches and other cyber incidents, are all bold initiatives

Read More [fa icon="long-arrow-right"]

Jack Jones: State ‘Safe Harbor’ Laws Should Promote Effective Cyber Risk Management, Not Just Compliance with Frameworks

[fa icon="calendar'] Apr 7, 2021 12:43:04 PM / by Jack Jones posted in Jack Jones

[fa icon="comment"] 2 Comments

State legislatures in Nevada, Ohio, Utah and Connecticut have passed or are in the process of passing “safe harbor” protection against negligence lawsuits for companies hit with a data breach – if the companies implement controls from a recognized cybersecurity framework.

Read More [fa icon="long-arrow-right"]

Watch Out for these 5 ‘Cyber Risk Quantification’ Methods. They Don’t Support Cost-Effective Risk Management

[fa icon="calendar'] Mar 16, 2021 11:31:09 AM / by Jeff B. Copeland posted in Jack Jones

[fa icon="comment"] 0 Comments

As the popularity of cyber risk quantification (CRQ) grows, so grows the confusion in the marketplace about choosing the right cyber risk quantification solution among many with the CRQ label.  

Read More [fa icon="long-arrow-right"]

3 Foundational Videos from Jack Jones on What Is Risk, How FAIR Started, and How to Make a FAIR Quantitative Risk Management Program Work

[fa icon="calendar'] Mar 3, 2021 8:12:00 AM / by Jeff B. Copeland posted in Jack Jones

[fa icon="comment"] 0 Comments

If you’re new to Factor Analysis of Information Risk (FAIR™), understand that it’s first of all a movement

Read More [fa icon="long-arrow-right"]

Jack Jones: The First 2 Moves Every New CISO Should Make

[fa icon="calendar'] Feb 2, 2021 2:05:10 PM / by Jeff B. Copeland posted in Jack Jones

[fa icon="comment"] 0 Comments

FAIR Institute Chairman Jack Jones recently appeared on the Privacy Please podcast hosted by Cameron Ivey and Gabe Crumbs of Spirion, the data protection company

Read More [fa icon="long-arrow-right"]

Interview: Jack Jones Talks Lessons of 2020 – and New Research on Controls-to-Risk Mapping, Coming in 2021

[fa icon="calendar'] Jan 4, 2021 8:15:18 AM / by Jeff B. Copeland posted in Jack Jones

[fa icon="comment"] 0 Comments

Jack Jones, Chairman of the FAIR Institute and creator of Factor Analysis of Information Risk (FAIR™), the international standard for cyber risk quantification, sees 2020 as the year that taught many CISOs some hard lessons

Read More [fa icon="long-arrow-right"]

ISACA’s New Risk IT Framework “More Closely Aligned with FAIR,” Jack Jones Finds

[fa icon="calendar'] Jul 8, 2020 12:29:08 PM / by Jeff B. Copeland posted in Jack Jones

[fa icon="comment"] 0 Comments

In a blog post for ISACA, FAIR™ model creator Jack Jones reviews the recently released Risk IT Framework, 2nd Edition and Risk IT Practitioner Guide, 2nd Edition, and finds them “revitalized.”

Read More [fa icon="long-arrow-right"]

NY Fed’s Dire Warning on Cyber Shock to the Banking System – Jack Jones’ FAIR™ Response

[fa icon="calendar'] Jan 28, 2020 12:29:51 PM / by Jeff B. Copeland posted in FAIR, Jack Jones

[fa icon="comment"] 0 Comments

Researchers at the Federal Reserve of New York recently issued a study saying that intrabank “wholesale” payments are so concentrated in the top five banks that if any one of them were disrupted by a cyber attack, the result could be a liquidity crisis in the banking system – a kind of cyber run on the banks. 

Read More [fa icon="long-arrow-right"]

Jack Jones’ 2019 Insights on Building a Cyber Risk Management Program – and Outrunning the Bear

[fa icon="calendar'] Jan 9, 2020 7:30:00 AM / by Jeff B. Copeland posted in Risk Management, Jack Jones

[fa icon="comment"] 0 Comments

“Thought leadership” is a term that gets used loosely but Jack Jones, creator of Factor Analysis of Information Risk (the FAIR™ model) and Chairman of the FAIR Institute has been out in front of the profession for years patiently pointing out the limitations of conventional, qualitative risk analysis

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts