“Thought leadership” is a term that gets used loosely but Jack Jones, creator of Factor Analysis of Information Risk (the FAIR™ model) and Chairman of the FAIR Institute has been out in front of the profession for years patiently pointing out the limitations of conventional, qualitative risk analysis
With FAIR – and risk quantification -- increasingly accepted as the standard for cyber risk analysis, FAIR Institute Chairman Jack Jones talked to what’s next in his keynote address to the recent 2019 FAIR Conference: Setting up successful FAIR-based programs that manage risk cost-effectively.
FAIR Institute Chairman and FAIR model creator Jack Jones started his keynote for the 2019 FAIR Conference at National Harbor, MD, with a question: “What’s the cost of a $5 million risk management program?” all in with salaries, services, technology, etc. Much more than you think, Jack pointed out.
SC Media has awarded FAIR Institute Chairman Jack Jones with the SC Media Reboot Leadership Award in the Non-Profit Founders category. Jack is the creator of Factor Analysis of Information Risk, the FAIR model for risk quantification that is indeed rebooting risk management
Once again, after a run of high profile breaches,
I’ve begun to hear cries that “leadership didn’t sufficiently support” an organization’s cybersecurity program. I’m sorry, but I just don’t buy it.
New York Times reporters Stacy Cowley and Nicole Perlroth turned to FAIR Institute Chairman and RiskLens Chief Risk Scientist Jack Jones to answer the question, why are big banks in an Endless Fight with Hackers, as their article on the massive Capital One breach asks.
FAIR Institute Chairman and FAIR model creator Jack Jones gives a concise, high level view of the limitations of conventional thinking in the cybersecurity profession, and how FAIR and a quantitative approach to cyber risk shows the way forward, in this Enterprise Security Weekly podcast hosted by Paul Asadoorian.
A busy week at the RSA Conference for the FAIR Institute. Tuesday at the SC Awards ceremony, the FAIR Institute received the extraordinary honor of being named one of the Most Important Industry Organizations of the Last 30 Years.
Yesterday, while speaking to a university cybersecurity class, I was accused of being pedantic when I pointed out a problem with the phrase “The risk of that impact…”
This year’s RSA Conference, Monday-Friday, March 4-8, in San Francisco is a great opportunity to hear some of the world’s best thinkers and doers in and around the FAIR movement and advanced techniques in risk management in general.
