The hack at the Oldsmar, Florida, water treatment plant, an attempt to inject harmful levels of lye, drew headlines fretting over the possibility of cyber-terror striking a utility sector with “few protections against hacking,” as the Wall St. Journal said.
A Second Look at the Water Utility Hack in Florida with ICS Expert Mike Radigan
[fa icon="calendar'] Feb 18, 2021 10:21:23 AM / by Jeff B. Copeland posted in Risk Management
Cyber Insurance Market Is Tight. Protect Yourself with a FAIR Analysis, Says Chip Block
[fa icon="calendar'] Feb 11, 2021 7:35:00 AM / by Jeff B. Copeland posted in Risk Management
We’re hearing from members that the market for cyber insurance has grown very tight, so we contacted Chip Block, chair of the Washington-area Chapter of the FAIR Institute, longtime cyber insurance expert
Gartner on Risk Management Post-Pandemic – More Uncertainty, Faster Digital Transformation
[fa icon="calendar'] Feb 3, 2021 8:32:15 AM / by Jeff B. Copeland posted in Risk Management
John A. Wheeler, Risk Management Technology Advisor for leading tech consultancy Gartner, is out with a LinkedIn blog post that forecasts 2021 as a year of “uncertainty and change”
Discipline Employees for Email Data Breaches? You May Also Discourage Them from Reporting
[fa icon="calendar'] Jan 27, 2021 9:18:00 AM / by Jeff B. Copeland posted in Risk Management
A new study sponsored by email security solutions vendor Egress found that CISOs surveyed rely more on employees reporting email data breaches than data breach protection software
5 Steps to Improve Your Quantitative Risk Management Program in 2021
[fa icon="calendar'] Jan 20, 2021 6:54:00 AM / by Tim Wynkoop posted in Risk Management
Phew, what a year 2020 was. Now that the new year has come, you may be thinking about how to start, change or stop doing activities within your FAIR quantitative risk management program. Let's take a look at five things you can do now for a better 2021.
Sponsored Webinar: New Capabilities from RiskLens Make FAIR Analysis Faster and Easier
[fa icon="calendar'] Dec 11, 2020 9:50:49 AM / by Jeff B. Copeland posted in Risk Management
RiskLens Senior Manager and Professional Services Architect Teresa Suarez covers a lot of ground in this 30-minute webinar, starting with the case for quantitative cyber risk management
FAIRCON2020 Video: Implementing FAIR Risk Management at DoorDash at ‘1,000 Miles a Minute’
[fa icon="calendar'] Dec 9, 2020 12:21:48 PM / by Jeff B. Copeland posted in Risk Management, FAIR Conference 2020
Sarina Hothi first heard about FAIR™ (Factor Analysis of Information Risk) at her job interview at DoorDash, the fast-growing, fast-moving food delivery service. She was so impressed, she went home and started studying the FAIR book.
How to Factor Worst-Case Cyber Events into Risk Analysis - Jack Freund on the Cyentia "Xtreme" Report
[fa icon="calendar'] Dec 8, 2020 8:15:14 AM / by Jeff B. Copeland posted in Risk Management
All end-user devices destroyed at shipping company Maersk by the NotPetya malware…Dating site Ashley Madison cancelling its IPO after a data breach…Equifax fined $1.7 billion
3 Steps to Combine MITRE ATT&CK and FAIR to Focus Cyber Risk Management
[fa icon="calendar'] Dec 3, 2020 12:36:43 PM / by Sara Dominick posted in Risk Management
The MITRE ATT&CK framework is a tool used by many cybersecurity teams to help analyze adversarial attacks and techniques. By tracking adversary methods and styles of attack, organizations gain the ability to understand their cyber risk landscape from the threat actor’s perspective.
Harvard Survey Finds FAIR Top Cyber Risk Quantification Choice
[fa icon="calendar'] Nov 25, 2020 2:22:32 PM / by Jeff B. Copeland posted in Risk Management
Recent surveys of business executives and board members by Harvard Business Review Analytics and PwC give evidence that the movement to cyber risk quantification and FAIR™ is growing, if from a small base: