FAIR Institute Blog

Who (or What) Is Really a “Cyber Threat”

[fa icon="calendar'] Apr 2, 2018 3:10:15 PM / by David Musselwhite posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

The MIT Technology Review recently published an article about what they called “cyber threats.” While the article identifies trending attack methods and scenarios to be concerned about, none of the things that made the list are actually threats.

Read More [fa icon="long-arrow-right"]

Black Swans in Risk: Myth, Reality and Bad Metaphors

[fa icon="calendar'] Mar 19, 2018 12:00:00 PM / by Tony Martin-Vegue posted in FAIR, Risk Management

[fa icon="comment"] 3 Comments

The term “Black Swan event” has been part of the risk management lexicon since its coinage in 2007 by Nassim Taleb in his eponymous book titled The Black Swan: The Impact of the Highly Improbable.

Read More [fa icon="long-arrow-right"]

The SEC's New Cyber Risk Disclosure Guidance: Textbook Case for FAIR

[fa icon="calendar'] Mar 16, 2018 9:00:00 AM / by Jeff B. Copeland posted in FAIR, Risk Management

[fa icon="comment"] 2 Comments

Tips and insight from Jack Jones and Jack Freund, authors of the FAIR book...

The Securities and Exchange Commission’s new guidance on cyber risk disclosure has shaken up infosec teams, C-suiters and board members at public companies over the past two weeks.

Read More [fa icon="long-arrow-right"]

Measuring Reputation Loss (and Gain) with Andrea Bonime-Blanc

[fa icon="calendar'] Mar 1, 2018 9:00:00 AM / by Jeff B. Copeland posted in Risk Management

[fa icon="comment"] 2 Comments

Reputation loss can kill a company; just look at the Weinstein Co., once a leading independent film studio, that went broke after 60+ actresses accused Harvey Weinstein of sexual harassment and assault. The resulting lawsuits and cancelled deals made the company unsaleable even after Weinstein exited. 

Read More [fa icon="long-arrow-right"]

The SEC’s Cybersecurity Guidance: The Rise of the Investor in the Discussion

[fa icon="calendar'] Feb 28, 2018 1:22:46 PM / by Chip Block posted in Risk Management

[fa icon="comment"] 0 Comments

As cyber risk poses greater long-term impact, investors and regulatory bodies are demanding a higher standard for disclosure. This post is republished from the blog at Evolver

Read More [fa icon="long-arrow-right"]

Five Critical Cybersecurity Trends that Boards Need to Know

[fa icon="calendar'] Feb 28, 2018 9:00:00 AM / by Jeff B. Copeland posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

An interview with James Lam, Director at E*TRADE Financial, and Chair of the firm’s risk oversight committee, offers some timely advice for an era when cybersecurity has risen to the top of the agenda in the boardroom

Read More [fa icon="long-arrow-right"]

Report from SIRACon: Data + Quantification Beats Dogma

[fa icon="calendar'] Feb 23, 2018 10:38:27 AM / by Teresa Suarez posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

I had heard that SIRACon, the annual event hosted by the Society of Information Risk Analysts, was one of the two big opportunities of the year to hear the best thinking – and have the best hallway conversations – about risk analysis and risk management (FAIR Institute’s FAIRCON is the other).

Read More [fa icon="long-arrow-right"]

Meet a Member: La'Treall Maddox of Cisco, Co-Chair of New FAIR Chapter in NC

[fa icon="calendar'] Feb 20, 2018 5:17:42 PM / by Jeff B. Copeland posted in FAIR, Risk Management, Meet a Member

[fa icon="comment"] 0 Comments

The North Carolina chapter of the FAIR Institute launches with a meeting on Thursday, February 22, in Charlotte, co-chaired by La’Treall Maddox of Cisco Systems, Inc., along with David Sheronas from Bank of America. La’Treall is Strategy Risk Manager for Cisco’s Security & Trust Organization (S&TO), and the leading FAIR evangelist at the company, which is making a major push on risk quantification;

Read More [fa icon="long-arrow-right"]

For Better Risk Assessments in SSAE 18 Audits, Try Quantification with FAIR

[fa icon="calendar'] Feb 9, 2018 4:08:05 PM / by Rachel Slabotsky posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

One of my final initiatives prior to leaving public accounting and entering my new role in risk management was helping organizations prepare for the changes introduced by AICPA in the SSAE 18 audit standard, which went into effect in May 2017.

Read More [fa icon="long-arrow-right"]

Case Study: Demystifying ICS Cyber Risk with FAIR

[fa icon="calendar'] Feb 7, 2018 9:10:00 AM / by Michael Radigan posted in FAIR, Risk Management

[fa icon="comment"] 0 Comments

Simply put, when Industrial Control System (ICS) cyber risk is accurately modeled, measured, quantified and normalized with mechanical / industrial operational risk, it is then demystified.  

Read More [fa icon="long-arrow-right"]
LEARN MORE

Subscribe to Email Updates

417NjDVYgtL._SX404_BO1204203200_.jpg
Learn How FAIR Can Help You
Make Better Business Decisions

Recent Posts