“That’s entirely new and most organizations are going to look at each other across the table and say, ‘how are we going to do that?’” says Jack Jones, creator of the FAIR model.
In this one hour webinar now available for on-demand viewing, Jack has some answers (hint: FAIR was built for estimating potential cyber risk in financial terms), some actionable tips and some fresh insights into the SEC’s sometimes contradictory guidance.
Watch the Webinar Now: New SEC Cyber Risk Disclosure Guidance - The FAIR Advantage
Some of Jack’s key points:
Jack discusses how to use FAIR methods, and some existing standards for materiality from the financial world, to meet stricter SEC guidelines on both cyber incident reporting and ongoing risk disclosure.
Listen at the end, in the questions period, to the discussion on the material damage to Facebook from revelations about unauthorized use of its data. Jack's comment: "It's often less about what happened than how the company deals with what happened."
Watch the Webinar Now: New SEC Cyber Risk Disclosure Guidance - The FAIR Advantage
Learn more:
The SEC's New Cyber Risk Disclosure Guidance: Textbook Case for FAIR