Cyber-security isn't just about detecting and preventing threats; it's also about understanding risk, according to RSA Chief Technology Officer Zulfikar Ramzan.
Originaly published December 5, 2017 by Arizona State University
Businesses struggle to quantify and manage risk, leading to wasted resources and oversight of major problems.
The FAIR Institute, an expert non-profit organization led by information risk officers, CISOs and business executives to develop standard information risk management practices, today announced the launch of FAIR-U, a web application to help users run risk analysis based on FAIR (Factor Analysis of Information Risk), the only international standard model for risk quantification.
This article was originally published on InformationWeek Darkreading on January 3, 2017
By Jack Jones
Boards and CEOs can focus on these critical factors to provide better cyberrisk governance.
The FAIR Institute and NIST present how the NIST Cybersecurity Framework and the FAIR risk model can be leveraged to measure the ROI of cybersecurity and prioritize risk mitigations.
Originally published July 15th by the Global Association of Risk Professionals (GARP)
This article was originally published by ISACA's The Nexus on July 11, 2016
Annual Awards Celebrate Books that Reflect the Modern Cybersecurity Industry
A new expert forum to help information risk, cybersecurity and business executives collaborate on the development and sharing of industry-leading best practices for quantifying and managing information risk.
