On-site, after FAIRCON17

Interested in getting ready for the FAIR certification exam or expanding your risk analysis skills? Join us for our Introductory FAIR Training Course directly following FAIRCON17, on-site at The Hilton Anatole. This course is designed to provide individuals with the conceptual foundation, methods, tools and practical experience necessary to competently perform a FAIR analysis.

RiskLens® has been delivering risk-focused training for over ten years and our facilitators are among the foremost experts in FAIR and technology risk. We not only cover all relevant and important concepts around risk quantification and the FAIR framework, but also apply that knowledge in classroom-led analysis to ensure each participant has practical application experience. Risk analysts who complete the training program will bring a stronger set of analytical skills as well as an improved ability to identify, measure, and communicate risk.



Both existing FAIR Institute members and non-members are welcome to partake. Please note: this is an optional conference add-on course that you can add on to your FAIRCON17 ticket purchase.


Join us for two days of on-site Introductory FAIR Training at The Hilton Anatole, directly following FAIRCON17. Led by FAIR experts from our technical advisor, RiskLens®, this workshop-style course will walk you through a foundational introduction to FAIR's core principles and enable analysts like you to: 

  • Recognize the challenges associated with commonly used risk assessment approaches;
  • Distinguish the advantages and limitations associated with FAIR; 
  • Internalize and apply basic risk concepts and terminology; 
  • Understand common measurement challenges and how to effectively and consistently over come them using measurement concepts; and
  • Ultimately performing quantitative risk analyses.


October 17 - 19, directly following FAIRCON17 


The Hilton Anatole, Dallas, TX (on-site, directly following FAIRCON17)


You may be wondering why FAIR Training is so valuable. Led by our technical advisors at RiskLens, FAIR Training will help you get ahead in a number of ways:

  • You will learn firsthand from the experts: FAIR is the only standard quantitative model for cybersecurity and operational risk.
  • You will take your career to the next level: analysts trained in FAIR can build an effective approach to improved risk analysis and management, helping their organization not just thrive, but succeed.
  • You will be able to apply FAIR principles in all aspects of business: from identifying control weaknesses and concentrations of risks, to optimizing security mitigation budgets, FAIR will become your new standard.


No prior in-depth understanding of FAIR is necessary; this course is open to all FAIRCON17 attendees (both FAIR Institute members and non-members), who have enrolled in this optional, add-on course. 

Technical requirements include access to one of the following browsers on your device during training: Internet Explorer v9, Firefox v5, Chrome v7, or Safari v5.


This course will be led by FAIR-certified trainers from the Professional Services Team at RiskLens®, FAIR Institute's technical advisor. 

Isaiah McGowan, Sr. Risk Consultant

Isaiah is a Senior Risk Consultant with RiskLens® and a former network security engineer, penetration tester, and IT auditor who now works with the largest organizations in the world to apply quantitative risk models to problems in the security realm. He is one of the foremost domain specialists in FAIR and has trained hundreds of security practitioners on the FAIR methodology. He currently holds the OSCP and OpenFAIR certifications. Here’s what he wants you to know about FAIR:

"The failure to prioritize cybersecurity issues causes a massive DDoS against cybersecurity operations functions. The upstream effect on prioritization is felt by executives. FAIR clarifies the problem space which gives us control of the ship again. I was first introduced to FAIR when I was an incident handler and it wildly changed my views on what deserved my attention." 


Cody Whelan, Risk Consultant

Cody is a Risk Consultant with RiskLens® who previously held positions at one of the world's largest insurance brokerages as part of their client private services; as a risk management specialist in the non-for-profit space; and a technology risk manager at a regional financial institution. He currently holds a Master's in Risk Management from Florida State University and the OpenFAIR Certification. Here’s what Cody wants you to know about FAIR: 

"What I enjoy most about the FAIR methodology is that it fosters critical thinking and problem solving. Upon using FAIR, you immediately realize that it's not good enough to just feel like something is a "high" risk with little to no sound rationale or facts to back it up. Doing a sound FAIR analysis means that you've critically thought your way through the entire analysis and should have no problem standing in front of the so called "firing squad" answering any questions that may arise!"


  • Introductory bald tire exercise and overview of the FAIR model
  • Risk basics & probability vs. possibility
  • Measurement
    • Subjectivity vs. objectivity
    • Precision vs. accuracy
    • Qualitative vs. quantitative measurement
    • Improving estimation
  • Risk taxonomy & analysis
  • Loss event frequency & magnitude
  • Articulating Risk
  • Risk Modifiers
  • Troubleshooting Analyses


Your RiskLens® instructors will provide you with a comprehensive curriculum, training workbooks, and materials needed to complete course exercises related to the training.

All participants will receive a certificate of completion with credited 16 CPE hours for professional certifications. Upon completion of this course, instructors will share how you can take the FAIR certification exam via The Open Group at a Prometric Testing Center near you, and provide you with a testing voucher.


TUESDAY, October 17

12:00 - 1:00 PM          Hot Buffet-style Lunch

1:00 - 5:00 PM            Workshop-style FAIR Training

Attending RSA Charge as well? Don't miss out on their various events taking place this day, including an Evening Welcome Reception, 5-7 PM. 


WEDNESDAY, October 18

8:00 - 9:00 AM             Continental Breakfast

9:00 - 10:00 AM           Workshop-style FAIR Training

10:00 - 10:15 AM         Morning Snack Break

10:15 AM - 12:00 PM   Workshop-style FAIR Training

12:00 - 1:00 PM           Hot Buffet-style Lunch

1:00 - 3:30 PM             Workshop-style FAIR Training

3:30 - 4:00 PM             Afternoon Snack & Networking Break

4:00 - 5:00 PM             Workshop-style FAIR Training

Attending RSA Charge as well? Don’t miss out on their evening events this day, including a Special Event (TBD), 6-9pm.


THURSDAY, October 19

8:00 - 9:00 AM             Hot Buffet-style Breakfast

9:00 AM - 12:00 PM     Workshop-style FAIR Training Wrap-up



$1,500 Per Student


The Introductory FAIR Training course in an optional FAIRCON17 ticket add-on and will appear in-cart during the FAIRCON17 ticket purchase process. Click the "BUY TICKET" button, below, and follow these instructions on the EventBrite ticketing site to enroll:

1) Select your FAIRCON17 ticket.

2) Hit "Checkout" and the order summary page will populate.

3) On this page, scroll down to "Additional Items" at the bottom and select the "Intro To FAIR Training" course add-on before proceeding to final payment by clicking "Pay Now."



RiskLens® is the premier provider of cyber risk management software and empowers large enterprises and government organizations to manage cyber risk from the business perspective by quantifying it in dollars and cents. RiskLens serves as FAIR Institute’s sponsor and technical advisor where it is led by FAIR-certified experts.

Our customers leverage RiskLens to understand their cyber risk exposure in financial terms, prioritize their risk mitigations, measure the ROI of their security investments, and optimize their cyber insurance coverage. RiskLens is the only cyber risk management software purpose-built on FAIR, the only international standard Value at Risk (VaR) model for cyber security and operational risk.

For more information visit the RiskLens® website at www.risklens.com