Leadership
Leadership

FAIR Institute
Leadership

Jack Jones

Jack Jones, Chairman Emeritus, FAIR Institute

Widely considered a thought leader in risk management and information security, Jack has been employed in information security and risk management for over thirty five years. During this time he has garnered a decade of experience as a CISO, including five years for a Fortune 100 financial services company. His work has also been recognized by his peers and the industry, earning him the 2006 ISSA Excellence in the Field of Security Practices award, and the 2012 CSO Compass Award for Leadership in Risk Management.Jack is the originator of the now industry standard risk measurement model known as Factor Analysis of Information Risk (FAIR) as well as the FAIR Controls Analytics Model (FAIR-CAM). FAIR has seen adoption globally, within organizations of all sizes, and is now regularly included in graduate-level university courses on information security and referenced by other industry standards. He also co-authored a book on FAIR entitled "Measuring and Managing Information Risk - A FAIR Approach", which has been inducted into the Cybersecurity Canon as a "must read" for professionals in the industry. Jack served on the ISACA task force that developed the RiskIT framework, and he led the ISACA group that developed the CRISC certification.Today, Jack helps organizations understand and more effectively manage their cyber and operational risk landscapes. and is a sought after speaker at national conferences and universities. He is also an adjunct instructor of risk measurement for Carnegie Mellon University. Jack is also Chairman Emeritus of The FAIR Institute (http://www.fairinstitute.org/), an award-winning non-profit organization led by information risk officers, CISOs and business executives to advance risk management practices based on FAIR.

Board of Directors

The FAIR Institute Board of Directors and Board of Advisors are made up of a group of leaders whose mission is to help in the development of standard practices based on the FAIR™ quantitative risk analysis model, and to share it with the community.

Jack Jones

Jack Jones

Chairman Emeritus

FAIR Institute

Christopher Porter

Christopher Porter

SVP & CISO

Fannie Mae

Mary Elizabeth Faulkner

Mary Elizabeth Faulkner

CISO

Thrivent Financial

Omar Khawaja

Omar Khawaja

VP Security, Field CISO

Databricks

James Lam

James Lam

President

James Lam and & Associates

Mark Tomallo

Mark Tomallo

SVP, CISO

Victoria's Secret & Co

Jon Baker

Jon Baker

Director & Co-Founder

Center for Threat-Informed Defense, MITRE Engenuity

John Sapp

John Sapp

CISO & VP, Information Security

Texas Mutual Insurance Company

Saket Modi

Saket Modi

CEO

SAFE Security

Nicola (Nick) Sanna

Nicola (Nick) Sanna

Founder

FAIR Institute

EMEA Advisory Board

Tom Callaghan

Tom Callaghan

Co-Founder

C-Risk

Christophe Foret

Christopher Foret

President

C-Risk

Mohamed Abdul Rahim

Mohamed Abdul Rahim

Managing Director

Octopian Security

Adham Etoom-1

Adham Etoom

Director

NCSC of Jordan

Australia/New Zealand Advisory Board

Denny Wan

Denny Wan

Cyber Security Risk Expert

Security Express

Jason Ha

Jason Ha

CISO

ETHAN

Helen Teixeira

Helen Teixeria

Managing Director

Scyne Advisory

Management

Todd Tucker

Todd Tucker

Managing Director

Luke Bader

Luke Bader

Director, Memberships &
Programs

Bernadette Dunn

Bernadette Dunn

Head of Education

Pankaj Goyal

Pankaj Goyal

Director, Standards & Research

Sofia Bazante

Sofia Bazante

FAIR Enablement Specialist