baaaa

Upcoming Events

Chapter Meetings

The FAIR Conference

The FAIR Conference is the Institute's main event of the year. The FAIR Conference is the premier event in risk management that brings leaders in cybersecurity and operational risk management together to explore best FAIR practices that produce greater value and alignment with business goals. FAIRCON24 will be held on October 1 & 2, 2024 at the Fairmont Hotel in Washington, DC.

Learn More about the FAIR Conference

Sydney Chapter Meeting

Ritchie Theatre, UNSW Kensington Campus | Dec. 6, 2024

There is widespread recognition that cyber risk is a strategic business problem and not merely a technology problem causing inconvenience and delay in operations. Various high-profile incidents, including the recent CrowdStrike outage clearly demonstrated that cyber is a key business enabler and risk factor which must be managed effectively. This need for effective risk management is highlighted through the upcoming APRA CPS 230 standard for operational risk management. CPS 230 paragraph 25 mandates compliance with the APRA CPS 234 standard for cyber risk management. This coupling between these two standards confirms that cyber risk management is a business risk and not merely a technology problem.

In this meeting, the UNSW Business School, on behalf of the FAIR Institute Sydney Chapter, invited representatives from peak bodies in the Australian risk management communities to explore the gap in executive leadership education, skill sets that will equip cyber leaders to communicate and support senior business leaders and the board to manage cyber risk in a scalable and prudential manner.

FAIR Trainings

FAIR Fundamentals Hybrid Course - Q1 2025

Hybrid Virtual Training | Feb. 3 - 7, 2025

In this course, you will discover the challenges with conventional, qualitative risk management methods. We will introduce you to the FAIR Standard and methodology, associated processes, and terminology. You will also learn key measurement concepts, calibrated estimation methods necessary to conduct quantitative risk analysis in your agency or department, and best practices to communicate analyses to stakeholders. The learning experience is further solidified by hands-on work on applicable use cases.

The Hybrid-class course is designed and taught by experienced FAIR experts. Designed to be the best of both methods, giving you the flexibility of self-paced lessons and office hours.

By the end of the course, participants will be able to:

  • Know the FAIR Standard (variables, definitions, relationships, forms of loss, etc.)
  • Explain the FAIR risk analysis process
  • Properly scope scenarios for analysis
  • Use calibrated estimation in quantitative risk analysis
  • Map controls to the FAIR Standard to analyze risk mitigation
  • Interpret the results of a FAIR analysis and create reports for stakeholders
  • Apply their knowledge to case studies based on real-life scenarios

FAIR Fundamentals Hybrid Course - Q2 2025

Hybrid Virtual Training | April 7 - 11, 2025

In this course, you will discover the challenges with conventional, qualitative risk management methods. We will introduce you to the FAIR Standard and methodology, associated processes, and terminology. You will also learn key measurement concepts, calibrated estimation methods necessary to conduct quantitative risk analysis in your agency or department, and best practices to communicate analyses to stakeholders. The learning experience is further solidified by hands-on work on applicable use cases.

The Hybrid-class course is designed and taught by experienced FAIR experts. Designed to be the best of both methods, giving you the flexibility of self-paced lessons and office hours.

By the end of the course, participants will be able to:

  • Know the FAIR Standard (variables, definitions, relationships, forms of loss, etc.)
  • Explain the FAIR risk analysis process
  • Properly scope scenarios for analysis
  • Use calibrated estimation in quantitative risk analysis
  • Map controls to the FAIR Standard to analyze risk mitigation
  • Interpret the results of a FAIR analysis and create reports for stakeholders
  • Apply their knowledge to case studies based on real-life scenarios

FAIR Fundamentals Hybrid Course - Q3 2025

Hybrid Virtual Training | Sept. 8 - 12, 2025

In this course, you will discover the challenges with conventional, qualitative risk management methods. We will introduce you to the FAIR Standard and methodology, associated processes, and terminology. You will also learn key measurement concepts, calibrated estimation methods necessary to conduct quantitative risk analysis in your agency or department, and best practices to communicate analyses to stakeholders. The learning experience is further solidified by hands-on work on applicable use cases.

The Hybrid-class course is designed and taught by experienced FAIR experts. Designed to be the best of both methods, giving you the flexibility of self-paced lessons and office hours.

By the end of the course, participants will be able to:

  • Know the FAIR Standard (variables, definitions, relationships, forms of loss, etc.)
  • Explain the FAIR risk analysis process
  • Properly scope scenarios for analysis
  • Use calibrated estimation in quantitative risk analysis
  • Map controls to the FAIR Standard to analyze risk mitigation
  • Interpret the results of a FAIR analysis and create reports for stakeholders
  • Apply their knowledge to case studies based on real-life scenarios

FAIR Fundamentals Hybrid Course - Q3 2025

Hybrid Virtual Training | Nov. 3 - 7, 2025

In this course, you will discover the challenges with conventional, qualitative risk management methods. We will introduce you to the FAIR Standard and methodology, associated processes, and terminology. You will also learn key measurement concepts, calibrated estimation methods necessary to conduct quantitative risk analysis in your agency or department, and best practices to communicate analyses to stakeholders. The learning experience is further solidified by hands-on work on applicable use cases.

The Hybrid-class course is designed and taught by experienced FAIR experts. Designed to be the best of both methods, giving you the flexibility of self-paced lessons and office hours.

By the end of the course, participants will be able to:

  • Know the FAIR Standard (variables, definitions, relationships, forms of loss, etc.)
  • Explain the FAIR risk analysis process
  • Properly scope scenarios for analysis
  • Use calibrated estimation in quantitative risk analysis
  • Map controls to the FAIR Standard to analyze risk mitigation
  • Interpret the results of a FAIR analysis and create reports for stakeholders
  • Apply their knowledge to case studies based on real-life scenarios

Sponsor Events

Assessing & Quantifying Enterprise GenAI Risk – Sponsored Webinar with Ostrich Cyber-Risk

Tuesday, December 10, 2024 | 11 AM ET / 8 AM PT

The rapid rise of generative AI has created new opportunities for the enterprise while also introducing new risk issues that must be measured, prioritized and addressed.  New tech, advanced models enabling innovative business applications result in unique risk scenarios and mitigation options that may challenge the cyber focused risk analyst.  What approach should be used?  How can the FAIR risk analyst decompose the problem and deliver credible, defensible guidance?

This session will examine how to apply the FAIR-AIR Approach Playbook created by the FAIR Institute to quantify AI risk in financial terms allowing stakeholders to make rational business decisions (cost-benefit) on risk treatment options.

Key Takeaways:

  • Help you identify your AI loss exposure and enable risk-based decisions
  • Insure proper data and alignment for scenarios and use cases
  • Know how to meet the business needs and enable AI deployment

Sponsored by Ostrich Cyber-Risk.

IT Security Controls Prioritization Using FAIR-CAM™ - Sponsored by C-Risk

Monday, December 16, 2024 | 11 AM ET / 8 AM PT

Join our upcoming webinar IT Security Controls Prioritization Using FAIR-CAM™, hosted by C-Risk Co-founder Tom Callaghan, Jack Jones, Chairman Emeritus of the FAIR Institute, and Rob Moore, VP of Technology Risk at Mastercard. The recent extension to the FAIR™ model, FAIR-CAM™, provides data-driven insights into controls efficacy and measures the risk reduction of control improvements in the context of specific risk scenarios.

FAIR-CAM™ takes a physiological approach to understanding control functions—an area often only superficially addressed by traditional cybersecurity frameworks. This model offers a deeper understanding of the key dependencies between controls and provides a clear measure of control efficacy.

In this one-hour webinar, you’ll learn how to leverage FAIR-CAM™ to enhance control prioritization and take actionable steps to reduce the likelihood and impact of threat event.

Sponsored by C-Risk.

Industry Events

TPRA's 2025 Third Party Risk Management Conference

April 7-9, 2025 | Marriott Myrtle Beach Resort & Spa | Myrtle Beach, SC

Set Sail for Success at "Navigating Risky TPRM Waters"!

Ahoy, TPRM Professionals! Prepare to embark on an unforgettable voyage at the "Navigating Risky TPRM Waters" conference, hosted by the Third Party Risk Association (TPRA). From Monday, April 7 to Wednesday, April 9, 2025, chart your course to the beautiful shores of Myrtle Beach, South Carolina, and drop anchor at the luxurious Marriott Myrtle Beach Resort & Spa at Grande Dunes.

Dive into the depths of Third-Party Risk Management with expert-led sessions, interactive roundtables, and cutting-edge strategies to get your TPRM program into shipshape! ​Our 2025 conference will feature four speaking tracks and up to 47 different sessions, including 44 breakout sessions, 2 keynotes, 8 roundtables, and 5 sponsor demo sessions. Also included are 2 network events, sponsor booths, games, raffles, live entertainment, and more!

Don't miss the opportunity to steer your TPRM career toward new horizons. Secure your spot today and join us for an extraordinary journey filled with discovery, adventure, and invaluable learning at "Navigating Risky TPRM Waters"!

2025 RSA Conference

April 28 - May 1, 2025 | Moscone Center | San Francisco, CA

Unite. Innovate. Shine. Join the RSAC 2025 Community.

At RSAC 2025, you're not just attending a conference—you're stepping into a vibrant, thriving community of thinkers, innovators, and achievers. Though we come from different corners of the cybersecurity world, we are united by a common mission: to foresee risks, counter threats, and embrace the challenges ahead. Together, we shape the future of security. Together, we shine as one.

Join us to be a part of something bigger. Many Voices. One Community.

Thought Leadership Webinars

Best of FAIRCON24 Webinar Series | Developing an Effective Cyber Risk Management Program in Today's Digital Landscape

December 5 | 11 AM ET / 8 AM PT | Virtual

Missed FAIRCON24? Join us for an exclusive recap of one of its most impactful sessions! Cyber risk experts Brian Allen, SVP of Technology Risk Management and former CSO at Time Warner Cable, and Brandon Bapst, Cyber Risk Advisor at EY, revisit their insights on building resilient, adaptive risk management programs in today’s complex digital landscape.

Topics include:

  • Risk Identification and Mitigation: Understanding your organization’s risk profile and addressing key vulnerabilities.
  • Building Resilience and Compliance: Practical tips for incident response and meeting regulatory requirements.
  • Cultivating a Risk-Aware Culture: Engaging leadership and promoting proactive risk awareness across teams.

Attend for a live Q&A with our speakers, where you can dive deeper into your specific questions. This session is ideal for CISOs, IT leaders, and risk professionals aiming to strengthen their cyber risk strategies.