RiskLens Blog

To Make Your Risk Management Program Fly, First Fix Your Language

Posted August 17, 2017 by Rebecca Merritt

In 1999, NASA lost its $125-million Mars Climate Orbiter because the navigation team used the metric system to operate the spacecraft while the manufacturer had set it up to run on the English inches/feet/pounds system. "It is going to be the cautionary tale until the end of time,” a leading scientist said back then.

... Continue Reading

Join Us at The FAIR Conference in October

Posted August 14, 2017 by Jeff B. Copeland

RiskLens invites you to two days of immersion in the most advanced thinking on risk management, at a limited-attendance event with some of the smartest folks in information security: The FAIR Conference 2017, October 16-17 in Dallas.

... Continue Reading

Risk News & Trends: Risk Analysis of Your Boss; Insider Threat Survey; FAIR for Banks

Posted August 11, 2017 by Jeff B. Copeland

What we’re reading this week from the world of technology and operational risk management...  

... Continue Reading

Present Cyber Risk Reports to the Board that Spock Would Approve

Posted August 9, 2017 by Chelsea Brunson

You’re a CISO who’s prepared hard for your cybersecurity Board presentation, covering the company’s Top 10 Risks. To make the stakes higher, it’s annual budget time. You enter the boardroom, PowerPoint under control (you think), and are introduced to the new member of the Board.

... Continue Reading

Hire a CISO Quick. New York Cybersecurity Regulations Deadline Coming.

Posted August 9, 2017 by Jeff B. Copeland

August 28 is the first of the rolling deadlines to comply with the New York Department of Financial Services (DFS) new and far-reaching cybersecurity regulations for companies licensed under the state’s banking, insurance and financial services laws. 

... Continue Reading

Risk News & Trends: Disclosures Go Up; Petya Bites Profits; Cut Your Breach Costs

Posted August 4, 2017 by Jeff B. Copeland

What we’re reading this week from the world of technology and operational risk management...  

... Continue Reading

How to Ensure Your IT Risk Committee Speaks the Same Language

Posted August 4, 2017 by Jeff B. Copeland

Many large organizations have an Enterprise Risk Committee or Operational Risk Committee looking out broadly over the risk landscape. But forward-thinking organizations also empower an IT Risk Committee (reporting to either of those super committees).

... Continue Reading

Does Your Business Impact Analysis Leave You Wanting More?

Posted August 3, 2017 by Isaiah McGowan

Dwight D. Eisenhower is famously quoted as saying: “In preparing for battle, I have always found that plans are useless, but planning is invaluable.” This truism carries over from the battlefield to Business Continuity Planning (BCP). However, the Business Impact Analysis (BIA) suffers a fatal flaw, thus often compromising the planning stage.

... Continue Reading

The 3 C’s that Risk Analysts Want Their CISOs to Know

Posted July 27, 2017 by Tim Wynkoop

In my work as a RiskLens analyst, I’m privileged to be invited by our clients to take a deep look at their risk processes, and to help guide them through some serious thinking on difficult topics, and not just about the risks faced by the company. Implementing RiskLens and the FAIR model also means changing some longtime beliefs about risk analysis and risk management.

... Continue Reading

How CIOs Can Teach Technology Risk to CEOs: A Mini-Guide

Posted July 26, 2017 by Jeff B. Copeland

The 2017 CEO Survey by Gartner found that the corporate leaders rank profit growth as their #1 goal, naturally, but ranked technology-driven business change as #2. Forty-two percent call their businesses “digital first”. Yet 53% of those surveyed could not name a clear metric for digital success.

... Continue Reading

Sign Up for Blog Updates