Welcome to the CXOWARE blog. We hope you’ll join us for lively and good natured discussion about risk and risk issues!  We’re risk geeks, plain and simple. We’re big advocates of the Factor Analysis of Information Risk (FAIR) framework for quantifying risk.

The Certified FAIR Practitioner Forum is now online

By: Jack Jones

Find me on:

Finally, after many suggestions to do so, we’ve developed an online community for certified FAIR practitioners. This is a place for people to ask questions, share challenges and successes, and recommend improvements. It is also a source of additional documentation, example analyses, and training that aren’t available to the general public. If you’ve completed FAIR training and passed the certification exam, this will be an excellent resource for taking you to the next level.

You can go here to register.

If you’ve been using FAIR based on the white paper I published a few years ago, you should seriously consider taking our online training to up your game, learn about how FAIR has evolved, gain access to the most recent version of the FAIRLite tool, and so that you can take part in the online community.

With that and the holidays in mind, we’re offering a special for our online training. For anyone who signs up for the December 27th session, the fees are reduced by 20% (to $799).

About The Author

Jack Jones
Jack Jones is the EVP of R&D and a Founder of RiskLens. He has worked in technology for over 30 years, the past 28 years in information security and risk management. He has a decade of experience as a Chief Information Security Officer (CISO) with three different companies, including a Fortune 100 financial services company. His work there was recognized in 2006 when he received the Information Systems Security Association (ISSA) Excellence in the Field of Security Practices award. In 2007, he was selected as a finalist for the Information Security Executive of the Year, Central United States, and in 2012, he was honored with the CSO Compass Award for leadership in risk management. Jones, who lives in Spokane, Washington, has served on the ISACA CRISC Certification Committee and RiskIT Task Force, as well as the ISC2 Ethics Committee. He is the author and creator of the Factor Analysis of Information Risk (FAIR) framework. He writes about that system in his book Measuring and Managing Information Risk: A FAIR Approach, which was inducted into the Cyber Security Canon in 2016, as a must-read in the profession.