RiskLens Blog

4 Ways To Conduct Quantitative Risk Analyses When You’re Short on Resources

Posted December 8, 2016 by Chelsea Brunson

When speaking with potential customers here at RiskLens, we often hear “I do not have enough resources (both analysts and budget) to build a quantitative risk management program.”

... Continue Reading

Video Now Available: Quantifying Cloud Risk

Posted December 1, 2016 by Jack Jones

In September 2016, I had an opportunity to give a presentation at this year’s (ISC)² Security Congress on measuring cloud-related risk using FAIR.

... Continue Reading

How RiskLens Can Help Banks Meet Board-Approved Residual Cyber Risk Levels

Posted November 30, 2016 by Isaiah McGowan

The  proposed new standards for cyber risk management proposed by the federal banking regulators do not introduce new governance burdens on board of directors.
... Continue Reading

How To Justify Your IT Security Budget

Posted November 17, 2016 by Chris Bryant

Increased scrutiny on security spending

As IT security threats continue to increase, overall cybersecurity spending according to Gartner is projected to grow by 7.9% to $81.6 billion in 2016.

... Continue Reading

How Does Incident Response And Cyber Resilience Capabilities Help Reduce Loss Exposure?

Posted November 16, 2016 by Chad Weinman

As a follow-up to Isaiah MacGowan's post on the new proposed cybersecurity standards published by the Federal Reserve, OCC, and FDIC, I wanted to dive a bit deeper into one of the enhanced risk management expectations: "establish incident response and cyber resilience capabilities to quickly recover from cyber events".

... Continue Reading

What Is The Right Kind of Quantification in Cyber Risk Management?

Posted November 11, 2016 by Cody Whelan

As part of our series on the newly proposed cyber risk management regulations for US banks, I wanted to piggyback off of the great insights my colleague Isaiah McGowan recently shared in a post, as well as bring to the forefront a concerning premonition that is based on past experience.

... Continue Reading

The Five Phases of Successful Cyber Risk Quantification Programs

Posted November 4, 2016 by Steve Tabacek

Since 2011, the team at RiskLens has worked with organizations from nearly every market vertical implementing cyber risk quantification programs.

... Continue Reading

What RiskLens Can Do For Banks To Meet The New Proposed Cybersecurity Regulation

Posted November 1, 2016 by Isaiah McGowan

By now, every bank with $50B or more in consolidated assets, as well as those entities’ service providers, should be aware of the new proposed enhancements to federal cyber risk management standards by the Federal Reserve, the OCC and FDIC.
... Continue Reading

Presenting The Top 10 Risks To The Board

Posted October 28, 2016 by Isaiah McGowan

If you spend enough time around Jack Jones you will hear him exclaim: “70 to 90 percent of the things I encounter in Top 10 lists really aren’t risks”.

... Continue Reading

Press Release: (ISC)², RiskLens Announce Business Partnership to Help Members Demonstrate Cybersecurity ROI

Posted October 26, 2016 by James Finn

(ISC)² Members Can Access Risk Analytics Platform to Manage Cybersecurity Economics

... Continue Reading

Sign Up for Blog Updates