RiskLens Blog

Don’t Know Your Top Risks? Read This Mini-Guide to Start

Posted April 7, 2017 by Kristel Libres

Identifying your critical risk scenarios is one of the most important and difficult elements of assessing risk. Companies are often not properly prioritizing the risk they face and are unable to express a range of outcomes that could result.

... Continue Reading

Case Study: Which Cybersecurity Solution Delivers the ROI?

Posted April 5, 2017 by Isaiah McGowan

With budget tight, an IT services firm faced some difficult choices: which of two competing cybersecurity solutions would deliver the maximum defense for the bucks and – bigger picture – which way to go on their security strategy. The company called in a RiskLens team led by Senior Risk Consultant Isaiah McGowan.

... Continue Reading

Perceptions vs. Reality in Identifying Risk

Posted March 31, 2017 by Chad Weinman

One of the stages of a risk management program is Risk Identification – quite self-explanatory in definition. But the challenge comes down to how to do it.

... Continue Reading

To Set Smart Goals for a Cyber Risk Program, Focus on ‘Jobs-to-be-Done’

Posted March 29, 2017 by Steve Tabacek

Henry Ford once said, “If I asked customers what they wanted, they would have said a faster horse.”  He instead went deeper and focused on understanding what job the customer was trying to do: Get from point A to point B safely and in the shortest period of time. 

... Continue Reading

Hear Jack Jones Speak at InfoSecWorld 2017

Posted March 22, 2017 by RiskLens Staff

FAIR Institute Chairman Jack Jones speaks at InfoSecWorld in Orlando, Thursday, April 6, on the Risk Management Summit panel.

... Continue Reading

The Advantages of Measuring Your Security Risk – Tips from an Expert Panel

Posted March 21, 2017 by Jeff B. Copeland

If you’re about to order a new endpoint security system just because you think you
should have the latest technology—stop, step back from the phone, and consider the advice given at a recent panel at the Dark Reading CyberSecurity virtual conference: Measure your risk so you truly understand your needs.

... Continue Reading

Case Study: Data Walking Out the Door. Data Masking Worth It?

Posted March 17, 2017 by Cody Whelan

The CISO knew he had a data leak but he didn’t know how big. He suspected data masking was the solution but he couldn’t make a business case for the investment. Those were the problems RiskLens Risk Consultant Cody Whelan and team set out to solve for this client. (No company names here; we respect our clients’ privacy.) 

Read Cody’s notes to pick up the story:

... Continue Reading

[Video] What's the True Value of Security? Jack Jones Answers

Posted March 6, 2017 by Jeff B. Copeland

In this short video, Jack Jones tackles one of the biggest challenges for information security practitioners: Putting a value on the company assets they protect.

... Continue Reading

What You Need To Know About New York's New Cybersecurity Regulation

Posted March 2, 2017 by Paige Pilarski

The New York Department of Financial Services (DFS) made effective on March 1st, 2017 new cybersecurity regulations which will affect the banking, insurance, and financial services organizations it regulates.

... Continue Reading

How to Get Better Risk Analysis Results by Focusing on Probability vs Possibility

Posted February 27, 2017 by Cody Whelan

Trench warfare on the risk analysis front

I am ashamed to admit it, but it’s happened to me before.

... Continue Reading

Sign Up for Blog Updates