Posted November 15, 2018 by Jeff B. CopelandRiskLens Co-Founder and Chief Risk Scientist Jack Jones created the FAIR model for quantitative cyber risk analysis that powers the RiskLens analytics platform and wrote Measuring and Managing Information Risk, inducted into the Cybersecurity Canon as one of the most influential books for risk professionals.
Posted November 5, 2018 by Jeff B. CopelandIf you’re considering introducing FAIR to your organization, building a quantitative risk management program, and enabling cost-effective decision making but are unsure of how to take the next (or first) step, the new eBook from FAIR creator Jack Jones An Adoption Guide for FAIR, is an action plan in seven steps.
Posted October 31, 2018 by Jeff B. CopelandIn an article just published on the SecurityWeek website, Communication Is Broken Between CISOs and the Rest of the Business, RiskLens CEO Nick Sanna takes CISOs to task for failing to upgrade their communication skills, as senior management and boards increasingly focus on cybersecurity concerns.
Posted October 26, 2018 by Jeff B. CopelandIn a recent survey of board members by PwC, 82% said that cyber threats had moved from an IT issue to one that would drive overall strategic change for their companies. It’s an evolutionary change in board attitudes
Posted October 24, 2018 by Jeff B. CopelandThe National Association of Corporate Directors (NACD) 2018 members survey on corporate governance found that nearly a quarter of the directors were dissatisfied with reporting on cybersecurity
Posted October 23, 2018 by Jeff B. CopelandListen to this webinar on demand to hear RiskLens Consultant Taylor Chester tell the story of a recent engagement with a large financial organization that started with a basic question: How to decide between two types of controls (purging data or tokenizing records) to protect against malicious exfiltration of data?
Posted October 18, 2018 by Jeff B. CopelandThe Journal’s WSJ Pro Cybersecurity’s Cyber Daily newsletter took a look at Charles Schwab Corp.’s rollout of Factor Analysis of Information Risk, the FAIR model that powers the RiskLens platform – and liked what it saw.
Posted October 9, 2018 by Jeff B. CopelandCorporate governance expert and RiskLens board member James Lam tells the Wall Street Journal’s Cyber Daily (subscription required) that CISOs and CIOs should stop reporting on cyber risk with “silly” metrics like attempted malware attacks
Posted October 5, 2018 by Jeff B. CopelandIn a new article for Homeland Security Today, Accurately Scoring Cybersecurity Threat in a Maze of Vulnerabilities, FAIR model creator Jack Jones finds a parallel in the Mad Hatter from Alice in Wonderland--whose conversation had “no sort of meaning in it, and yet it was certainly English”—with communication styles of many infosecurity teams.
Posted October 4, 2018 by Jeff B. CopelandIn a new article for FinTech Weekly, A Value-at-Risk Model for Cyber? Yes, It Exists. And Watch Out for Fakes, RiskLens CEO Nick Sanna writes that the FAIR model brings to cyber risk the same value-at-risk discipline that banks and other financial institutions apply to capital requirements for credit, operational and market risk.