After helping many clients roll out quantitative cyber risk management, RiskLens Risk Consultant Brad Agee created a policy document covering the guidelines and requirements that successful programs have instituted to smoothly operate a RiskLens/FAIR™ program.
With input from RiskLens Chief Risk Scientist and FAIR model creator Jack Jones, Brad is now sharing what he’s learned in two downloadable pdfs, one version an outline of the elements of the policy, the other the same outline fleshed out with suggested example content – download and customize for your organization.
Ideally, you would implement this policy and have the guidelines in place before you launch the RiskLens-FAIR Enterprise Enterprise Model (RF-EM), which includes configuring the RiskLens platform and receiving training and program set-up from RiskLens services experts.
The quantitative risk management policy document covers:
Process questions the policy document can help you answer include:
Download the model risk management policy documents (PDFs):
Risk Measurement and Reporting Policy Outline
Risk Measurement and Reporting Policy Example with Suggested Content
Again, the intention is to give you a document you can customize. Let us know how it goes – Contact us with your comments or questions on the policy document
RiskLens is leading a revolution in the way cyber risk is assessed, measured and managed by bringing to market a Software as a Service solution that makes cyber risk quantification a reality.We help organizations translate cyber risk from the technical into the economic language of business.
Schedule a Demo