RiskLens Blog

Cyber Risk Communication to the Board: Getting Better All the Time

Posted October 26, 2018 by Jeff B. Copeland

In a recent survey of board members by PwC,  82% said that cyber threats had moved from an IT issue to one that would drive overall strategic change for their companies. It’s an evolutionary change in board attitudes ... Continue Reading

Join Jack Jones, Nick Sanna for NACD Forum ‘Demand More in Cyber Risk Reporting’

Posted October 24, 2018 by Jeff B. Copeland

The National Association of Corporate Directors (NACD) 2018 members survey on corporate governance found that nearly a quarter of the directors were dissatisfied with reporting on cybersecurity ... Continue Reading

Case Study Webinar: RiskLens Settles a Decision on Controls Investment

Posted October 23, 2018 by Jeff B. Copeland

Listen to this webinar on demand to hear RiskLens Consultant Taylor Chester tell the story of a recent engagement with a large financial organization that started with a basic question: How to decide between two types of controls (purging data or tokenizing records) to protect against malicious exfiltration of data? ... Continue Reading

Wall St. Journal Says FAIR Helps Companies ‘Better Understand Cost of Cyber Threats’

Posted October 18, 2018 by Jeff B. Copeland

The Journal’s WSJ Pro Cybersecurity’s Cyber Daily newsletter took a look at Charles Schwab Corp.’s rollout of Factor Analysis of Information Risk, the FAIR model that powers the RiskLens platform – and liked what it saw. ... Continue Reading

Diary of a 4-day RiskLens Pilot

Posted October 17, 2018 by Rebecca Merritt

A RiskLens pilot is a test drive, a mini-implementation of the RiskLens platform in your environment with your data. Coming into the pilot, the main focus is to complete a risk analysis using real numbers from the company ... Continue Reading

How to Set a (Meaningful) Cyber Risk Appetite with RiskLens

Posted October 16, 2018 by Rachel Slabotsky

Establishing a well-defined risk appetite has long been a moving target in cyber risk management. The conventional red-amber-green approach to cyber risk has influenced the treatment of risk appetite and led to some common pitfalls that become obvious when RiskLens consultants apply the principles of the FAIR model. Here are some of the problem areas we see:  ... Continue Reading

RiskLens Board Member James Lam in WSJ: No “Silly” Tech Metrics in the Boardroom

Posted October 9, 2018 by Jeff B. Copeland

Corporate governance expert and RiskLens board member James Lam tells the Wall Street Journal’s Cyber Daily (subscription required) that CISOs and CIOs should stop reporting on cyber risk with “silly” metrics like attempted malware attacks ... Continue Reading

Taking the Guesswork Out of Exception Mitigation for IT Audit

Posted October 8, 2018 by Taylor Maze

There are few things in life that are less fun than exception mitigation due to audit findings. In fact, I have compiled a list: root canals, a weekend trip with your mother in law (here’s hoping she doesn’t read my blogs), and 4:30 p.m. Friday meetings. ... Continue Reading

Jack Jones in ‘Homeland Security Today’: Don’t Sound Like the Mad Hatter of Vulnerabilities

Posted October 5, 2018 by Jeff B. Copeland

In a new article for Homeland Security Today, Accurately Scoring Cybersecurity Threat in a Maze of Vulnerabilities, FAIR model creator Jack Jones finds a parallel in the Mad Hatter from Alice in Wonderland--whose conversation had “no sort of meaning in it, and yet it was certainly English”—with communication styles of many infosecurity teams.  ... Continue Reading

Nick Sanna in FinTech Weekly: FAIR Is the Real Cyber VaR Model Banks Need

Posted October 4, 2018 by Jeff B. Copeland

In a new article for FinTech Weekly, A Value-at-Risk Model for Cyber? Yes, It Exists. And Watch Out for Fakes, RiskLens CEO Nick Sanna writes that the FAIR model brings to cyber risk the same value-at-risk discipline that banks and other financial institutions apply to capital requirements for credit, operational and market risk. ... Continue Reading

Sign Up for Blog Updates

Popular Posts