RiskLens Blog

Wall St. Journal Asks: What’s the Magic Number for Cybersecurity Budget? We Have an Answer

Posted February 8, 2019 by Jeff B. Copeland

In an article “Looking for a Magic Number”,  Kim S. Nash of the The Wall Street Journal’s WSJ Pro Cybersecurity newsletter (subscription required) writes that “everyone wants a gauge but none exists” to set a cybersecurity program budget. ... Continue Reading

The Year Ahead in Cyber Risk: 5 Predictions for 2019

Posted January 2, 2019 by Luke Bader

At the recent FAIR Conference at Carnegie Mellon University that drew a record turnout from around the world, we heard one message repeated many ways – the movement toward a rational, data-driven, model-based approach to cyber risk (and away from qualitative, guesswork approaches) is growing fast. ... Continue Reading

Most Popular RiskLens Blog Posts of 2018 Covered SEC Cyber Policy, Better Heat Maps, and More Signs of Growth in the Cyber Risk Quantification Movement

Posted December 27, 2018 by Jeff B. Copeland

RiskLens and the FAIR risk model are change agents in the world of cyber risk management and the most popular blog posts we published in 2018 are a leading indicator of where the movement is heading. Take a look at the Top 10, by page views: ... Continue Reading

2019 RSA Conference to Spotlight Cyber Risk Quantification

Posted December 12, 2018 by Jeff B. Copeland

For a leading indicator on where the cybersecurity industry is trending, scan the lineup of topics for sessions at the annual RSA Conference, coming in 2019 on Monday-Friday, March 4-8,  in San Francisco. The agenda is just out and it looks like 2019 is shaping up as year of heightened interest in a risk-based approach ... Continue Reading

Nick Sanna in ‘SecurityWeek’ on ‘Broken Communication’ Between CISOs and the Business

Posted October 31, 2018 by Jeff B. Copeland

In an article just published on the SecurityWeek website, Communication Is Broken Between CISOs and the Rest of the Business, RiskLens CEO Nick Sanna takes CISOs to task for failing to upgrade their communication skills, as senior management and boards increasingly focus on cybersecurity concerns. ... Continue Reading

Cyber Risk Communication to the Board: Getting Better All the Time

Posted October 26, 2018 by Jeff B. Copeland

In a recent survey of board members by PwC,  82% said that cyber threats had moved from an IT issue to one that would drive overall strategic change for their companies. It’s an evolutionary change in board attitudes ... Continue Reading

Wall St. Journal Says FAIR Helps Companies ‘Better Understand Cost of Cyber Threats’

Posted October 18, 2018 by Jeff B. Copeland

The Journal’s WSJ Pro Cybersecurity’s Cyber Daily newsletter took a look at Charles Schwab Corp.’s rollout of Factor Analysis of Information Risk, the FAIR model that powers the RiskLens platform – and liked what it saw. ... Continue Reading

RiskLens Board Member James Lam in WSJ: No “Silly” Tech Metrics in the Boardroom

Posted October 9, 2018 by Jeff B. Copeland

Corporate governance expert and RiskLens board member James Lam tells the Wall Street Journal’s Cyber Daily (subscription required) that CISOs and CIOs should stop reporting on cyber risk with “silly” metrics like attempted malware attacks ... Continue Reading

Beware those Claims to a “Risk-Based" Approach to Cybersecurity

Posted September 28, 2018 by Isaiah McGowan

As an industry we have a history of focusing on things around risk but not explicitly addressing risk; when we do that we are NOT doing “risk-based” anything. ... Continue Reading

Avoid Bias. Rebel Against Risk Heat Maps!

Posted September 21, 2018 by Teresa Suarez

Bias. Discrimination. Unfairness. What do all three words have in common? I’ll give you some hints, they all: Have negative connotations Exhibit prejudices Could be attributed to heat maps ... Continue Reading

Sign Up for Blog Updates

Popular Posts