Stay up to date with the latest news and press releases on RiskLens, the only cyber risk management software purpose-built on FAIR. FAIR is the only international standard Value at Risk (VaR) model for cyber security and operational risk.

RiskLens - January 24, 2019 

TUV Rheinland OpenSky Announces Launch of Cyber Risk Quantification as a Service in Partnership with RiskLens

TUV Rheinland OpenSky, a wholly owned subsidiary of TÜV Rheinland, and RiskLens, the leading provider of cyber risk quantification (CRQ) software and cyber risk management solutions, announced today that they are partnering to bring Cyber Risk Quantification as a Service to organizations across all sectors.

Read More

RiskLens - October 9, 2018

RiskLens Board Member James Lam in Wall Street Journal: No “Silly” Tech Metrics in the Boardroom

Corporate governance expert and RiskLens board member James Lam tells the Wall Street Journal’s Cyber Daily (subscription required) that CISOs and CIOs should stop reporting on cyber risk with “silly” metrics like attempted malware attacks, when boards of directors need to weigh cybersecurity investment against other corporate priorities, based on financial measurements.

Read More


RiskLens - October 5, 2018

Jack Jones in ‘Homeland Security Today’: Don’t Sound Like the Mad Hatter of Vulnerabilities

In a new article for Homeland Security Today, Accurately Scoring Cybersecurity Threat in a Maze of Vulnerabilities, FAIR model creator Jack Jones finds a parallel in the Mad Hatter from Alice in Wonderland--whose conversation had “no sort of meaning in it, and yet it was certainly English”—with communication styles of many infosecurity teams. 

Read More


RiskLens - October 3, 2018

Nick Sanna in FinTech Weekly: FAIR Is the Real Cyber VaR Model Banks Need

In a new article for FinTech Weekly, A Value-at-Risk Model for Cyber? Yes, It Exists. And Watch Out for Fakes, RiskLens CEO Nick Sanna writes that the FAIR model brings to cyber risk the same value-at-risk discipline that banks and other financial institutions apply to capital requirements for credit, operational and market risk.

Read More


RiskLens - October 3, 2018

RiskLens Awarded Most Innovative Risk Management Solution by Cyber Defense Magazine

RiskLens, the pioneer in, and leading provider of, cyber risk quantification solutions, today announced it has been named the Most Innovative Risk Management solution by Cyber Defense Magazine, the industry’s leading electronic information security magazine. 

Read More


RiskLens - October 3, 2018

RiskLens Named to DC Inno's '50 on Fire' List

DC Inno, the newsletter and website publisher and events organizer for the Washington, DC/Maryland/Virginia tech scene, today named RiskLens to its "50 on Fire" list for 2018, "the people and companies that are truly heating up the DMV’s ecosystem."

Read More


RiskLens - September 25, 2018

How to Assess Human Error in Cyber Risk: Chad Weinman in ‘ThreatPost’

What’s the risk from spear-phishing, accidental emailing of customer data or other results of the vulnerabilities caused by humans on your systems? Cybersecurity professionals are often stumped on how to answer but RiskLens Vice President of Customer Success Chad Weinman, writing in a new article on ThreatPost, Assessing the Human Element in Cyber Risk Analysis, has some solid advice: Look past the humans and focus on the impacts farther down the attack chain.

Read More


RiskLens - September 18, 2018

RiskLens CEO in ‘SecurityWeek’ on Tougher Job Requirements for CISOs

RiskLens CEO Nick Sanna has a bad news/good news message for CISOs, just published on the SecurityWeek website: Expectations for CISOs Have Changed.  The communication techniques many IT security executives have relied on – from FUD (Fear, Uncertainty and Doubt) to heat maps to “maturity” checklists to “security scorecards” based on counts of vulnerabilities or patches – just won’t cut it anymore.

Read More


RiskLens - September 5, 2018

Jack Jones’ Cyber Advice for the Feds in Homeland Security Today: Listen to the Cheshire Cat

In a new article on Homeland Security Today, HSTRisk: Finding the Right Path with the Cyber Risk Management Cheshire Cat, Jack Jones critiques the government’s push for better cyber risk management of federal networks and critical infrastructure, kicked off by last year’s presidential Executive Order, with the advice of the mysterious smiling cat to Alice in Wonderland: Before you go, figure out where you’re going.  Jack is the EVP of RiskLens and the creator of the FAIR model for cyber risk quantification.

Read More


RiskLens - August 28, 2018

How to Be a Business-Aligned CISO: Nick Sanna’s Tips in ‘SecurityWeek’

In a new article on the SecurityWeek website, Cyber Risk = Business Risk. Time for the Business-Aligned CISO, RiskLens CEO Nick Sanna writes that this era of heightened awareness of cybersecurity should be a great opportunity for CISOs to command the attention of top brass but “it’s also a challenge that many infosec pros won’t be prepared for.”

Read More


RiskLens - April 11, 2018

RiskLens Appoints James Lam, World Renowned Expert on Enterprise Risk Management, to Board of Directors

RiskLens, the leading provider of cyber risk quantification solutions, today announced that it has appointed James Lam, one of the world’s foremost experts on enterprise risk management (ERM), as an Independent Director to its Board of Directors. James joins RiskLens to advise on the company’s strategic direction and go-to-market activities as it builds on breakout growth experienced in the 2017 calendar year, and further expands its dominance as the cyber risk quantification partner of choice for large enterprises and government organizations. 

Read More


RiskLens - March 27, 2018

RSA® to Resell RiskLens' Flagship Application as RSA Archer Cyber Risk Quantification® 

RiskLens, the leading provider of cyber risk quantification solutions, today announced that the company’s Cyber Risk Quantification (CRQ) application will be re-sold as the RSA Archer Cyber Risk Quantification® solution. Under the terms of the agreement, RiskLens will license its application to RSA, who will market and sell the solution under its own brand.  The Factor Analysis of Information Risk (FAIR) standard has emerged as the leading cyber risk quantification model for cyber and operational risk and has been selected as a global standard by The Open Group. As the only technology purpose-built around FAIR, RiskLens stands alone in market and was selected by RSA after an extensive review of the solution’s capabilities. RiskLens will continue to market and sell this offering and the broader RiskLens Platform to clients around the world. 

Read More


RiskLens - February 20, 2018

RiskLens Announces Significant Market Momentum Fueled by Surge in Adoption Across Fortune 500

RiskLens, the leading provider of cyber risk quantification solutions, today announced the company has experienced significant market traction and strong financial results in the 2017 calendar year, fueled by a surge in adoption across the Fortune 500. Dozens of leading organizations, including 10 for the Fortune 100, now deploy the company's solution. The company also announced the appointment of two industry veterans to its management team: Jesse Sun as Vice President of Sales, and Stephen Ward as Vice President of Marketing.

Read more


RiskLens - January 3, 2018

RiskLens, (ISC)2 Team to Offer $500 Discount for Online FAIR Analysis Fundamentals Course

RiskLens, the leading provider of cyber risk quantification solutions, today announced it has teamed with (ISC)², a non-profit organization specializing in information security education and certifications, to offer (ISC)2 members a special $500 discount on the FAIR Analysis Fundamentals course taken online January 1, 2018, through June 30, 2018. 

Read more


SDX Central - November 9, 2017

What's the Dollar Amount of Your Cyber Risk? There's Software for That

Security breaches and malware can cost companies millions. Just ask shipping giant Maersk, which reported that the NotPetya ransomware attack in June cost its business between $200 million and $300 million.

Read more


GARP Online - September 19, 2017

Signs of Acceptance and Maturity for the FAIR Model

Factor Analysis of Information Risk (FAIR), a framework for quantifying and managing information and cybersecurity risks, is attracting interest and gaining support not just from users in the private sector, but also from regulators, Jack Jones reports.

Read more


BUSINESS INSIDER - July 11, 2017 

RiskLens Secures $5 Million Series A Equity Investment

RiskLens, the leading provider of cyber risk quantification solutions, today announced it has closed a $5M Series A round of equity investment led by Osage Venture Partners with additional proceeds from Paladin Capital Group, Dell Technologies Capital and Kick-Start.

Read more


MARKETWIRED - June 14, 2017 

RiskLens Awarded Best Risk Analytics Tool at 2017 OpRisk Awards Dinner In London

RESTON, VA--(Marketwired - June 14, 2017)RiskLens, the leading provider of cyber risk quantification solutions, announced it has been judged Best Risk Analytics Tool at the 2017 OpRisk Awards dinner held last night at the Marriott Grosvenor Square hotel in London.

Read more


ITSP MAGAZINE - January 26, 2017

A Dialogue with Jack Jones, Co-Founder and EVP Research and Development, RiskLens

ITSPMagazine: How and why did you enter the field of infosec?

Jones: In the 80s I was a sysadmin for a mid-sized bank. A volunteer was sought to head up a project regarding desktop viruses, and I thought this sounded interesting so I volunteered. I like to create things and solve challenging problems. This seemed important, impactful, and satisfied my desire to do something off the beaten path and explore.

Read more

SC MEDIA - January 17, 2017

How Much Cyberinsurance Is Enough?

Shearer says (ISC)2 recently entered into a partnership with RiskLens, which has developed a cloud-based enterprise risk management product that helps companies determine specific values to a security breach. The product combines modern analytics with the Factor Analysis of Information Risk (FAIR) methodology developed more than a decade ago by RiskLens co-founder Jack Jones.

Read more

DARKREADING - January 3, 2017

Cyberrisk Through A Business Lens

As with any other aspect of operating a business, effectively managing cyberrisk is predicated on making well-informed decisions and then executing reliably within the context of those decisions. With that in mind, boards and senior executives must ensure that their organizations accomplish both.

Read more

BUSINESS WIRE - November 8, 2016

RiskLens Names Dave Sutor CFO, Tiziana Barrow VP, Marketing To Accelerate Growth, Awareness

Reston, Va., Nov. 7, 2016 /Business Wire/ -RiskLens, Inc., the leading provider of purpose-built Cyber Risk Quantification solutions, today announced the appointments of Dave Sutor to Chief Financial Officer, and Tiziana Barrow to Vice President, Marketing, effective immediately. 

Read more


BUSINESS WIRE - October 26, 2016

(ISC)2, RiskLens Announce Business Partnership to Help Members Demonstrate Cybersecurity ROI

Clearwater Fla. and Spokane Wash., Oct. 26, 2016 /Business Wire/ - (ISC)²®and RiskLens, Inc. today announced a business partnership to empower CISOs and cybersecurity professionals to assess the financial impact of their security initiatives and facilitate smarter board-level guidance and decision making.

Read more


THE NEXUS - July 11, 2016

Risk Acceptance At The Executive Level

Many organizations have a process in place whereby executives are authorized to accept risk (i.e., make decisions that expose the organization to unusual amounts of risk).

Read more


RISK.NET - July 4, 2016

Best Cyber Risk/Security Product: RiskLens 

How can you put a figure on cyber risk? Too many businesses struggle to translate what, on the face of it, is an IT problem into a measure of financial risk that can be understood by non-technical executives.

Read more


PRWEB - June 27, 2016

Evolver and RiskLens Partner To Provide Quantified Risk Analysis 

Reston, Va., Evolver, Inc., a technology provider for Federal, Commercial and Legal clients announced today a partnership with RiskLens, a provider of cyber risk software, which will play a major role in Evolver’s revolutionary Cyber Risk Ecosystem. This unique cybersecurity approach helps their clients plan, monitor and execute cyber programs based on a financially quantified approach. 

Read more


BUSINESS WIRE - June 16, 2016

RiskLens Wins Best Cyber Risk Product At 2016 Operational Risk Awards

Reston, Va., June 16, 2016 /Business Wire/ – RiskLens, the premier provider of cyber risk management software, today announced it was awarded Best Cyber Risk/Security Product at the 2016 Operational Risk Awards dinner this week at the Victoria Plaza Hotel in London. 

Read more


BUSINESS WIRE - April 5, 2016

Measuring and Managing Information Risk: A FAIR Approach Inducted into the Cybersecurity Canon at Palo Alto Networks 2016 Ignite Conference

Las Vegas, Nev., April 5, 2016 /Business Wire/ – Measuring and Managing Information Risk: A FAIR Approach, co-authored by Dr. Jack Freund and Jack Jones, today announced it was inducted into the 2016 Cybersecurity Canon, recognizing authors and works of literature that accurately depict the history, milestones, and culture of the modern cybersecurity industry.

Read more


PROPERTY CASUALTY - January 19, 2016
Here come the accountants - the codification of cyber risk

Headline writers and producers of “Shark Tank” want us to believe that all new products and ideas come from rising stars and Silicon Valley grads. Read about how the insurance industry and the accountants are driving the codification of cyber risk in quantifiable terms.


MARKETWIRED - November 17, 2015
CybeRisk(TM) Announces Go-To-Market Partnership With RiskLens to Launch Complementary Advisory Services

Finjan Holdings, Inc. (NASDAQ: FNJN) a cybersecurity company, today announced that its wholly owned subsidiary, CybeRisk Security Solutions, LTD., a cybersecurity risk advisory services business, ("CybeRisk") has signed a partnership with RiskLens, the premier provider of cyber risk management software. 



CERT PODCAST - November 9, 2015
How Cyber Insurance Is Driving Risk and Technology Management

Listen to this podcast featuring two RiskLens partners - Evolver and CERT/Carnegie Mellon University -, as they reflect on how the cyber insurance market is driving risk and technology management. RiskLens is mentioned as one of the emerging companies that are helping organizations measure and manage technology risk. 

Read more


PR NEWSWIRE - October 13, 2015
RiskLens Releases Next-Generation Third-Party Risk Assessment Solution

Up to 10 times faster assessments of third party risk management practices  than customary checklists. RiskLens, the premier provider of cyber risk management software is proud to announce the release of 'Cyber Risk Third-Party', a next-generation risk assessment solution for organizations that aim to effectively assess the risk management practices of third parties such as vendors, partners, cyber insurance buyers or acquisition targets. 

Learn More


LINKEDIN PULSE - Sep 22, 2015 
Using Open FAIR to Quantify Cybersecurity Loss Exposure

Should business executives treat cybersecurity differently than other risk centers? It must be different, otherwise why it is so hard to answer even simple questions about cybersecurity spending such as what should we spend and what should we spend it on? But, why is this so? This is not rocket science, is it? No, it’s not, but not in the way you are thinking.

Read the full article


What Government Organizations Need to Do to Ensure the Success of their Nascent Cyber Risk Management Initiatives

The Commonwealth of Virginia is taking the lead in mandating a risk-based approach to cybersecurity. Achieving the goals listed in the directive, particularly risk prioritization and developing a risk-based approach to security and mitigation plans, will require the implementation of key risk management initiatives, such as: choosing a standard Value-at-Risk model for manging information risk; moving beyond qualitative assessments of risk; adopting quantitative risk analysis to enable effective prioritization. 

Read the full idea article


RiskLens Co-Founder Jack Jones Addresses 2015 Regional Bank Technology Risk Forum

Jack Jones was invited to address a forum of leading regional banks to share insights on new innovations in risk analytics to better identify emerging technology risk and make better informed decisions. Regional banks participating in the event include First Niagara (a current RiskLens customer), BMO Financial Group, Regions Financial Corporation, Comerica Bank, Fifth Third Bank, Key Bank, Synovus, Bank of Montreal, PNC and First Tennessee Bank. 

Read the full release


5 Questions Boards and the C-Suite Should Be Asking About Cyber Risk

There is growing concern that corporate boards and senior executives are not prepared to govern their organization’s exposure to cyberrisk. While true to some degree, executive management can learn to identify and focus on the strategic and systemic sources of cyberrisk, without becoming distracted by complex technology-related symptoms, by understanding the organization’s ability to make well-informed decisions about cyberrisk and reliably execute those decisions.

Read the full article


PR NEWSWIRE - July 7, 2015
CXOWARE Becomes RiskLens, Aligning With Mission To Help Organizations Manage Cyber Risk From The Business Perspective

CXOWARE, the premier provider of cyber risk management software, re-launched today as RiskLens, better reflecting the company’s mission to empower large enterprises and government organizations to manage cyber security risk from the business perspective.

Learn More