Video: 5 P’s to Start Quantitative Risk Management - #2 People

August 30, 2022  Jeff B. Copeland

At RiskLens, we call our playbook for launching a cyber risk quantification (CRQ) program the 5 P’s for these phases:

  1. Purpose
  2. People
  3. Platform
  4. Process
  5. Performance 

In this three-minute video, RiskLens Regional Sales Director Joe Vinck explains #2 People – making sure that staff “have the right level of education, awareness and orientation to manage the cultural change and organizational buy-in” required for onboarding CRQ, once #1 Purpose is defined. 


Each of the organization’s stakeholder groups follow a focused program:

>>Risk analysts are trained in Factor Analysis of Information Risk (FAIR™), the standard for risk quantification that’s the basis of our analysis work, and on how to deploy the RiskLens SaaS platform at scale. Learn more about FAIR training: The 4 Essential FAIR Concepts to Master

>>Subject matter experts who will supply data and insights for the analysis, receive a lighter version of FAIR and platform training on need-to-know basis.

>>Senior leadership and board members, the audience for the reporting, attend an executive orientation session, with an emphasis on understanding and trusting quantitative analytics for decision support.

New clients are in good hands for implementing the 5 P's – the RiskLens professional services team is the most experienced in the world at FAIR program launch.  

Check out these RiskLens packages for establishing risk-based programs with FAIR: 

The Enterprise SaaS subscription to the RiskLens platform supports fast, risk-informed decisions at any level of the enterprise, from planning a new digital initiative down to day-to-day audit findings.

RiskLens Pro is an easy and affordable managed service that helps organizations quickly define, assess, and communicate cyber risks in financial terms, with no in-house expertise or significant time commitment necessary.