Cyber Risk Modelling with FAIR

Understand how to consistently and logically analyse cyber risk in financial terms using the international standard FAIR model and straightforward 4-step analysis process

Organisations are increasingly transitioning to risk-based approaches to information security and operational risk management, as compliance to regulations alone provide only a minimum layer of security and fail to adequately protect them.

Factor Analysis of Information Risk (FAIRTM) is the only international standard quantitative model for information security and operational risk.

  • FAIR provides a model for understanding, analysing and quantifying cyber risk and operational risk in financial terms.

  • It is unlike risk assessment frameworks that focus their output on qualitative colour charts or numerical weighted scales.

  • It builds a foundation for developing a robust approach to information risk management.

Join us for this four day online course led by David Musselwhite, one of the world’s most knowledgeable and experienced FAIR practitioners. 

Technical content will be compressed into 60-minute sessions to keep the presentations at the most engaging level and provide opportunities for discussion between attendees and the course tutor. 
 

Thumbnail
What will you learn?
  • How to consistently and logically analyse cyber risk in financial terms using the international standard FAIR model and straightforward 4-step analysis process

  • How to drive cost-effective decision-making in addressing cyber and operational risk

  • The flaws and shortcomings of risk analysis based on “high/medium/low” ratings, subjective 1-5 scales, etc

  • How to clearly define, measure, and communicate about cyber risk loss events and their probable frequencies and magnitudes while acknowledging uncertainty about the future

  • How to apply the basic concepts of range estimates, calibrated estimation, and Monte Carlo simulation to produce defensible forecasts of future loss from cyber events

  • How to justify cybersecurity control enhancements, budget allocation, and project prioritisation based on accurate measurement of risk

  • How to apply FAIR to analysis of realistic case studies using the RiskLens platform, built by the authors of FAIR

Who should attend?

Relevant departments may include but are not limited to: 

  • Cyber risk 

  • Information security 

  • Enterprise risk management 

  • Risk management 

Online training

Our live, virtual training courses have been designed to engage and inspire you. Much more than a webinar, our approach includes:

  • Technical content compressed into 60-minute interactive sessions and spread out over two, three or four days

  • Facilitated collaboration including Q&A, interactive polling and group workshops

  • Live interaction with subject matter experts – get your questions answered in real time

  • Receive comprehensive course materials and supporting content from Risk.net to reinforce your learning

  • Stay connected with other learners and extend your network by joining our dedicated LinkedIn group for course participants

CPD / CPE Accreditation

CPD_Logo

CPD Accreditation

This course is CPD (Continued Professional Development) accredited and will allow you to earn up to 8 credits. One credit is awarded for every hour of learning at the event.

CPE Member

CPE Accreditation

This course is CPE (Continuing Professional Education) accredited and will allow you to earn up to 8 credits. One credit is awarded for every hour of learning at the event in accordance with the standards of the National Registry of CPE Sponsors.

Not the course for you?

Risk Training offers a great selection of courses in finance, risk management, regulation and derivatives across North America, Asia and Europe for you to choose from.

View all courses