Cybersecurity Risk Management Workshop: Model, Measure, and Prioritize Your Risk in Dollars and Cents

Friday, 20 December 2019 9:00 AM - 12:00 PM EST

777, 6th Street Northwest, Washington, DC, 20001, United States

Register Now
Days
Hours
Minutes
Seconds

Registration

Sale ended

Workshop Participant Registration for Qualified Professionals Partial Approval - Free

Must be an independent director, senior executive or information security professional

Enter your discount code

  • Fee
  • Total amount

1. Select Seats

2. Review and Proceed

Friday, 20 December 2019 9:00 AM - 12:00 PM EST

WeWork 777 6th St. NW, 777, Washington, DC, 20001, United States.

Model, Measure, and Prioritize Your Risk in Dollars and Cents


Learn a common language and framework that allows information security professionals, senior executives, and independent directors to communicate and partner effectively to manage cybersecurity risk.

Workshop Overview:

This workshop is designed to introduce information security professionals, senior executives, and independent directors to the current state-of-the-art in measuring information risk in financial terms.  Participants will acquire the foundational skills used to identify, assess, and communicate risk in business terms using a common vocabulary and methodology through demonstration and hands-on exercises.

 

Learning Outcomes:

By the end of the workshop, participants will gain skills necessary to:

  • Understand risk as a function of the likelihood and impact of an event within a specified context
  • Compare the use of risk matrices (heat maps) with current value at risk (VaR) quantification models
  • Evaluate the sources of data used to quantify risk, including security logs, publicly available breach data, surveys, and calibrated expert opinion
  • Apply the Factor Analysis of Information Risk (FAIR) standard in describing and characterizing risk scenarios
  • Use stochastic simulations to measure the financial impact of information risk
  • Quantify the relative value of controls to reduce risk for a sample  scenario

 

===============================================================================

William Kasper

Foresight Resilience Strategies empowers organizations in their efforts to increase cyber resilience by helping them quantify their information risk in the same business terms they use to measure their overall effectiveness. These terms are often financial, but may also include other business and outcome measures related to mission and goals. By applying common business measures to information risk, our clients are able to better prioritize their efforts, allocate their resources, and maintain internal alignment with their primary objectives.

Contact the Organizer

Comments