To FAIR or not? A Risk Assessment Discussion

Presented by

David Elfering

About this talk

There are several ways to get the risk assessment wrong. If the risk is considered a “thing”, and not a “quantity”, we probably got it wrong. Werner Enterprises adopted the FAIR (Factor Analysis of Information Risk) framework to perform quantitative risk assessment of information security and operational risk. Dave will walk the audience through their process of adopting FAIR, what worked, what didn’t and the lessons learned as they go through their risk management journey.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (33)
Subscribers (4422)
Lively topics for new and seasoned internal auditors, students and others are presented montlhly between September and May.