09 - 11 March, 2020
| Sir Stamford Circular Quay, Sydney, NSW
Michael Collins
General Manager Information Security HESTAPre-Conference Workshops: Monday, 9th March 2020
9:00 AM Practically Understand how to Use the FAIR Methodology to Quantify Risks and Enable Effective Decision Making from Business Leaders
FAIR is an internationally recognised standard for risk quantification, adopted by more than 5,000 security and risk professionals and is a moment that is growing rapidly within the industry. This methodology provides a structured, defensible and reputable model for risk quantification that moves beyond the traditional compliance-based approach.
In this workshop, you will be guided on how to practically use the FAIR methodology within your organisation, to best quantify risks and gain executive buy in. A must attend for any risk professional who is struggling to communicate the effects of risk implications in financial terms to enable effective decision making from business leaders!
In this workshop you will learn to:
- Bridge the gap between the information risk model and the overall business plan
- Provide a model for understanding, analysing and quantifying cyber risk in financial terms
- Translating cyber risk into the language of the business
- Deliver meaningful measurements to make effective comparisons and well-informed business decisions
Conference Day Two: Wednesday, 11th March 2020
1:40 PM By Employing the FAIR Methodology to Quantify Risks, Hear How HESTA Has Engaged in a Proactive and Meaningful Technology Risk Conversation
The FAIR Methodology is the only international standard model for quantifying information security risk. At HESTA this framework has been applied to support improved operational and strategic decision making, cost benefit analysis for information security investments and standardising the cyber risk language. FAIR brings FACTS to the FUD (Fear, Uncertainty and Doubt) fight and facilitates well-informed decisions to enable effective risk management. Quite simply it answers the most important question most savvy business executives ask “How much risk do we have?” In this session:
- Understand why most executives business executives and Board members don’t ‘get’ cyber security or technology risk. (Spoiler alert: It’s not their fault)
- How simplifying and standardising risk language can quickly build understanding and support across the business
- See how FAIR practices complement existing risk management frameworks and produce greater value and alignment with business goals.
- How establishing information risk management best practices opens the door to communicating effectively with board members
Check out the incredible speaker line-up to see who will be joining Michael.
Download The Latest Agenda
