Woot, my Peer2Peer proposal was accepted at RSA 2019. Peer2Peer sessions are not presentations, but rather facilitated discussions among a small group of participants. I think these are a great way to spark interesting discussion in a friendly atmosphere. I always learn just as much from participants as they learn from me.

Session details:

Getting Started with a Quantitative Cyber-Risk Program

Join a discussion on implementing a quantitative cyber-risk program, such as Factor Analysis of Information Risk (FAIR), at your company. This discussion will address common questions, such as, where to get data, obtaining management support and the nuts and bolts of performing an analysis.

Learning Objectives:

1. Discuss the pros and cons of different methodologies (e.g. Factor Analysis of Information Risk)

2. Share key benefits and challenges of implementing a quantitative cyber risk program

3. Learn about key skills needed for risk analysts to perform quantitative analysis

Thursday, Mar 07 | 10:40 A.M. - 11:30 A.M. | Moscone South 305

I hope to see you there!