Practical Applications of FAIR™ for Cyber Risk Management

Ce cours n'est pas disponible en Français (France)

Nous sommes actuellement en train de le traduire dans plus de langues.

Practical Applications of FAIR™ for Cyber Risk Management

Ce cours fait partie de Spécialisation Cyber Risk Management for Executives

Instructeurs : FAIR Institute

Inclus avec Coursera Plus

3 modules

Obtenez un aperçu d'un sujet et apprenez les principes fondamentaux.

niveau Intermédiaire

Expérience recommandée

16 heures pour terminer

3 semaines à 5 heures par semaine

Planning flexible

Apprenez à votre propre rythme

3 modules

Obtenez un aperçu d'un sujet et apprenez les principes fondamentaux.

niveau Intermédiaire

Expérience recommandée

16 heures pour terminer

3 semaines à 5 heures par semaine

Planning flexible

Apprenez à votre propre rythme

Compétences que vous acquerrez

Catégorie : Risk Management
Catégorie : Materiality
Catégorie : Cyber Risk
Catégorie : FAIR (Factor Analysis of Information Risk)
Catégorie : Risk Quantification

Détails à connaître

Certificat partageable

Ajouter à votre profil LinkedIn

Récemment mis à jour !

septembre 2024

Évaluations

27 devoirs

Enseigné en Anglais

Découvrez comment les employés des entreprises prestigieuses maîtrisent des compétences recherchées

En savoir plus sur Coursera pour les affaires

Élaborez votre expertise du sujet

Ce cours fait partie de la Spécialisation Cyber Risk Management for Executives

Lorsque vous vous inscrivez à ce cours, vous êtes également inscrit(e) à cette Spécialisation.

Apprenez de nouveaux concepts auprès d'experts du secteur
Acquérez une compréhension de base d'un sujet ou d'un outil
Développez des compétences professionnelles avec des projets pratiques
Obtenez un certificat professionnel partageable

Obtenez un certificat professionnel

Ajoutez cette qualification à votre profil LinkedIn ou à votre CV

Partagez-le sur les réseaux sociaux et dans votre évaluation de performance

Il y a 3 modules dans ce cours

This course provides a practical, hands-on approach to applying the Factor Analysis of Information Risk (FAIR) methodology in cyber risk management. Students will learn how to leverage industry research, use FAIR for decision-making, and report on the materiality of cyber incidents using FAIR-MAM (Materiality Assessment Methodology). Through real-world CISO lectures and exercises, participants will gain the skills to quantify and communicate cyber risk effectively in financial terms.

This course is tailored for senior executives and decision-makers overseeing or guiding cyber risk management within their organizations. Ideal participants will have: Leadership and Strategic Oversight: Participants should hold or aspire to hold leadership roles such as Chief Executive Officer (CEO), Chief Information Security Officer (CISO), Chief Risk Officer (CRO), or senior management positions where they are responsible for setting and implementing risk management strategies. Experience with Financial or Business Risk: Executives with experience managing financial risk or business continuity planning will find the course particularly valuable, as it covers the intersection of cyber risk and financial decision-making. Commitment to Continuous Improvement: A mindset geared toward continuous improvement in risk management practices, with a willingness to explore and adopt new methodologies, such as the FAIR model, to enhance their organization's cyber resilience. This course is designed to equip senior leaders with the practical skills and insights necessary to integrate the FAIR model into their organization’s broader risk management strategy, ensuring a more quantitative and business-aligned approach to managing cyber risks.

This module focuses on enhancing cyber risk management practices through industry research, risk quantification using FAIR, and evolving approaches to cyber risk. It covers recent trends, empirical studies, and the application of FAIR to mature security programs. The module explores how quantitative risk analysis can improve decision-making and discusses the evolution of cyber risk management, including the integration of FAIR with frameworks like NIST CSF.

Inclus

10 vidéos11 lectures10 devoirs8 sujets de discussion

10 vidéosTotal 45 minutes

Introduction to Practical Applications of FAIR™ for CRM1 minutePrévisualiser le module
CRM Research at MIT Sloan6 minutes
Forrester’s Cyber Risk Management Research4 minutes
Data Integrity 4 minutes
Missing GAAP for CRM5 minutes
FAIR Enables Business Decisions3 minutes
Effective Operational Risk Management: Quantifying Risk Reduction and Setting Risk Appetite7 minutes
FAIR Enables Security Programs to Mature4 minutes
FAIR Enables a Proactive Approach to CRM3 minutes
Adopting the FAIR Model3 minutes

11 lecturesTotal 320 minutes

Syllabus: Practical Applications of FAIR for Cyber Risk Management10 minutes
4 Areas of Cyber Risk That Boards Need to Address30 minutes
(Optional) Announcing the Forrester Wave™: Cybersecurity Risk Ratings Platforms, Q2 2024 10 minutes
Navigating the Challenges of CRM with Automation10 minutes
Cyentia IRIS (Information Risk Insights Study) 60 minutes
(Optional) Cyentia IRIS Xtreme (Information Risk Insights Study Xtreme)60 minutes
Quantitative Decision Analysis10 minutes
FAIR Risk Analysis Example30 minutes
FAIR-U Tool - Risk Analysis Training Application60 minutes
NIST-CSF 2.0 Takes a Major Step to Acknowledge Cyber Risk as a Business Risk30 minutes
FAIR Risk Management10 minutes

10 devoirsTotal 27 minutes

Graded Assessment -19 minutes
Assessment for CRM Research at MIT Sloan2 minutes
Assessment of Forrester’s Cyber Risk Management Research2 minutes
Assessment for Data Integrity2 minutes
Assessment of Missing GAAP for CRM2 minutes
Assessment for FAIR Enables Business Decisions2 minutes
Assessment of Effective Operational Risk Management: Quantifying Risk Reduction and Setting Risk Appetite2 minutes
Assessment for FAIR Enables Security Programs to Mature2 minutes
Assessment of FAIR Enables a Proactive Approach to CRM2 minutes
Assessment of Adopting the FAIR Model2 minutes

8 sujets de discussionTotal 50 minutes

Introduce Yourself5 minutes
4 Critical Areas Boards Need to Address10 minutes
Automating FAIR5 minutes
Multi-party Incidents5 minutes
Quantitative Decision Analysis10 minutes
Data Gathering5 minutes
NIST-CSF 2.0 + FAIR5 minutes
FAIR Enables Accuracy5 minutes

This module explores how the Factor Analysis of Information Risk (FAIR) framework enhances decision-making processes in cyber risk management. Participants will delve into the complexities of trade-off decisions, learn effective cyber risk quantification techniques, and discover how to optimize decision-making using FAIR. Through a combination of videos, readings, and real-world use cases from various industries, learners will gain practical insights into applying FAIR to improve business objectives and communicate more effectively with executive stakeholders.

Inclus

11 vidéos6 lectures12 devoirs1 évaluation par les pairs6 sujets de discussion

11 vidéosTotal 56 minutes

FAIR’s Primary Purpose6 minutesPrévisualiser le module
Financial Services CRM Trade-offs 4 minutes
Healthcare Use Case Example4 minutes
FAIR Helps CISOs Manage Budget 4 minutes
Risk Buy-Down with FAIR5 minutes
Cyber Insurance Use Case with FAIR6 minutes
Optimizing Decision-Making with FAIR5 minutes
Mastering FAIR for Global Technology Risk4 minutes
Credit Monitoring Use Case4 minutes
Health Insurance Business Use Case5 minutes
NASA (Mission-focused) FAIR Use Case6 minutes

6 lecturesTotal 87 minutes

Managing Cybersecurity Surprises: The Executive’s Perspective10 minutes
Understanding Cyber Risk Quantification: A Buyer’s Guide15 minutes
Putting a Price on Risk | How to Prioritize Your Cybersecurity Budget in 202412 minutes
Quantifying Risk to Reduce Premiums30 minutes
4 Steps to a Smarter Risk Heat Map10 minutes
Three Types of Risk Skeptics10 minutes

12 devoirsTotal 33 minutes

Graded Assessment 211 minutes
Assessment of FAIR'S Primary Purpose2 minutes
Assessment of Financial Service Trade-offs2 minutes
Assessment for Healthcare Use Case Example2 minutes
Assessment of FAIR Helps CISOs Manage Budget2 minutes
Assessment of Risk Buy-Down with FAIR2 minutes
Assessment for Cyber Insurance Use Case with FAIR2 minutes
Assessment for Optimizing Decision Making with FAIR2 minutes
Assessment of Mastering FAIR for Global Technology Risk2 minutes
Assessment of Credit Monitoring Use Case2 minutes
Assessment of Health Insurance Business Use Case2 minutes
Assessment of NASA (Mission-focused) FAIR Use Case2 minutes

1 évaluation par les pairsTotal 30 minutes

Peer Review30 minutes

6 sujets de discussionTotal 35 minutes

Managing Cybersecurity Surprises5 minutes
Cybersecurity Budgets5 minutes
Cyber Insurance Terms5 minutes
Risk Quantification Improves Debates5 minutes
Risk Skeptic10 minutes
Business Value Use Cases5 minutes

This module explores the critical concept of materiality in the context of cyber incidents and its implications for reporting to the Securities and Exchange Commission (SEC). Participants will gain a comprehensive understanding of how to define, assess, and communicate the materiality of cyber events. The module covers the SEC's guidelines, the FAIR-MAM (Factor Analysis of Information Risk - Materiality Assessment Methodology) framework, and practical use cases. Through expert insights, case studies, and interactive discussions, learners will develop the skills necessary to accurately determine the financial impact of cyber incidents and ensure compliance with SEC regulations.

Inclus

10 vidéos7 lectures5 devoirs1 évaluation par les pairs2 sujets de discussion

10 vidéosTotal 40 minutes

SEC Materiality Reporting2 minutesPrévisualiser le module
What is Materiality?3 minutes
HowMaterialIsThatHack.org Overview2 minutes
Cyber-Hack Disclosure1 minute
Introduction to FAIR-MAM6 minutes
Forrester’s Analysis of FAIR-MAM4 minutes
Safe Security Automates FAIR-MAM5 minutes
The Uber Cyber Breach: CISO’s Personal Liability Story6 minutes
FAIR-MAM Use Case Examples4 minutes
FAIR-MAM Built for SEC Rulings4 minutes

7 lecturesTotal 200 minutes

U.S. SEC’s Statement for Reporting Materiality of a Cyber Incident30 minutes
How Material is that Hack10 minutes
Cyber-Hack Disclosure Reference Doc10 minutes
FAIR-MAM Whitepaper30 minutes
Are You Ready to Comply with the SEC “Material’ Cyber Risk Rules30 minutes
CISOs and Personal Liability | How to Not Be Singled Out by the SEC (Optional)30 minutes
(Optional) How to Achieve SEC Compliance with Real-time and Automated FAIR™ Solution60 minutes

5 devoirsTotal 12 minutes

Graded Assessment - 34 minutes
Assessment of What is Materility2 minutes
Assessment of Cyber-Hack Disclosure2 minutes
Assessment of Forrester's Analysis of FAIR-MAM2 minutes
Assessment of The Uber Cyber Breach: CISO’s Personal Liability StoryUntitled2 minutes

1 évaluation par les pairsTotal 30 minutes

Peer Review30 minutes

2 sujets de discussionTotal 15 minutes

Reporting Materiality 5 minutes
SEC Changing Companies' Compliance Strategies10 minutes

Instructeurs

FAIR Institute

4 Cours219 apprenants

Offert par

FAIR Institute

Recommandé si vous êtes intéressé(e) par Business Strategy

FAIR Institute
Advancing FAIR™ within Risk Management Programs
Cours
FAIR Institute
Executive Communication and Governance
Cours
FAIR Institute
Foundations of Cyber Risk Management and FAIR™
Cours
LearnKartS
Deployment
Cours

Pour quelles raisons les étudiants sur Coursera nous choisissent-ils pour leur carrière ?

Felipe M.

Étudiant(e) depuis 2018

’Pouvoir suivre des cours à mon rythme à été une expérience extraordinaire. Je peux apprendre chaque fois que mon emploi du temps me le permet et en fonction de mon humeur.’

Jennifer J.

Étudiant(e) depuis 2020

’J'ai directement appliqué les concepts et les compétences que j'ai appris de mes cours à un nouveau projet passionnant au travail.’

Larry W.

Étudiant(e) depuis 2021

’Lorsque j'ai besoin de cours sur des sujets que mon université ne propose pas, Coursera est l'un des meilleurs endroits où se rendre.’

Chaitanya A.

’Apprendre, ce n'est pas seulement s'améliorer dans son travail : c'est bien plus que cela. Coursera me permet d'apprendre sans limites.’

Ouvrez de nouvelles portes avec Coursera Plus

Accès illimité à plus de 7 000 cours de renommée internationale, à des projets pratiques et à des programmes de certificats reconnus sur le marché du travail, tous inclus dans votre abonnement

Faites progresser votre carrière avec un diplôme en ligne

Obtenez un diplôme auprès d’universités de renommée mondiale - 100 % en ligne

Découvrir les diplômes

Rejoignez plus de 3 400 entreprises mondiales qui ont choisi Coursera pour les affaires

Améliorez les compétences de vos employés pour exceller dans l’économie numérique

Foire Aux Questions

Access to lectures and assignments depends on your type of enrollment. If you take a course in audit mode, you will be able to see most course materials for free. To access graded assignments and to earn a Certificate, you will need to purchase the Certificate experience, during or after your audit. If you don't see the audit option:

The course may not offer an audit option. You can try a Free Trial instead, or apply for Financial Aid.
The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile. If you only want to read and view the course content, you can audit the course for free.

If you subscribed, you get a 7-day free trial during which you can cancel at no penalty. After that, we don’t give refunds, but you can cancel your subscription at any time. See our full refund policy.