Risk

2/15/2018
01:00 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Fair Institute To Hold 3rd Annual Fair Conference (Faircon18) At Carnegie Mellon University, Oct. 14 -18, Focused On Advancing Cyber, Operational Risk Management

Carnegie Mellon University's Software Engineering Institute (SEI) and the Heinz College of Information Systems and Public Policy will host the industry's-leading conference focused on managing cyber and operational risk from a business perspective.

RESTON, VA and PITTSBURGH, PA, Feb. 12, 2018—The FAIR Institute, an expert, nonprofit organization led by information risk officers, CISOs and business executives to develop standard information and operational risk management practices, today announced it will hold its flagship event, the 3rd annual FAIR Conference (FAIRCON18), Oct. 14 – 18, on the campus of Carnegie Mellon University in Pittsburgh. Oct.

The FAIR Institute is helping organizations move from a compliance-based approach to cybersecurity toward a business-aligned, risk-driven methodology, leveraging the Factor Analysis of Information Risk (FAIR) standard, the internationally recognized standard for modeling and quantifying information and operational risk. 

FAIRCon18 will be hosted by Carnegie Mellon’s Heinz College and Software Engineering Institute and will bring together global leaders in information technology, cybersecurity, and IT management. The CERT cybersecurity Division of the SEI is the world’s leading trusted authority dedicated to improving the security and resilience of computer systems and networks, and highly regarded as a national asset in the field of information security. Heinz College offers the world’s number one ranked graduate program in Information Security, Policy, and Management, as well as groundbreaking executive education programs for CISOs and Chief Risk Officers.

Building on the success of the first two FAIR Conferences and a surge in FAIR Institute membership, now approaching 3,000 of the world’s leading security, technology and risk leaders, FAIRCON18 will officially expand in format to a multiple day event.

The event will feature in-depth training seminars, insightful presentations from industry leaders, candid executive and practitioner-led discussions and keynotes aimed at driving awareness, knowledge and the development of operational blueprints for building quantitative risk management programs. 

FAIRCON18 will attract C-suite officers and practitioners responsible for information and operational risk management decisions. The event will unite leaders in information and operational risk management to explore FAIR best practices that produce greater value and alignment with business goals. Interested parties are encouraged to register for the event as soon as possible as space is limited. 

To register visit: http://www.fairinstitute.org/faircon18

FAIRCON18 attendees will benefit by:

  • gaining strategic insight on information risk management from industry leaders;
  • learning about real-world implementations from FAIR Champions;
  • understanding how the FAIR standard is breaking down entrenched communication barriers between IT and the business, enabling cost-effective decision-making;
  • networking with industry peers; and
  • availing themselves of optional, in-depth FAIR training courses

About Carnegie Mellon University’s Heinz College

The Heinz College of Information Systems and Public Policy is home to two internationally recognized graduate-level institutions at Carnegie Mellon University: the School of Information Systems and Management and the School of Public Policy and Management. This unique colocation combined with its expertise in analytics set Heinz College apart in the areas of cybersecurity, health care, the future of work, smart cities, and arts & entertainment. In 2016, INFORMS named Heinz College the #1 academic program for Analytics Education. For more information, please visit www.heinz.cmu.edu.

About the FAIR Institute

The FAIR Institute is an expert, non-profit organization led by information risk officers, CISOs and business executives, created to develop and share standard information risk management practices based on FAIR. Factor Analysis of Information Risk (FAIR) is the only international standard analytics model for information security and operational risk. FAIR helps organizations quantify and manage risk from the business perspective and enables cost-effective decision-making. To learn more and get involved visit: www.fairinstitute.org.

###

Media Contact:

Stephen Ward

VP, Marketing

703.994.9349

[email protected]

 

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Why CISOs Need a Security Reality Check
Joel Fulton, Chief Information Security Officer for Splunk,  6/13/2018
Cisco Talos Summit: Network Defenders Not Serious Enough About Attacks
Curtis Franklin Jr., Senior Editor at Dark Reading,  6/13/2018
Meet 'Bro': The Best-Kept Secret of Network Security
Greg Bell, CEO, Corelight,  6/14/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-12294
PUBLISHED: 2018-06-19
WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.2, is vulnerable to a use after free for a WebCore::TextureMapperLayer object.
CVE-2018-12519
PUBLISHED: 2018-06-19
An issue was discovered in ShopNx through 2017-11-17. The vulnerability allows a remote attacker to upload any malicious file to a Node.js application. An attacker can upload a malicious HTML file that contains a JavaScript payload to steal a user's credentials.
CVE-2018-12588
PUBLISHED: 2018-06-19
Cross-site scripting (XSS) vulnerability in templates/frontend/pages/searchResults.tpl in Public Knowledge Project (PKP) Open Monograph Press (OMP) v1.2.0 through 3.1.1-1 before 3.1.1-2 allows remote attackers to inject arbitrary web script or HTML via the catalog.noTitlesSearch parameter (aka the S...
CVE-2018-10811
PUBLISHED: 2018-06-19
strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable.
CVE-2018-10945
PUBLISHED: 2018-06-19
The mg_handle_cgi function in mongoose.c in Mongoose 6.11 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash, or NULL pointer dereference) via an HTTP request, related to the mbuf_insert function.