Open FAIR Complements Risk Management Programs
Open Factor Analysis of Information Risk (Open FAIR) from the Open Group is the industry standard for quantitative risk assessment, and the first successful methodology of this kind. Open FAIR consists of a Risk Taxonomy Technical Standard … Continue reading
Announcing New Partner, Webinar, and Going to IdentiVerse
In June doings for Security Architects Partners – it’s a busy month! We’re excited for Identiverse where I’ll be attending in my role of free lance KuppingerCole analyst. The figure below says it all; contact us if you’d like… Continue reading
May Calendar: Richmond IAM Users Group, DC FAIR Chapter, and European Identity Conference
April showers, May flowers. A busy April is drawing to a close. We are back from RSA, and left one post so far on the KuppingerCole web site. Another is expected soon on “Passwordless Authentication? FIDO, Finally, Almost…”
Blockchain Security Concerns and Un-Concerns
Interest in blockchain has skyrocketed, with many believing the technology to be as transformational as the Internet itself. Blockchain’s promise boils down to two related propositions: first, that it can enable vast decentralized populations to collaborate and transact business; second,… Continue reading
Attending DC FAIR Insititute Chaper Meeting on February 2nd
FACTOR ANALYSIS OF INFORMATION RISK (FAIR) INSTITUTE DC CHAPTER MEETING INFORMATION
When: Friday, February 2nd from 8:30 am to 10:00 am
Where: Evolver Inc. (1943 Isaac Newton Square, Suite 260 Reston, VA 20190)
REGISTER
We are just a… Continue reading
How to Build Security and Risk Management into Agile Environments
Agile security and risk management are possible. This post is the third of three covering agile security challenges, opportunities, and good practices. It also discusses the taxonomy and instrumentation required to operationalize an agile risk management framework down to the… Continue reading
Speaking on Third Party Risk at the FAIR Institute Chicago Chapter Meeting
Dan Beckett and Dan Blum from Security Architects Partners will be speaking at the Factor Analysis of Information Risk (FAIR) Institute Chicago Chapter meeting.
When: Thursday, October 5, 2017, 3:30 – 5 PM CDT
Where: Northern… Continue reading
Risk Management in the Agile Environment
Agile risk management – is it even possible? This is our second of two posts ruminating on agility versus security. Today, you’ll see that an agile risk management framework like the one in the figure below is feasible, and that… Continue reading
Is Agile Security an Oxymoron?
Agile security has emerged as a core topic for us in two cutting edge consulting engagements over the past few months.
The first of these engagements is to help a very large client develop and mature an enterprise risk management… Continue reading
Engaging the Board on Cybersecurity
Corporate Boards of Directors (BOD) may soon be required to disclose their level of cybersecurity expertise. The recently-introduced Cybersecurity Disclosure Act (S.2410) would direct the SEC to work out the details of making publicly-traded companies “comply or… Continue reading