Forecasting Risk – What Every CISO and CIO Needs to Know – Charlene Deaver-Vazquez – BSW #256
Every CISO CIO asks the question, what's the risk? Quantitative analysis, mathematical models are designed to answer this question. Understand how they work, when to use them, and what they can tell us.
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
President of FISMACS, LLC Charlene worked as a subject matter expert in cybersecurity for 12 years. She worked in IT for 30 years in both private and government sectors, from supporting small networks and programming to designing global network. Twelve years ago, she transitioned to compliance managing a multi-million-dollar contract, then went on to auditing installation sites, cloud and even supporting deployable platforms. For the last several years she has been performing enterprise-level risk analysis and quantification for Nuclear Regulatory Commission. In 2021 she created Probabilistic Risk Modeling for Cyber (P-RMOD4Cyber) a framework of methods, models, and guides for cyber related quantitative analysis which can be found at FISMACS.com. This course can also be found on the National Initiative for Cybersecurity Careers and Studies catalog at NICCS.CISA.gov. She also authored Ensure Your Business Success With Risk Informed Decisions: How to easily quantify risk, available on Amazon. Her latest mathematical model is groundbreaking in that it can be used to forecast cyber attack event sequence, intensity and risk. It’s call the Marked Hawkes Process with Indicators of Prevalence for Cyber (MHP-IP4Cyber).