Cyber Risk Quantification Foundations (Part 1 of 3): Intro to Quantitative Risk Analysis and Reasons to Implement It

HIPAA Security 3.0 Educational Series

Resources

Basic Risk Calculator

The Basic Risk Calculator (BRC) is an MS Excel® based educational tool intended to demonstrate that quantitative risk models do not need to be complicated. It proves that even simple probabilistic models can address some of the ambiguity and mathematical issues commonly found in risk matrices and risk-scoring methods.

Open FAIR™ď¸Ź Risk Analysis Standards

The Open FAIR™ď¸Ź risk analysis standards are comprised of two documents: O-RT and O-RA. 

  • O-RT provides a standard definition and taxonomy for information security risk and information regarding how to use the taxonomy.
  • O-RA provides a set of standards for various aspects of information security risk analysis. 

HHS Presentation: Quantitative Risk Management for Healthcare Cybersecurity

05/07/20 presentation - Leadership for IT Security and Privacy Across HHS - HHS Cybersecurity Program. Explains what Quantitative Risk Management is and its benefits.

Watch Cyber Risk Quantification Foundations Part 2:

Deciding When to Perform a Quantitative Risk Analysis: When Is the Juice Worth the Squeeze?

>