Forecasting Risk – What Every CISO and CIO Needs to Know – Charlene Deaver-Vazquez – BSW #256



Every CISO CIO asks the question, what’s the risk? Quantitative analysis, mathematical models are designed to answer this question. Understand how they work, when to use them, and what they can tell us.

Segment Resources:

https://www.amazon.com/Ensure-Business-Success-Informed-Decisions-ebook/dp/B09Q7R1HY4

https://fismacs.com/blog/

https://portal.fismacs.com/p/p-rmod4cyber

https://fismacs.com/white-paper-mhp-ip4cyber/ Visit https://www.securityweekly.com/bsw for all the latest episodes!
Full Episode Show Notes

Forecasting Risk – What Every CISO and CIO Needs to Know

Guests

Charlene Deaver-Vazquez

Charlene Deaver-Vazquez – President at FISMACS, LLC

@fismacs

President of FISMACS, LLC Charlene worked as a subject matter expert in cybersecurity for 12 years. She worked in IT for 30 years in both private and government sectors, from supporting small networks and programming to designing global network. Twelve years ago, she transitioned to compliance managing a multi-million-dollar contract, then went on to auditing installation sites, cloud and even supporting deployable platforms. For the last several years she has been performing enterprise-level risk analysis and quantification for Nuclear Regulatory Commission. In 2021 she created Probabilistic Risk Modeling for Cyber (P-RMOD4Cyber) a framework of methods, models, and guides for cyber related quantitative analysis which can be found at FISMACS.com. This course can also be found on the National Initiative for Cybersecurity Careers and Studies catalog at NICCS.CISA.gov. She also authored Ensure Your Business Success With Risk Informed Decisions: How to easily quantify risk, available on Amazon. Her latest mathematical model is groundbreaking in that it can be used to forecast cyber attack event sequence, intensity and risk. It’s call the Marked Hawkes Process with Indicators of Prevalence for Cyber (MHP-IP4Cyber).

Hosts

Ben Carr

Ben Carr – CISO at Cradlepoint

Ben Carr is the Chief Information Security Officer at Qualys. He is an information security and risk executive with more than 25 years of experience in developing and executing long-term security strategies. Ben has demonstrated global leadership and experience, through executive leadership roles of advanced technology, high risk, and rapid-growth initiatives, at companies such as Aristocrat, Tenable, Visa and Nokia. While at Aristocrat, Ben built a world-class global cybersecurity program from the ground up as part of a digital transformation. As a senior cybersecurity executive at Visa, Ben was responsible for developing and leading Visa’s Global Attack Surface Management Team and capability. Prior to Visa, he led all security programs for Nokia corporate IT as the Global Head of IT Security. Ben holds a certificate in Risk & Information Systems Control (CRISC), is a Certified Data Privacy Solutions Engineer (CDPSE).

Jason Albuquerque

Jason Albuquerque – Chief Operating Officer at Envision Technologies

@Jay_Albuquerque

Jason Albuquerque is the COO of Envision Technologies.

Matt Alderman

Matt Alderman – Executive Director at CyberRisk Alliance

@maldermania

Strategic Advisor at Automox, security consultant, and wizard of entrepreneurship.

Announcements

  • Join us April 14th to learn how to monitor your wifi network for attacks with Nzyme, a free and open source wireless intrusion detection system, with Lennart Koopmann, hosted by Larry Pesce and Paul Asadoorian. Then, join Alan Stacilauskas and hosts Tyler Robinson and Paul Asadoorian on April 21st to learn how to gain visibility into your enterprise with SYSMON. Live attendees at both of these webcasts will have the chance to win a $100 Hacker Warehouse gift card! Register at securityweekly.com/webcasts. Don’t forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.