Jack Freund

Biography

Dr. Jack Freund has worked in technology and risk for 18 years where he has specialized in cyber risk. Jack’s book on quantifying risk, Measuring and Managing Information Risk: A FAIR Approach, was inducted into the Cybersecurity Canon in 2016. Jack’s writings have appeared in the ISSA Journal. He also writes a column for the @ISACA newsletter.

Jack has been awarded a Doctorate in Information Systems, Masters in Telecom and Project Management, and a BS in CIS. He holds the CISSP, CISA, CISM, CRISC, CIPP, and PMP designations. Jack’s academic credentials include being named a Senior Member of the ISSA, IEEE, and ACM, a Visiting Professor, and an Academic Advisory Board member.

Currently, Jack is Senior Manager, Cyber Risk Framework at TIAA. and has served on the ISACA CRISC working group since the certification’s inception. You can follow all Jack’s work and writings at riskdr.com.

Presentation Title

Presentation: Integrating Threat Intelligence into Cyber Risk Management

Presentation Overview

This session will review a process for integrating threat intelligence data into Cyber Risk Management. Topics to be reviewed include normalized terminology, threat categorization, risk taxonomy, and measurement. Practical application of Open Source Intelligence (OSINT) and incident data will be covered. Finally, the session will review visualization for reviewing threat-risk integration with management.