Risk culture: Accounting for cyber attack losses

In this episode we speak with Nick Sanna, founder of the FAIR Institute and President of Safe Security, about using the Factor Analysis of Information model, the only international standard for quantifying and accounting for cybersecurity and operational risks, including pervasive third-party risks as the world witnessed with the CrowdStrike incident. Nick explains how healthcare organisations in particular could be using this at scale to better assess and manage potential cyber incidents, considering the high-profile cyber attacks at United Health and the UK's NHS and, indeed, our current research on risk management in the healthcare sector.