In this webinar, Greg Spicer, Co-Founder and CRO of Ostrich Cyber Risk, along with Kevin Gelsthorpe and John Feezell from Kyndryl, will dive into the intricacies of identifying your biggest cyber risks using NIST Cybersecurity Framework (NIST CSF). We then will explore how to determine which controls most effectively mitigate these risks and how to quantify their effectiveness in financial terms, and influence decisions with stakeholders in your business.
Meet your speaker:
John Feezell, Director, Risk Advisory Services at Kyndryl @ Kyndryl
John Feezell, a prominent figure in Cyber Risk Quantification, currently serves as a Director and CRQ Lead for Kyndryl’s Security and Resiliency Practice. With a rich background spanning 22 years in security and systems, John's expertise has been honed through roles at Kyndryl, IBM Services, and 4 years in the Insurance Industry with Blue Cross Blue Shield and Unum. He has been a speaker at prestigious events like the ISC2 World Congress, the Open Group Global Summit, and the FAIR Institute’s FAIRCon, advocating for the Factor Analysis of Information Risk (FAIR) global standard. John is actively involved in the Open Group Security Forum, co-chairing and contributing to initiatives such as crafting exam questions for the new Open FAIR 2 certification.
As a fervent evangelist for the FAIR standard, John played a pivotal role in launching Kyndryl’s offerings related to Cyber Risk Quantification and Third-Party Risk Management. His commitment extends to coaching individuals in achieving FAIR certification through mentoring and boot camps. John, a published author and holder of 5 patents in the information security domain, boasts certifications including CISSP®, PMP®, Open FAIR®, and Open FAIR2®.
Meet your Moderator:
Greg Spicer, Co-Founder & CRO @ Ostrich Cyber-Risk
Greg Spicer has several years of experience in cybersecurity, working with organizations to provide solutions to their cybersecurity challenges. He has worked in many sectors, including Legal, Finance, Insurance, Manufacturing, and Healthcare. He was most recently CRO of Braintrace, a Salt Lake City MDR provider, before their successful sale to Sophos in July 2021.
Greg is now the CRO and Co-Founder of Ostrich Cyber-Risk, a leading Cybersecurity Risk Management organization that empowers risk and security teams to proactively assess cyber risk exposure in financial terms. Our Birdseye™ Cyber Risk Management application, grounded in industry benchmarks like NIST CSF, ISO, MITRE, and CRI, combines qualitative risk analysis and quantitative scenario simulation through the Open FAIR™ ontology. This unique approach enables organizations to swiftly prioritize and quantify financial and operational risks in real-time to make informed business decisions on cybersecurity.
Meet your speaker:
Kevin Gelsthorpe, Portfolio Leader, Security Assurance Services