In this webinar, Jack Whitsitt and John Feezell will discuss several fundamental program elements and practices of CRQ programs and how they might all fit together. Whether you’re building a new program, updating an old one, hiring a service provider, or simply want to make your existing traditional risk management practices more effective, you’ll find something of interest in this talk.
Meet your speaker:
Jack Whitsitt, Director of CRQ at Ostrich Cyber Risk, is a long-time practitioner and leader in the Cyber Risk Quantification space.
Backed by over two decades of information security experience ranging from manipulating bits and bytes to weighing in on international policy, he also has seven years of quantified decision support experience building FAIR-based programs for organizations large and small. Jack has also spent several years volunteering in non-profit roles advocating for and advancing the state of the art of quantified information risk analysis.
Meet your speaker:
John Feezell, a prominent figure in Cyber Risk Quantification, currently serves as a Director and CRQ Lead for Kyndryl’s Security and Resiliency Practice. With a rich background spanning 22 years in security and systems, John's expertise has been honed through roles at Kyndryl, IBM Services, and 4 years in the Insurance Industry with Blue Cross Blue Shield and Unum. He has been a speaker at prestigious events like the ISC2 World Congress, the Open Group Global Summit, and the FAIR Institute’s FAIRCon, advocating for the Factor Analysis of Information Risk (FAIR) global standard. John is actively involved in the Open Group Security Forum, co-chairing and contributing to initiatives such as crafting exam questions for the new Open FAIR 2 certification.
As a fervent evangelist for the FAIR standard, John played a pivotal role in launching Kyndryl’s offerings related to Cyber Risk Quantification and Third-Party Risk Management. His commitment extends to coaching individuals in achieving FAIR certification through mentoring and boot camps. John, a published author and holder of 5 patents in the information security domain, boasts certifications including CISSP®, PMP®, Open FAIR®, and Open FAIR2®.