https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49641#M612 <P>Check out the FAIR (Factor Analysis of Information Risk) model: <A href="https://www.fairinstitute.org/fair-risk-management" target="_blank">https://www.fairinstitute.org/fair-risk-management</A></P><P>&nbsp;</P><P>The FAIR book (Measuring and Managing Information Risk: A FAIR Approach) has previously been listed as a suggested reference for the CISSP-ISSAP exam.</P><P>&nbsp;</P> Wed, 09 Feb 2022 22:24:08 GMT AlecTrevelyan 2022-02-09T22:24:08Z https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49630#M611 <P>Dear All,</P><P>I need some advice on a best practice modell to establish a quantitative risk assessment.</P><P>Thanks in advance.</P><P>Best regards,</P><P>Torsten</P> Wed, 09 Feb 2022 19:31:53 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49630#M611 tpfeiffer 2022-02-09T19:31:53Z https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49641#M612 <P>Check out the FAIR (Factor Analysis of Information Risk) model: <A href="https://www.fairinstitute.org/fair-risk-management" target="_blank">https://www.fairinstitute.org/fair-risk-management</A></P><P>&nbsp;</P><P>The FAIR book (Measuring and Managing Information Risk: A FAIR Approach) has previously been listed as a suggested reference for the CISSP-ISSAP exam.</P><P>&nbsp;</P> Wed, 09 Feb 2022 22:24:08 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49641#M612 AlecTrevelyan 2022-02-09T22:24:08Z https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49678#M614 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/1099977225">@AlecTrevelyan</a>&nbsp;<a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/170923143">@tpfeiffer</a> If you are a member of the Open Group, you will find the FAIR methodology can be studied and you can obtain certification via the Open Group too.</P><P>&nbsp;</P><P><A href="https://www.opengroup.org/certifications/openfair" target="_blank">https://www.opengroup.org/certifications/openfair</A></P><P>&nbsp;</P><P>Hope this helps?</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P><P>&nbsp;</P><P>&nbsp;</P> Sun, 13 Feb 2022 04:44:05 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49678#M614 Caute_cautim 2022-02-13T04:44:05Z https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49694#M615 Appreciate your helpful feedback! Mon, 14 Feb 2022 07:12:36 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Quantitative-Risk-Assessment-Method/m-p/49694#M615 tpfeiffer 2022-02-14T07:12:36Z