Quantification of Cyber Risk is a nascent field and the Factor Analysis of Information Risk (FAIR) seems to be themost well-promoted approach. I have a credit risk modelling background and have dabbled in the Advanced Modelling Approach (AMA) models

Based on my background which is math/stats/credit risk modelling, it looks like FAIR is the most logical entry point for me to get into cyber security.

Has anyone had experience with FAIR? What other cyber risk quantification approaches are there?

I am based in Australia and it seems there's not much movement here and so I think I can get on the front foot and master this before things even begin so I can corner the market and make a …

advanced ama analysis credit credit risk cyber cyber risk cybersecurity entry factor fair information math point quantification risk stats