Factor Analysis of Information Risk (FAIR)
A Methodology for Quantifying and Managing Risk in Any Organization FAIR is the only international standard quantitative model for cyber security risk.
- Provides a model for understanding, analyzing and quantifying cyber risk in financial terms
- Unlike risk assessment frameworks that focus their output on qualitative color charts or numerical weighted scales
- Builds a foundation for developing a scientific approach to information risk management
- The OpenFAIR standard is maintained by The Open Group, a global consortium that enables the achievement of business objectives through IT standards