Precise cyber modelling ‘a pipe dream’, expert says

OpRisk North America: Cyber risk models should aim for accuracy, not precision

Binary numbers
Incomplete data makes it difficult to precisely model cyber risk

The creator of a widely used model for quantifying cyber risk has warned banks not to expect precise results.

Jack Jones, co-founder of RiskLens and architect of the Factor Analysis of Information Risk (Fair) model, urged banks to “get over this notion of precision” and focus on generating accurate results when modelling cyber risk.

“When people think about quantifying risk who aren’t in the profession of quantifying risk, they think we are supposed to quantify it precisely, which is a pipe

Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.

To access these options, along with all other subscription benefits, please contact [email protected] or view our subscription options here:

You are currently unable to copy this content. Please contact [email protected] to find out more.

Sorry, our subscription options are not loading right now

Please try again later. Get in touch with our customer services team if this issue persists.

New to View our subscription options

If you already have an account, please sign in here.

You need to sign in to use this feature. If you don’t have a account, please register for a trial.

Sign in
You are currently on corporate access.

To use this feature you will need an individual account. If you have one already please sign in.

Sign in.

Alternatively you can request an individual account here: