從數據到決策與治理 - 簡介 FAIR CRQ 模型

4/17 (Thu.) 16:15 - 17:00 7F 701D

從數據到決策與治理 - 簡介 FAIR CRQ 模型

為強化上市櫃公司資安管理，依現行規定，上市櫃公司發生重大資安事件時，應即時發布重訊，且若損失達一定金額，即達到股本 20% 或新台幣 3 億元以上，應召開重訊記者會。如何計算損失，勢必成為資安長，資訊長，及風險管理人員當務之急．這場演講將介紹科技風險管理的最新趨勢 - CRQ 網絡風險定量分析。著重介紹廣為美國上市公司採用的 FAIR 研究機構的 CRQ 方法論。演講將簡介 FAIR CRQ 方法論，說明 CRQ 在法令遵循、溝通風險、協助決策、強化科技風險治理的發展性。提供聽眾與上市公司方法論位前開法令變革做好準備。

SPEAKER

小P

ISACA總會

外部專家委員

TOPIC / TRACK
CISO Forum

LOCATION
Taipei Nangang Exhibition Center, Hall 2
7F 701D

LEVEL
Advanced Advanced sessions explore cybersecurity topics, including architecture, tools, practical experiences, and strategy comparisons. Content often features code explanations, protocol analysis, reverse engineering, live demos, and is suitable for experienced cybersecurity professionals.

SESSION TYPE
Breakout Session

LANGUAGE
Chinese

SUBTOPIC
Cyber Risk Quantification
Governance Risk & Compliance
Risk Management

More Session

The Cyber Resilience Act (CRA) is counting - how should PSIRT teams respond to this challenge?

Yenting Lee / TXOne Networks Inc. Senior Threat Researcher, PSIRT and Threat Research

Automate repetitive tasks and work 4 hours a week - invest in a side hustle

Wave Lo / AIShield Technical Consultant Director

Agile Adoption of DevSecOps and Automated Security Testing

Lung-Yu Tsai (Tygrus) / Digicentre Company Limited Deputy Manager, Technical Development Division II

Attacks and Defenses in Large Language Models: A Diverse Landscape

Chia-Mu Yu / National Yang Ming Chiao Tung University Associate Professor, Institute of Electrical and Computer Engineering

AI-Driven Cloud

James Wang / Fortinet Cloud Consultant