ISSA Pittsburgh Chapter Meeting
Details
Hackers Guild is pleased to host the Information Systems Security Association (ISSA) Pittsburgh Chapter for their monthly meeting.
Sponsored by ZScaler
Featured Speaker: Matt Tolbert
Topic: Establishing an Effective Risk Appetite Using the FAIR Framework
Organizations struggle with defining a clear, actionable risk appetite—one that aligns business objectives with measurable, defensible cybersecurity decisions. This session brings clarity to that challenge through the internationally recognized FAIR (Factor Analysis of Information Risk) model, a quantitative framework designed to help leaders understand, measure, and communicate cyber risk in financial terms.
About the Presentation
Matt Tolbert will break down what makes a risk appetite effective, not just documented. Drawing on industry guidance and his experience presenting on cyber risk appetite at major conferences, he will explore:
- How FAIR provides a common language and structure for defining risk appetite
- Why quantitative metrics outperform vague labels like low, medium, and high
- How to establish thresholds, KPIs, and KRIs that align with business priorities
- Practical steps for integrating FAIR into governance, reporting, and decision‑making
This session is ideal for security leaders, risk managers, analysts, and anyone responsible for communicating risk to executives or boards. FAIR’s structured approach helps eliminate ambiguity and ensures stakeholders share a consistent understanding of risk tolerance and tradeoffs.
About the Speaker Matt Tolbert | LinkedIn
Matt Tolbert is a respected cybersecurity and risk specialist known for his work on cyber risk appetite development. He has presented on this topic at industry events, including sessions focused on establishing effective cyber risk appetite and aligning it with organizational strategy. His expertise spans risk quantification, cloud security considerations, and the development of meaningful KPIs, KRIs, and compliance thresholds.
Matt’s background and thought leadership make him uniquely equipped to guide organizations seeking to modernize their risk management programs using FAIR.
ISSA is an international organization focused on supporting the professional development of cybersecurity practitioners and advancing the field of information security. The Pittsburgh chapter provides a forum for local professionals, students, and technology enthusiasts to meet, exchange ideas, and stay informed about current developments in cybersecurity.
Meetings typically include a featured presentation or discussion on a security topic, followed by open conversation and networking. Topics often span a wide range of areas including security engineering, risk management, cloud security, threat intelligence, penetration testing, and emerging challenges in the field.
This event is open to anyone with an interest in cybersecurity. If you are working in the field, exploring career opportunities, studying security, or simply interested in how digital systems are protected, this is an excellent opportunity to connect with others in the regional security community.
We look forward to welcoming the ISSA Pittsburgh Chapter and the broader cybersecurity community to Hackers Guild.
Please RSVP at: https://www.meetup.com/steel-city-infosec/events/313704715/
## FAQs
### Do I need to be an ISSA member to attend?
No. Visitors and prospective members are welcome.
### Is this event beginner friendly?
Yes. The audience typically includes professionals, students, and people exploring cybersecurity careers.
### Will there be a presentation?
ISSA meetings often include a speaker or discussion topic. Details will be announced by the chapter when available.
### Where is the event located?
Hackers Guild
2247 Babcock Blvd
Pittsburgh, PA 15237
### Is there parking available?
Yes. Parking is available near the building.
### Do I need to register?
Registration is recommended so we know how many people to expect.