At Cyentia, we believe great analysis attracts great analysts. Our mission has always been to bring clarity to cyber risk through data, and that mission continues to attract some of the industry’s brightest minds. Today, we’re excited to share that Jack has joined us as our newest Executive Fellow — helping us take the next big step in expanding our risk analysis services for enterprise security teams.
That’s why we’re especially thrilled to officially welcome Jack Freund as an Executive Fellow of the Cyentia Institute.
Jack’s career spans roles like Chief Risk Officer and Head of Cyber Risk Methodology, giving him deep expertise in corporate risk management, compliance, and cyber risk governance. He’s also the co-author of the foundational CRQ book using the FAIR standard — a work inducted into the Cybersecurity Canon in 2016 — and holds a Ph.D. in Information Systems for his research on disaster informatics and cyber resilience.

As Cyentia continues to evolve from research partner to strategic risk analysis provider, Jack’s expertise helps bridge our data-driven approach with the needs of enterprise security programs. He’ll be working closely with our team to help organizations apply better data, models, and methods to understanding their risk environment — and making smarter decisions because of it.
If you’ll be at RSAC this year, don’t miss Jack’s upcoming talk — and be sure to connect with Jack and Wade while you’re there. They’d love to chat about risk, resilience, and what’s next.
This session explores how AI-driven cyber intelligence data can enhance quantified cyber risk models for GRC. Attendees will learn how AI automates risk assessments, provides real-time insights into vulnerabilities, and supports continuous monitoring to improve regulatory compliance. The session, presented with Jack Freund, will offer practical steps for applying AI to strengthen governance and third-party risk management.

This session, with Wade Baker, examines whether cyber risk has truly increased over time by analyzing a large dataset of historical security incidents. Attendees will explore trends in breach frequency, incident costs, and how risk varies across different types and sizes of organizations. The session will provide data-driven insights to inform more effective cyber risk management strategies.

This interactive session invites participants to share real-world experiences—both successful and challenging—on communicating cyber risk across diverse audiences, from technical teams to executive leadership. The discussion will focus on strategies for making risk communication clear, relevant, and actionable, regardless of the audience’s background. Held under the Chatham House Rule, this session encourages open dialogue and peer learning in a confidential setting.

This is a month of growth and momentum at Cyentia. We’re proud to have Jack among the newest additions to our team. His expertise strengthens our ability to deliver the clarity, insight, and guidance our customers rely on. And with new services rolling out soon, there’s never been a better time to work with Cyentia.
If you’re ready to explore how Cyentia can help your organization turn data into decisions, we’d love to talk. Reach out — we’re always excited to collaborate with teams ready to take their risk analysis to the next level.