Ostrich Cyber-Risk, a cyber-risk management company, has announced that Jack Whitsitt has joined the Executive Leadership Team as Director of Risk Quantification.

Whitsitt joins Ostrich Cyber-Risk from Freddie Mac, with prior positions held at Bank of America and the Department of Homeland Security (DHS). 

Whitsitt is a leader in the cyber-risk quantification (CRQ) community with more than two decades of information security specific experience.

In his role as Director of Risk Quantification, Whitsitt will help inform product direction and will lead the new Ostrich Cyber-Risk Professional Services division tasked with getting customers off the ground with risk quantification while avoiding or mitigating common pitfalls.  

“I am thrilled to have Jack Whitsitt join our team at Ostrich Cyber-Risk as Director of Risk Quantification,” said Yiannis Vassiliades, Chief Product Officer.

“Whitsitt’s deep expertise as an innovator and practitioner in information security risk quantification will be applied to lead our new Professional Services division, enabling customers to get better outcomes by implementing best practices to define and scope cyber-risk scenarios.”

“After many years of providing CRQ support to individual organizations and working through advocacy and educational groups such as the FAIR Institute and the Society of Information Risk Analysis (SIRA) in Board and Advisory capacities, I’m excited to be able to stand on the shoulders of the community at such a dynamic organization and make my own contributions to expanding the technological options available to decision-makers,” said Whitsitt.

“In particular, I’m excited to help teams, through a combination of technology and facilitation, apply subjective context (such as NIST CSF) more effectively to CRQ and to further connect the dots between classic GRC and ‘risk measurement’.”