Quantify the financial exposure of a ransomware event impacting [Service Line] across [Region] using the FAIR methodology over [Timeframe]. Model downtime effects on vessel berthing, yard turns, cross-dock throughput, and last-mile dispatch. Include loss drivers: revenue deferral, demurrage/detention, missed slots, SLA penalties (use [SLA Penalties]), overtime, customer churn, data restoration, and forensics. Incorporate control effectiveness (backups, segmentation, MFA), detection/response performance (MTTD/MTTR), and [Insurance Coverage Limit] with sublimits/retentions. Calibrate using [Average Daily Throughput] and typical recovery profiles. Provide sensitivity analysis for attacker dwell time and privilege escalation.
Output format requirements: (1) FAIR components table: Loss Event Frequency, Threat Event Frequency, Vulnerability, Loss Magnitude (primary/secondary), SLE, ALE; (2) Scenario narrative (≤150 words); (3) Ranked control investments with estimated risk reduction and payback; (4) Tornado-style ranked drivers (text list) showing top five variables by impact; (5) Board-ready one-slide summary bullets (≤8).