security metrics

/Tag: security metrics

How to Report Information Security Metrics


You know gathering data and analyzing information security metrics is important. You probably know which ones you should be collecting. But now that you have all of the information you need, how do you put it into an intelligent, understandable, and effective report for stakeholders? There really is no right or wrong way at a granular level, but there are certainly best practices you can keep in mind to make sure you’ve got the right metrics telling the right story to the right people. Creating an Information Security Metric Report Start by defining a problem you’d like to solve or a [...]

How to Report Information Security Metrics2019-04-25T09:27:54-04:00

What Makes a Good Security Metric?


There’s really one way to determine whether or not your information security program is working — by collecting related data and analyzing it. But the most important factor to consider is which data to share. Data on its own is not going to tell a story and will leave most people frustrated with no more insight than they had before looking at it. We have tons of data at our fingertips, and any number of ways to arrange, report, and share them with stakeholders. But you’re not just looking to report any data — you’re looking to report metrics. What’s the [...]

What Makes a Good Security Metric?2019-04-25T09:19:17-04:00