Explore practical security metrics in this 45-minute conference talk from the Central Ohio InfoSec Summit 2016. Learn how to communicate effectively, start small with metrics implementation, and develop scorecards. Discover the importance of organizational culture, using gimbal boards, and improving end-user experiences. Gain insights on personalizing metrics, examining real-world examples, and correcting representations. Develop a roadmap for assessing security posture, tracking project status and costs, and implementing public-facing metrics. Master the art of creating practical, actionable security metrics to enhance your organization's information security strategy.
Overview
Syllabus
Introduction
Communicating Effectively
Security Metrics
Start Small
Scorecard
James Sands
Culture
Gimbal Board
Improving Daily Jobs of End Users
Making Metrics Personal
Metrics Examples
Representation Correction
Road Map
Security Posture
Project Status
Project Costs
Public
Practical