The Trouble with Security Metrics

By /

Metrics are all the rage, and it makes sense: they provide a way to objectively measure things like performance – and security. The problem is how to go beyond the use of metrics as an informational tool to see what did happen and use them to predict what will happen, in order to take preventative measures against attacks.

To justify the cost of those preventative measures, though, you need the buy-in of management, and that’s where things get sticky. According to this article from SecurityWeek, “The challenge for many security professionals is translating the scope, scale, and effectiveness of security initiatives into terms that can be understood by executives and boards.”

Read more about this challenge and how to deal with it, here:

http://www.securityweek.com/why-business-has-problem-security-metrics

About The Author

Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.

Read Next

Static vs Dynamic IP Address

Static vs Dynamic IP Address

Most people are familiar with Internet Protocol (IP) Addresses, but many people don’t know you have 2 types. In this article, you’ll learn about static…

Read More »

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top