Collaborate Disseminate
CISOs have long been spreadsheet aficionados, soaking up metrics and using them as KPIs for security progress. These metrics have traditionally measured specific systems or single indicators — vulnerabilities detected, percentage of vulnerabilities pat… Continue reading The evolution of security metrics for NIST CSF 2.0
Asked about the Board and C-Suite‘s understanding of cybersecurity across the organisation, only 39% of respondents think their company’s leadership has a sound understanding of cybersecurity’s role as a business enabler, according to Delinea. Th… Continue reading Company executives can’t afford to ignore cybersecurity anymore
Given inflation and economic uncertainty, the cybersecurity industry is starting to experience budget cuts, despite a surge in ransomware attacks. As more budgets are going under the microscope, and in some cases, on the chopping block, one of the best… Continue reading 7 metrics to measure the effectiveness of your security operations
For too long, both the private and public sectors have not prioritized cybersecurity efforts enough and only acted in “good faith” – an inadequate effort to improve cybersecurity. Recently, President Biden issued the Executive Order on Improving … Continue reading The cybersecurity metrics required to make Biden’s Executive Order impactful
We want to trust our employees and contractors working within our organizations. For the most part, people are doing their jobs with integrity every day. What happens when an employee decides to leave the organization and start their own business … Continue reading CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!
Data is only as good as what you are able to do with it. Not only does the cybersecurity universe collect data, but individual enterprises also collect cybersecurity data from within their organization as well as from external sources in order to add … Continue reading Dashboards: An Effective Cybersecurity Tool
There are a number of different types of models—and the output from each must be viewed and used differently depending on the form of the model. First, you have relationships derived from correlations—they show how one variable changes in concert with … Continue reading Cybersecurity Lessons from the Pandemic: Models and Predictions
Do you know what is it like to measure and optimize global security operations centers (SOCs)? At IBM Managed Security Services’ (MSS), we measure an SOC a bit like operating and managing the performance of a factory. It’s incredibly important to monitor and measure the performance of every component and how they all work together. […]
The post Measuring Security Operations Center Effectiveness Globally appeared first on Security Intelligence.
Continue reading Measuring Security Operations Center Effectiveness Globally
We have discussed previously, such as in my May 18, 2020 BlogInfoSec column, some of the more challenging characteristics of data, such as those relating to value and uncertainty, which are generally not given adequate consideration. This is because th… Continue reading Cybersecurity Lessons from the Pandemic: Metrics and Decision-Making
Having discussed issues relating to the collection and reporting of COVID-19 data in Part 1, we now turn to cyberspace, even though the jury is still out regarding much of the pandemic data. Equivalent situations to those described with respect to the … Continue reading Cybersecurity Lessons from the Pandemic: Data – Part 2