Security Metrics: the Key to Effective Security Management

This powerful 2-day course provides a wealth of tools, guidelines and inputs for anybody having to deal with security metrics. In the last few years the term "security metrics" has developed into a holy grail. We all know the mantra that if you can’t measure it, you can’t manage it. Everybody wants security metrics, everybody seems to know that they are necessary, but how does the CISO or the IT department get them?

Course syllabus:

  1. The Art and Science of Security Metrics

  2. Audiences for Security Metrics

  3. Finding Candidate Metrics

  4. Metametrics and the PRAGMATIC approach

  5. Sample Security Metrics

  6. Summary and Conclusions