There are many efforts to create meaningful security metrics, which is a worthy goal. After benchmarking over 1000 IT operations and security organizations in the past four years, I’ve formed some very strong conclusions and opinions, some of which goes against security common wisdom.
Tripwire's Gene Kim on Meaningful Security Metrics
By Anonymous on Wed, 06/03/2009 - 5:47am
Tags:
Sponsored Links
- Learn the advantages of web app acceleration with Akamai- Akamai
- Compuware can help you optimize application performance. Find out how. - Compuware
- Linux and Unix in Your Environment? Don’t Leave Security to Chance- Quest Software
- Securing Virtualized Data Centers - eBook - Trend Micro
- Efficiency goes up. Costs come down.- Microsoft
- SQL Server Experts: Virtually unstoppable- Microsoft
- Stay informed with custom newsletters from Tech Dispenser- Tech Dispenser
- Drive down operating expenses and mitigate risk with app centralization - Live May 12.- Juniper Networks
- The Next Generation of Content Security Has Arrived! Learn More!- Websense, Inc.
- Reduce costs by 49%, Increase capacity utilization by 33%. Make the HP LeftHand SAN work for you.- HP LeftHand SAN
-
Network World, Inc
The Leader in Network Knowledge
A new book on security metrics
Thank you for your kind words, Mich, and for encouraging readers to consider security metrics in some depth. I freely admit that I'm still learning!
A new book by Krag Brotby ("Information Security Management Metrics: A Definitive Guide to Effective Security Monitoring and Measurement") is a worthwhile addition to the field, along with Andrew Jaquith's modern classic "Security metrics: replacing fear, uncertainty and doubt".
Best wishes,
Gary Hinson
Post new comment