What is measured gets done.  However before you measure you need to think about how best to measure.  On this episode of CISO Tradecraft, we provide you new insights into optimizing metrics that matter.  

What is a Metric?

Metrics drive outcomes.  Before picking a metric consider the following:

  • What data is required?

What stories can it tell?

What questions does it invite?

How sustainable is it?

When you report metrics highlight three things:

  1. Status or Measure- Where is your company right now?

Trends- What direction is your company headed?

Goals- A description of where your company wants to be

Goals or Metrics should be SMART:

  • Specific, Measurable, Achievable, Realistic, and Time-based

For a helpful list of metrics that you might consider please check out the following list from Security Scorecard Link

Thank you again to our sponsor CyberArk, please check out their CISO Reports.

Podden och tillhörande omslagsbild på den här sidan tillhör G Mark Hardy & Ross Young. Innehållet i podden är skapat av G Mark Hardy & Ross Young och inte av, eller tillsammans med, Poddtoppen.