From the course: CISSP Cert Prep (2021): 6 Security Assessment and Testing
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Security metrics
From the course: CISSP Cert Prep (2021): 6 Security Assessment and Testing
Security metrics
- Organizations evaluate their security programs through the use of metrics that assess the efficiency and effectiveness of critical security controls. These measurements provide insight into the health of a security program, both at a single point in time and on a long-term basis. It's critical that organizations define the metrics and performance measurements that they will use in advance of reporting that data. This ensures the integrity of the process and prevents the cherry picking of favorable results for reporting purposes. Security programs use two primary types of metrics to demonstrate their effectiveness and the state of the organization's security controls. Key performance indicators, or KPIs, are metrics that demonstrate the success of the security program in achieving it's objectives. They are mutually agreed upon measures that evaluate whether a security program is meeting it's defined goals. Generally…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.