Security Metrics- It’s a Composite Image
- Before your metrics monitoring can even begin, you must first decide the IT security priorities for your organization.
- The information security metrics that senior leaders tend to cherish most are those that show them how their business stacks up against their competitors.
“You have to decide which metrics are strategically aligned with your security roadmap.”
As a chief information security officer (CISO), you can’t control what you don’t understand, Anthem CISO Roy Mellinger affirms. “You can’t manage what you don’t measure,” he adds. “And you can’t measure what you don’t monitor.”