Improving the Bottom Line with Effective Security Metrics: A SANS Survey

  • Wednesday, 12 Aug 2020 1:00PM EDT (12 Aug 2020 17:00 UTC)
  • Speakers: Barbara Filkins, John Pescatore

In SANS surveys, CISOs consistently report their major obstacle is the inability to obtain management commitment to increase cybersecurity resources and investment. Not surprisingly, a high percentage of CISOs also report that security teams do not collect and present security metrics with any meaningful connections to the business mission and goals. If you can't express the effectiveness and efficiency of your cybersecurity program, how can you ever convince management to increase the organization's investment in cybersecurity?

This webcast will present the results of a SANS survey with both quantitative results about the overall state of metrics across cybersecurity operations, as well as interview-based qualitative results detailing success stories and best practices of security teams who have been collecting and presenting business-relevant security metrics.

Attendees will learn:

  • Which metrics are used most frequently to track, measure and report on the status of security efforts
  • Which metrics are meaningful for tactical operational decisions as well as communicating risk reduction and exposures in business meaningful terms
  • How organizations define the metrics they use
  • What data sources provide the best basis for establishing metrics

Register today to among the first to receive the associated whitepaper written by SANS Analyst Program Research Director Barbara Filkins with advice from SANS Director of Emerging Security Trends John Pescatore.

Click here to register for a companion webcast focusing on real-world examples of security metrics in action on Wednesday, August 19, 2020 at 1 PM Eastern.