Quantifying Security Performance: The Why, What and How of Security Ratings

  • Tuesday, 28 Oct 2014 1:00PM EDT (28 Oct 2014 17:00 UTC)
  • Speakers: John Pescatore, Stephen Boyer

Quantifying security performance can be a tricky thing. When your board wants to know whether you are more or less secure than your peers and competitors, what do you tell them? Better yet- what metrics do you show them? And what if you're tasked with assessing vendor security risk? What metrics do you use to provide an objective and consistent assessment and how do you maintain any performance assessment on a continuous basis?

This is where Security Ratings, a powerful, data-driven, performance assessment solution, have come into play. Join this SANS webinar in the Ask the Experts series, featuring analyst John Pescatore and Stephen Boyer, CTO and co-founder of BitSight Technologies, for a discussion around:

  • The challenges associated with quantifying security performance in a risk management program
  • The value of looking at performance trends beyond the company walls and using data to learn from issues occurring in your industry and in peer networks
  • How companies are using Security Ratings to address issues such as benchmarking security performance and managing vendor and portfolio risk.
  • A live demo of the BitSight Security Ratings Customer Portal and overview of the ratings process