Since it is pretty much impossible to do that with a purely technological approach to solving security challenges, and since security is a constant process, the security leader should focus on the process of continuously adapting and improving security and communicate the changes those processes have made. The National Association of Corporate Directors published a survey in October indicating 31 percent of company directors are dissatisfied with the quality of information from management regarding cyber security.
It is no longer adequate for a security leader report on the number of incidents they responded to or the success of the latest awareness campaign or phishing exercises.
Security leaders must begin to speak the language of the business and show forecast improvements, investments required, and track improvement based on consistent key process indicators. This is the same rigor applied to other areas of the business and information security or cyber security must transcend.
Michael T. Lester is a year IT veteran and an year veteran of the U. Marine Corps whose passion is combining the leadership principles of the Marine Corps with his knowledge of technology and information security. This data can be collated with info extracted from log management software to make correlations and reports that measure the improvement in security over time. At Techopedia, we aim to provide insight and inspiration to IT professionals, technology decision-makers and anyone else who is proud to be called a geek.
From defining complex tech jargon in our dictionary, to exploring the latest trend in our articles or providing in-depth coverage of a topic in our tutorials, our goal is to help you better understand technology - and, we hope, make better decisions as a result.
Machine Intelligence. Dictionary Dictionary Term of the Day. Techopedia Terms. Connect with us. Sign up. Term of the Day. Best of Techopedia weekly. Organizations frequently make decisions by comparing scenarios that differ in projected cost with the associated likely benefits and risk reduction. Providing reliable answers to these questions requires organizations to employ a systematic approach to cybersecurity measurement that considers current knowledge limits. Those decisions can affect the entire enterprise, and ideally should be made with broader management of risk in mind.
These measures would take into account not only the very specific performance of individual elements of a cybersecurity system, but also the system-wide implications and impact on the wider enterprise. Measuring individual component performance is important.
Building on its previous efforts, NIST is undertaking a more focused program on measurements related to cybersecurity. Digital transformation , Safety. Want to learn more about a specific topic? Check out our resources. Collaboration What are the main causes of project failure? By team and use. By sector. The 10 Data Security Measures you must take for your business. With it, you can then share your documents with your team, your clients, and your partners 8 Monitor steadily Data, Software, technologies, everything is moving so fast.
Related Articles. Our themes. Become a teamwork expert. Subscribe to our newsletter. Data protection is at the heart of our concerns. Wimi uses the information you provide to provide you with information and relevant content about our products and services.
You can unsubscribe from this type of communication at any time.
0コメント