Introduction and Welcome - Security Metrics

by Marcus J. Ranum
February 13, 2014

In this blog series on SecurityWeek, Tenable CSO Marcus Ranum advises security professionals on how they can create and share metrics in their jobs. These metrics can create better understanding and awareness about the success of their approaches, as well as allow them to build support for programs and funding requests.

This is the beginning of a series of postings I'll be doing on security metrics. It's a topic that I don't think we, as a community, have a particularly good grasp of – probably because security, as a field, is only just beginning to professionalize to the point where (in some markets) it's getting more than a nod as a necessary evil. I can't even imagine the number of times in my career that I have heard a security practitioner say something like, “We have to speak to executives in the language of business!” which often gets mistaken for “use lots of PowerPoint and buzzwords” but which really means: Be able to quantify what you're talking about. And that's where metrics come in.

Read the Rest at Security Week

Tenable Network Security offers both live and pre-recorded webinars on a wide variety of topics ranging from industry best practices, to product tours, to cyber threats, and more. Review our webinar archive, and check back often for upcoming live webinars.