Download now Free registration required
Visibility and measurement are the very heart of security risk management. Without them it would be impossible to identify, assess and mitigate risks. They are also the key to effective process management. Identifying appropriate metrics ideally requires a consideration of the organization's business goals, strategies and compliance requirements, and the measures that could be used to prioritize activities and help prevent incidents. Safety provides a useful analogy on how incidents can be prevented by monitoring near misses and correcting bad operating practices. Smart use of metrics, especially when coupled with powerful technology, underpins the development of effective governance processes by enabling management to 'close the loop' on policies and standards and apply continuous process improvements.
- Format: PDF
- Size: 72.89 KB