Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Edge Articles

1/10/2020
12:55 PM
Joan Goodchild
Joan Goodchild
Edge Articles
50%
50%

6 Unique InfoSec Metrics CISOs Should Track in 2020

You might not find these measurements on a standard cybersecurity department checklist. But they can help evaluate risks you haven't even considered yet.

Potential Cost of Security Incident

No one enjoys thinking about it, but it's better to be prepared with numbers on how much a data breach or security incident could cost the organization than to be totally shocked should one occur. It is also useful to understand how much you may have to fork over for noncompliance with laws in an ever-growing regulation landscape.

Henry Harrison, CTO of Garrison, says, "If CISOs want to engage with strategic business risks, the metrics they should be focusing on are 'How costly could an incident potentially be for us?' and 'How much do we think it would cost an attacker to do that to us?' The latter is what CISOs should really be asking their red team. But it's rarely what they are asking, because they know they won't like the answer."

As Jason Lau, CISO of Crypto.com, says: "Compare fines resulting from failing to comply with local regulation against other companies in the same industry. With the growing number of regulations around the world, from GDPR to CCPA, showing to management that (hopefully) you don't have any fines helps to justify the direction and success of the security and privacy strategy that is being implemented.

(Continued on next page)

Joan Goodchild is a veteran journalist, editor, and writer who has been covering security for more than a decade. She has written for several publications and previously served as editor-in-chief for CSO Online.
View Full Bio
Previous
6 of 7
Next
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
   OVER THE EDGE
A Swift Reminder About Cybersecurity

Source: The Security Awareness Company

What security-related videos have made you laugh? Let us know! Add them to the Comments section or email us at [email protected].

Name That Toon: Masks and Manners
Flash Poll