Leveraging Security Metrics in Your Organization

Focused View

Caroline Wong

46:56

0 View

[1] Introduction

[1] Why are security metrics important.mp4

01:32

[2] 1. Why Cybersecurity Practitioners Need Metrics

[1] Cybersecurity is hard to measure.mp4

02:53

[2] Cybersecurity investment.mp4

04:19

[3] Define success for a cybersecurity program.mp4

03:51

[4] Cybersecurity program maturity.mp4

03:33

[3] 2. Know Your Audience

[1] The executive mindset.mp4

04:43

[2] The business mindset.mp4

03:21

[3] The technical leadership mindset.mp4

04:04

[4] 3. Risk Management Objectives

[1] Defining a risk management objective.mp4

04:22

[2] How to use a risk management objective.mp4

01:34

[3] Examples of risk management objectives.mp4

03:10

[5] 4. Example Cybersecurity Metrics

[1] Incidents detected internally vs. externally.mp4

02:44

[2] Security NPS.mp4

03:17

[3] Fixes implemented within SLA.mp4

02:26

[6] Conclusion

[1] Apply security metrics.mp4

01:07

Description

In most areas of business, specifics matter. This is especially true in the area of cybersecurity. If you’re a cybersecurity professional, you’ll have a very short career if the best answer you can come up with to security questions is “I think everything is pretty secure.” You need metrics and hard data to effectively communicate the value of your security programs and activities. In this course, Caroline Wong gives you a tried-and-true approach for customizing metrics that you can use to communicate the objectives and progress of your team’s cybersecurity initiatives. Caroline starts with an overview of the value of metrics, then covers the different ways you communicate cybersecurity topics to different groups like executives, business leaders, and engineers. She also covers risk management objectives, and finishes the course by going over examples of a number of important cybersecurity metrics.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Cyber Security

Caroline Wong

Instructor's Courses

I am a strategic leader with strong communications skills, cybersecurity knowledge, and deep experience delivering global programs. My practical information security knowledge stems from broad experience as a Cigital consultant, a Symantec product manager, and day-to-day leadership roles at eBay and Zynga. I authored the popular textbook Security Metrics: A Beginner's Guide. My writing is also featured in Epic Failures in DevSecOps Vol. 1, CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers, Cybersecurity Career Guide: Who Works in Cybersecurity, How We Got Started, Why We Need You, and IT Security Metrics: A Practical Framework for Measuring Security & Protecting Data. I host the Humans of InfoSec Podcast: https://soundcloud.com/humans-of-infosec Speaking engagements include: • Global AppSec DC (2019) • RSA USA (2019, 2018, 2017, 2014, 2013, 2011, 2010) • Developer Week (2019, 2018) • Source Phoenix-Mesa (2018) • SnowFROC (2018) • IoT Tech Expo NA (2017) • DevOps Enterprise Summit (2017) • DevSecCon Boston (2017) • BSidesLV (2017) • OWASP AppSec Cali (2018, 2017, 2016) • O'Reilly Security NY (2016) • CIO Asia (2012) • Metricon 7.0 (2012) • Security Development Conference (2012) • ISC2 Security Congress (2011) • ITWeb Security Summit (2011) • RSA Europe (2010)

Linkedin Learning

View courses Linkedin Learning

LinkedIn Learning is an American online learning provider. It provides video courses taught by industry experts in software, creative, and business skills. It is a subsidiary of LinkedIn. All the courses on LinkedIn fall into four categories: Business, Creative, Technology and Certifications. It was founded in 1995 by Lynda Weinman as Lynda.com before being acquired by LinkedIn in 2015. Microsoft acquired LinkedIn in December 2016.