Sign up to save your podcasts
Or
Share Richard Seiersen - Author Of The Metrics Manifesto
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Richard Seiersen - Author Of The Metrics Manifesto
Dale Peterson interviewed Richard Seiersen, author of new book The Metrics Manifesto: Confronting Security With Data.
- For security controls - what would I see that would show me it is working? How do I measure the effectiveness and efficiency of my security controls?
- Why is so much of the book code, and can the book be valuable if you don't go through the code?
- A lot of time spent on categories of metrics: burndown and survival, arrival and escapes, and wait time
- Most of the examples in the book are vuln prevention and remediation ... how will the statistics deal with increases due to SBOMs? ... how to address vulnerabilities with very different related risk?
- How to address the CISO wanting a single dashboard with OT and IT metrics with very different risk related to those metrics?
- The concept of value of / return on control and how some CISOs are dealing with cyber risk
- Using SME beliefs as data
- and a lot more
Links
- The Metrics Manifesto
- The book's site with code and other info
- Richard Seiersen's S4x18 video: How To Measure Anything In Cybersecurity Risk
View all episodes
By Dale Peterson: ICS Security Catalyst and S4 Conference Chair
4.9
1414 ratings
Dale Peterson interviewed Richard Seiersen, author of new book The Metrics Manifesto: Confronting Security With Data.
- For security controls - what would I see that would show me it is working? How do I measure the effectiveness and efficiency of my security controls?
- Why is so much of the book code, and can the book be valuable if you don't go through the code?
- A lot of time spent on categories of metrics: burndown and survival, arrival and escapes, and wait time
- Most of the examples in the book are vuln prevention and remediation ... how will the statistics deal with increases due to SBOMs? ... how to address vulnerabilities with very different related risk?
- How to address the CISO wanting a single dashboard with OT and IT metrics with very different risk related to those metrics?
- The concept of value of / return on control and how some CISOs are dealing with cyber risk
- Using SME beliefs as data
- and a lot more
Links
- The Metrics Manifesto
- The book's site with code and other info
- Richard Seiersen's S4x18 video: How To Measure Anything In Cybersecurity Risk
More shows like Unsolicited Response
View all
Security Now (Audio)
1,966 Listeners
Risky Business
360 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
628 Listeners
Hacked
180 Listeners
CyberWire Daily
1,014 Listeners
Click Here
395 Listeners
Darknet Diaries
7,862 Listeners
Cybersecurity Today
167 Listeners
The Industrial Security Podcast
20 Listeners
@BEERISAC: OT/ICS Security Podcast Playlist
7 Listeners
Cyber Security Headlines
117 Listeners
(CS)²AI Podcast Show: Control System Cyber Security
2 Listeners
Ukraine: The Latest
1,755 Listeners
Det Store Bildet
10 Listeners
Risky Bulletin
33 Listeners