Sign up to save your podcasts
Or
Share The Cybersecurity Analysis Placebo: Measuring for the Illusion of Control
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
The Cybersecurity Analysis Placebo: Measuring for the Illusion of Control
Send us a text
The adage "what gets measured gets managed" holds significant weight in cybersecurity. Organizations invest heavily in metrics, Key Performance Indicators (KPIs), and risk assessments, aiming to quantify their cybersecurity posture and demonstrate progress. However, a growing concern emerges: the "analysis placebo" effect, as highlighted by Hubbard (2014). This phenomenon suggests that the act of measuring itself can create a false sense of security, leading organizations to believe they are effectively managing risks when, in reality, they may be overlooking critical vulnerabilities.
Dr. B.
View all episodes
By Dr. Bill Souza
5
11 ratings
Send us a text
The adage "what gets measured gets managed" holds significant weight in cybersecurity. Organizations invest heavily in metrics, Key Performance Indicators (KPIs), and risk assessments, aiming to quantify their cybersecurity posture and demonstrate progress. However, a growing concern emerges: the "analysis placebo" effect, as highlighted by Hubbard (2014). This phenomenon suggests that the act of measuring itself can create a false sense of security, leading organizations to believe they are effectively managing risks when, in reality, they may be overlooking critical vulnerabilities.
Dr. B.