Summary
In this chapter, we understood the importance of cybersecurity-related KRIs. We discussed how an organization should embark on this journey of setting up measurable and reliable indicators for themselves. We also spoke of automation and how some tools can be used to help the blue team operationalize this work and get the most out of this process.
Then, we looked at how the management team can keep a finger on the pulse of their organization to ensure its security is being measured effectively, as well as to ensure that the progress of the metrics is healthy and progressively improving as the threats and trends of the industry change.
In the next chapter, we will understand how risk assessments should be conducted in an organization and how they could be of benefit to the blue teams.