59% of IT Professionals Say Security Metrics Are Too Complicated
A survey by Tripwire, Inc., and the Ponemon Institute reveals that while 75 percent of respondents say metrics are ‘important’ or ‘very important’ to a risk-based security program, 53 percent don’t believe or are unsure that they are used in their organizations are properly aligned with business objectives.
In addition, 51 percent didn’t believe or are unsure that their organizations metrics adequately convey the effectiveness of security risk management efforts to senior executives