1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

BrandPost: Measuring the effectiveness of your vulnerability management program

Discussion in 'CSO' started by RSS, Mar 24, 2015.

  1. RSS

    RSS New Member Member

    Over the years there has been lots of discussion and points of view surrounding security metrics and how to measure the effectiveness of a vulnerability management program. In fact, the Center for Security has even laid out a framework for security metrics developed by an expert panel in an effort to help organizations determine and validate security strategies.

    In 2004 Qualys first began anonymously using the accumulated vulnerability scan data received from its customers to identify key, quantifiable attributes or metrics to help companies drive strategies for protecting networks, systems and data. These metrics have become known as the “Laws of Vulnerabilities” and are comprised of the following four key measures:

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page