Design an IT Infrastructure Security KPIs/metrics aligned with industry best practice and IT Security Strategy? its for the banking industry
Hello Maximilian,
There are actually too many strategies and best practices. So the first thing to do is to understand what is your current problems/challenges and respective strategy.
Here are two KPI set focused on IT security and Data Leakage these two are typically the most common starting point.
Another idea is that KPIs are probably not what you need in the first place. Let’s say about data leakage problems, probably you can find some way to measure the number of accidents, but what is more important is to develop action plan that will address (preferably proactively) security problems.
The action plan depends on your current IT infrastructure and the problems that you face, and the security solutions that you want to use… in simple words this defines a business context of the security problem. Once you are clear about business context the KPIs will appear more naturally.
That’s the better approach to KPIs – first understand business context and what you are can/going to do; then find KPIs that will help you to stay on the right track.
Having all these ideas and facts in mind might be tricky, so have a look at BSC Designer software that will help to manage with KPIs, strategy maps, and get all these things together.