Metrics will conquer cybersecurity monster

December 9, 2010 — The Center for Internet Security is wired in to many federal and commercial cybersecurity interest groups. It is trying to establish universal metrics for cybersecurity functions, such as patch management or continuous monitoring.

With metrics adaptable to each organization’s circumstances, CIS leaders believe cybersecurity could become a more predictable and measurable function.

This week’s Federal Security Spotlight talks to Steve Piliero, the chief technology officer of CIS. He gives the details of how cybersecurity metrics can work.