Security incident response metrics
Within my current assignment I faced with a question:
What metrics and KPIs could be established to measure performance of the company's CERT?
or may be there could be some kind of SLA which is structured by incidents significance? (e.g. service level could be measured by time of first reaction on incident, or time to establish the case, or time to make initial containment of the threat). Please advise what metrics and KPIs you use, or could be used.
You must sign in to rate content.
You must login to leave a comment.