Security Basics mailing list archives
Most useful security metrics in management monthly reports
From: "WALI" <hkhasgiwale () gmail com>
Date: Sat, 4 Sep 2010 17:54:46 +0400
I was thinking of creating a template for regularly capturing some information security metrics for putting together in my monthly report to executive management. Being in a non banking environment, the metrics should be more inward looking. Also, they should make sense for me too from being 'proactively screening security' perspective. Examples that come to mind, who took rights over others exchange mailbox, how many new users got assigned to active directory domain admin group in the past month, how many failed login attempts and from which workstations? etc.
The idea is to identify metrics that might relate to something that's fishy out there, not necessarily coming out of Firewalls, IPS etc.
Any advise?
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Most useful security metrics in management monthly reports WALI (Sep 07)
- RE: Most useful security metrics in management monthly reports Andy Tornquist (Sep 08)