Developing Quantifiable Metrics for Security Programs

May 17, 2024

Welcome to Security Sessions Podcast by Compyl, Season 2, Episode #4: “Developing Quantifiable Metrics for Security Programs”

Organizations today face the critical challenge of implementing robust security measures and effectively measuring their impact. As we move into 2024, this challenge becomes increasingly complex, with heightened scrutiny from boards and regulatory bodies demanding clearer insights into an organization’s security posture. The need for quantifiable metrics in information security programs is paramount to safeguarding against threats and securing necessary funding and support from decision-makers.

The core of this issue lies in developing and implementing metrics that accurately reflect the effectiveness and efficiency of security initiatives. These metrics must be carefully aligned with the organization’s specific security goals and overall business objectives. They serve a dual purpose: firstly, as a tool for internal assessment and continuous improvement of the security program, and secondly, to communicate the program’s value and needs to non-technical stakeholders, including executive boards and investors.


Stas Bojoukha, CEO and Founder of Compyl

Allan Alford, CEO of Alford and Adams Consulting


Daniel Tangney

Disclaimer:This podcast and website do not necessarily represent the opinions of Compyl employees and their guests to the show and website. The content provided is for informational purposes only, Views and opinions expressed in the video webinar series, podcasts, and website are our own and do not represent that of our places of work. While we make every effort to ensure that the information we are sharing is accurate, we welcome any comments, suggestions, or corrections of errors.

Monitoring thousands of environments daily
By clicking “Accept”, you agree to the use of cookies on your device in accordance with our Privacy and Cookie policies