All disciplines need to be able to demonstrate added value and track the ability to improve upon the current practices. The board, technical management, auditors, and engineers may each need a different view of the security initiatives performed. Join this podcast to how different metrics can be applied to different groups so each can improve their performance over time.
To view the article from the CISO COMPASS Book that sparked this interview, please visit: https://securityweekly.com/wp-content/uploads/2021/04/CISOCOMPASS_Edward_Marchewka_Article.pdf
Marchewka, E. 2019. Security Metrics to Measure Program Effectiveness. In CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers, 1st Ed, pg 167. Fitzgerald, T. CRC Press, Boca Raton, Fl. www.amazon.com/author/toddfitzgerald.
This segment is sponsored by Cybereason. Visit https://www.cybereason.com/cisostories to learn more about them!Full Episode Show Notes
Stop Reporting Useless Security Metrics!!
Edward Marchewka - Founder at CHICAGO Metrics
Edward is the Founder and Creator of CHICAGO Metrics®, a platform to help manage your company's key IT and Information Security risks enabling you to tell a better story. He also serves as the VP of IT and Quality Services, & Strategic Planning for Gift of Hope Organ & Tissue Donor Network. Before joining Gift of Hope Edward was the Enterprise Information Security and Server Operations Manager (CISO) for Chicago Public Schools, the third-largest school district in the country. Edward holds active certifications from: (ISC)2, ASQ, ITIL, PCI, PMI, Microsoft, and CompTIA. He is a member of (ISC)2, PMI, ASQ, AITP, ISACA, SIM, and President Emeritus of the InfraGard Chicago Members Alliance.
Todd Fitzgerald - Vice President, Cybersecurity Strategy at Cybersecurity Collaborative
Todd Fitzgerald has built information Fortune 500/large company security programs for 20 years. Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.