Abandoned Traditional Security Metrics
Corporates & Governments
An interesting argument made by Joshua Corman during the conference debate “Metrics are Bunk!?: A Zombie Apocalypse, Football/Soccer & Security Metrics” at the RSA Conference on October 13th 2011 is strongly convergent with Satorys’ position that security intelligence must be empirically extracted from real-life data, rather than dogmatically devised from theoretical studies.
We add that the “observe, orient, decide and act” loop must underly a real-time Incident Management workflow whereby intelligence is gathered in real-time and relies on deterministic risk behaviour identification.
Enterprises will spend more on outsourced security services in the next few years, according to Gartner Forecast: Security Service Market, Worldwide, 2011.
“This is largely driven by organizations looking at managed security services (MSS) providers such as Satorys as a way to maximize resources and lower ongoing operating expenditures on security”.