Free PDF download: ISMS Measurement – Metrics made easy  

This paper discusses key principles of effective measurement, and describes some of the common pitfalls encountered when developing and operating a measurement system under ISO 27001.   

---

Read this paper to:

• Understand which controls should be prioritised for measurement; 
• Understand the difference between measuring performance and effectiveness, and why both are necessary;  
• Learn effective methods for measuring the risk assessment process; and 
• Avoid common issues when analysing and presenting measurement results. 

Published: March 2019
Keywords: Measurement, ISO 27001, information security, management systems