Free PDF download: ISMS Measurement: Metrics made easy
This paper discusses key principles of effective measurement, and describes some of the common pitfalls encountered when developing and operating a measurement system under ISO 27001.
Read this paper to:
- Understand which controls should be prioritised for measurement;
- Understand the difference between measuring performance and effectiveness, and why both are necessary;
- Learn effective methods for measuring the risk assessment process; and
- Avoid common issues when analysing and presenting measurement results.