Measuring What Matters Workshop Report
February 2015 • Technical Note
Katie C. Stewart, Julia H. Allen, Michelle A. Valdez, Lisa R. Young
This report describes the inaugural Measuring What Matters Workshop conducted in November 2014, and the team's experiences in planning and executing the workshop and identifying improvements for future offerings.
Publisher:
Software Engineering Institute
CMU/SEI Report Number
CMU/SEI-2015-TN-002
DOI (Digital Object Identifier):
10.1184/R1/6575462.v1Abstract
This report describes the inaugural Measuring What Matters Workshop conducted in November 2014, and the team’s experiences in planning and executing the workshop and identifying improvements for future offerings. The Measuring What Matters Workshop introduces the Goal-Question-Indicator-Metric (GQIM) approach that enables users to derive meaningful metrics for managing cybersecurity risks from strategic and business objectives. This approach helps ensure that organizational leaders have better information to make decisions, take action, and change behaviors.
Related Podcast: A Workshop on Measuring What Matters
Related SEI Training Course: Measuring What Matters: Security Metrics Workshop