search menu icon-carat-right cmu-wordmark

Measuring What Matters Workshop Report

February 2015 Technical Note
Katie C. Stewart, Julia H. Allen, Michelle A. Valdez, Lisa R. Young

This report describes the inaugural Measuring What Matters Workshop conducted in November 2014, and the team's experiences in planning and executing the workshop and identifying improvements for future offerings.

Publisher:

Software Engineering Institute

CMU/SEI Report Number

CMU/SEI-2015-TN-002

Abstract

This report describes the inaugural Measuring What Matters Workshop conducted in November 2014, and the team’s experiences in planning and executing the workshop and identifying improvements for future offerings. The Measuring What Matters Workshop introduces the Goal-Question-Indicator-Metric (GQIM) approach that enables users to derive meaningful metrics for managing cybersecurity risks from strategic and business objectives. This approach helps ensure that organizational leaders have better information to make decisions, take action, and change behaviors. 

 

Related Podcast: A Workshop on Measuring What Matters

Related SEI Training Course: Measuring What Matters: Security Metrics Workshop