Posted by: Jeromie Jackson
Balanced Scorecards, BSC, Credit Union National Association, CUNA, information security, IT risk, Kaizen, Management by Measurement, risk assessment, risk management, security assessment, six sigma, Strategy maps
In 2007 I wrote an article which appeared in Credit Union Magazine, as well as the Credit Unions Security Association (CUNA) Council forums. Titled “Risk is Measurable,” the article describes using a quantitative approach leveraging Simple, Measurable, Attainable, Repeatable, & Timely (SMART) Key-Performance Indicators (KPIs).
A couple of years have gone by, and it is still only the more progressive security executives and custodians are leveraging KPIs to trend and mature their information security posture. Information is power. I recently read “IT Risk,”and would highly recommend it. The book takes a executive level approach to discussing, dissecting, and simplifying information security. With all the technical jargon we have within the security industry, it is quite a feat! I would highly recommend this book to any executive looking to get their arms around information security, or for upcoming security practitioners seeking an executive chair at some point in their career.