With cyberattacks on the rise, today’s security professionals are relying primarily on detection metrics – both key performance indicators (KPIs) and key risk indicators (KRIs) – as the primary means to measure the success of their security programs. However, focusing on detection metrics alone is not enough to fully optimize organizational productivity and security over time.
A debate has risen over how to balance two keys to organizational success: security and business efficiency. Enterprises today are challenged with prioritizing security, while also ensuring operational and financial success. While organizations want to provide end users with tools that are accessible, fast and efficient, we often see that security measures can encroach on these qualities.
Read the rest of the article on HelpNet Security: Business efficiency metrics are more important than detection metrics.