Measures and Metrics in Corporate Security is a focused and thought-provoking resource that delves into the alignment of security metrics with broader business objectives. Unlike books that merely offer exhaustive lists of metrics, this work emphasizes the critical thinking required to…
As a PhD with extensive experience in the fields of security and program management, my perspective on Security Metrics, A Beginner’s Guide is nuanced. The book adopts a program management standpoint almost from the outset, which may feel limiting to readers looking…
PRAGMATIC Security Metrics: Applying Metametrics to Information Security is a thoughtful and practical guide for security professionals striving to develop a metrics and measurement framework that provides actionable visibility into their organization’s security posture. This book became an invaluable part of…
Threat Modeling: Designing for Security by Adam Shostack, published by Wiley in February 2014, offers a comprehensive guide to the principles and practices of threat modeling. With 569 pages of in-depth content, it aims to equip readers with tools and methodologies…