The Fault in Our Metrics - Rethinking How We Measure Detection and Response

Explore a thought-provoking 41-minute Black Hat conference talk that challenges conventional approaches to measuring detection and response capabilities in cybersecurity. Discover why traditional metrics can be misleading and potentially harmful to progress. Learn how to develop a new framework for metrics that accurately reflects the value of modern detection and response efforts. Gain insights into creating a compelling narrative for leadership, incentivizing meaningful progress, and making data-driven decisions. Acquire practical techniques for gathering impactful data through micro-purple testing and visualizing metrics in engaging ways. Walk away with a fresh perspective on evaluating cybersecurity effectiveness and a new maturity model to guide your organization's detection and response capabilities.

The Fault in Our Metrics: Rethinking How We Measure Detection & Response