Starter content for the ask-question category for the upcoming app.
CISOs currently have difficulty demonstrating the value of the organization’s security program to other executives as well as board members. Additionally, meaningful performance indicators do not exist to inform executive leadership and the board of the resilience of the organization’s security posture nor do indicators exist to provide focus on the "day-to-day" tasks that are a priority.
Does Splunk have Security Metrics App covering Network, Endpoint, and Vulnerability focused dashboards?
- Mean time to Detect
- Mean time to Investigate
- Mean time to Respond
- Trend of the Mean time to detect/respond/investigate
- % of incidents detected within the organizations SLA's
- % of incidents investigated within the organizations SLA's
- % of incidents respond within the organizations SLA's
- Trend of # 5,6, and 7
- ES Notables last 24 hrs
- Risk notables last 24 hrs
- Trend of 9 and 10
- ES notables abandoned last 24 hours
- Risk notables abandoned last 24 hrs
- Trend of 12 and 13
#splunk_security_metrics
—
Mayur @ Splunk | GSS FDSE | Personal: https://mayur.pipaliya.com/
If this reply helps you, Karma would be appreciated.
