Is your information security program data-informed or suffering from analysis paralysis? Good data is a crucial conversation starter for decision making, yet understanding, collecting, and applying data to measure and improve an institutional information security program can be challenging.

By engaging in this online event, you will:

• Understand the difference between a measure, a metric, and a benchmark
• Learn about information security metrics generally and different types of metrics
• Understand how to use data to create metrics
• Learn how to use insights gained from metrics to inform information security decision making
• Receive resources to measure information security program capability

Is This Event for You?

This online event will bring together a variety of higher education IT professionals to explore the use of institutional metrics to improve information security activities. The session will be valuable for:

• CIOs and associate CIOs
• CISOs and information security staff
• CDOs and IT assessment staff
• CROs and risk management staff
• Operational IT staff

You will receive the greatest value from this online event if you attend as member of a team or host a group event on your campus. Team participation can help your institution advance a current or upcoming project and promote cross-departmental collaboration. Active discussion and engagement builds rapport and enriches collaboration for team members, and by sharing a common learning experience, they can reflect on the implications for their institution.

How You Will Prepare

Please review the resources provided to help you frame discussions locally and organize team participation around the event. We recommend teams consider the ways they can interact both inside the online learning environment and as a team with colleagues at their institution.

Virtual Event Agenda

• Prep Work: Understanding Metrics
• Get Started: Creating InfoSec Metrics
• Learn from Your Peers: Metrics Success Stories
• Look Forward: Metrics to Elevate Information Security Maturity

Virtual Event Components

• Presentation Sessions: These sessions are designed to provide an overview of specific topic areas immediately followed by opportunities to interact with session presenters.
• Panel Discussion: This series of campus contingency response experiences is presented in a panel format followed by an opportunity to ask questions of each of the panelists.
• Activities/Discussions: A group activity will focus on the session theme and associated challenges and opportunities.

Online Learning Space

Presentations are delivered live inside an online learning space designed to promote interaction between the presenters and participants and deep exploration of the content. Participants will have ample opportunity to pose questions to experts and their colleagues, review institutional examples, and learn about current practices.