{"product_id":"the-metrics-manifesto-confronting-security-with-data-hardcover","title":"The Metrics Manifesto: Confronting Security with Data - Hardcover","description":"\u003cp\u003eby \u003cb\u003eRichard Seiersen\u003c\/b\u003e (Author), \u003cb\u003eDouglas W. Hubbard\u003c\/b\u003e (Foreword by)\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003eSecurity professionals are trained skeptics. They poke and prod at other people's digital creations, expecting them to fail in unexpected ways. Shouldn't that same skeptical power be turned inward? Shouldn't practitioners ask: \"How do I know that my enterprise security capabilities work? Are they scaling, accelerating, or slowing as the business exposes more value to more people and through more channels at higher velocities?\" This is the start of the modern measurement mindset--the mindset that seeks to confront security with data.\u003c\/p\u003e \u003cp\u003e\u003ci\u003eThe Metrics Manifesto: Confronting Security with Data \u003c\/i\u003edelivers an examination of security metrics with R, the popular open-source programming language and software development environment for statistical computing. This insightful and up-to-date guide offers readers a practical focus on applied measurement that can prove or disprove the efficacy of information security measures taken by a firm.\u003c\/p\u003e \u003cp\u003eThe book's detailed chapters combine topics like security, predictive analytics, and R programming to present an authoritative and innovative approach to security metrics. The author and security professional examines historical and modern methods of measurement with a particular emphasis on Bayesian Data Analysis to shed light on measuring security operations.\u003c\/p\u003e \u003cp\u003eReaders will learn how processing data with R can help measure security improvements and changes as well as help technology security teams identify and fix gaps in security. The book also includes downloadable code for people who are new to the R programming language.\u003c\/p\u003e \u003cp\u003ePerfect for security engineers, risk engineers, IT security managers, CISOs, and data scientists comfortable with a bit of code, \u003ci\u003eThe Metrics Manifesto \u003c\/i\u003eoffers readers an invaluable collection of information to help professionals prove the efficacy of security measures within their company.\u003c\/p\u003e\u003ch3\u003eFront Jacket\u003c\/h3\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003eSecurity professionals are trained skeptics. They poke and prod at other people's digital creations, expecting them to fail in unexpected ways. Shouldn't that same skeptical power be turned inward? Shouldn't practitioners ask: \"How do I know that my enterprise security capabilities work? Are they scaling, accelerating, or slowing as the business exposes more value to more people and through more channels at higher velocities?\" This is the start of the modern measurement mindset--the mindset that seeks to confront security with data.\u003c\/p\u003e \u003cp\u003e\u003ci\u003eThe Metrics Manifesto: Confronting Security with Data\u003c\/i\u003e delivers an examination of security metrics with R, the popular open-source programming language and software development environment for statistical computing. This insightful and up-to-date guide offers readers a practical focus on applied measurement that can prove or disprove the efficacy of information security measures taken by a firm. \u003c\/p\u003e\u003cp\u003eThe book's detailed chapters combine topics like security, predictive analytics, and R programming to present an authoritative and innovative approach to security metrics. The accomplished author and security professional examines historical and modern methods of measurement with a particular emphasis on Bayesian Data Analysis to shed light on measuring security operations. \u003c\/p\u003e\u003cp\u003eReaders will learn how processing data with R can help measure security improvements and changes as well as help technology security teams identify and fix gaps in security. The book also includes downloadable code for people who are new to the R programming language. \u003c\/p\u003e\u003cp\u003ePerfect for security engineers, risk engineers, IT security managers, CISOs, and data scientists comfortable with a bit of code, \u003ci\u003eThe Metrics Manifesto\u003c\/i\u003e offers readers an invaluable collection of information to help professionals prove the efficacy of security measures within their company.\u003c\/p\u003e\u003ch3\u003eBack Jacket\u003c\/h3\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003ePraise for \u003cb\u003eThe Metrics Manifesto\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\"We all collectively and urgently need to improve cybersecurity metrics and outcomes, and this book eliminates common excuses that data isn't available or is too hard to interpret. Its ideas are specific and can be actioned upon quickly by cybersecurity product builders as well as CISOs.\" \u003c\/p\u003e\u003cp\u003e\u003cb\u003e--ANN IRVINE, \u003c\/b\u003e Chief Data Scientist, Resilience Insurance \u003c\/p\u003e\u003cp\u003e\"Richard has pushed boundaries again, this time in how to think about the performance of security versus just the deployment of security. Understanding our attack surface and how we are actually exposed takes a new way of thinking, and \u003ci\u003eThe Metrics Manifesto\u003c\/i\u003e is that playbook.\" \u003c\/p\u003e\u003cp\u003e\u003cb\u003e--SEAN CATLETT, \u003c\/b\u003e Chief Security Officer, Slack \u003c\/p\u003e\u003cp\u003e\"Relying on heuristics or leveraging antiquated security compliance frameworks to address complex systems such as an organization's security program is no longer cutting it today. To that end, \u003ci\u003eThe Metrics Manifesto\u003c\/i\u003e is not simply a cookbook for security metrics, but also an eloquent and effective framework to help manage cyber security risks in the 21st century.\" \u003c\/p\u003e\u003cp\u003e\u003cb\u003e --MARIO DUARTE, \u003c\/b\u003e Vice President, Security, Snowflake \u003c\/p\u003e\u003cp\u003e\"This is a must-read for anyone looking to start or mature a security metrics program. Richard Seiersen's unique brand of storytelling, wit, and domain expertise once again makes a complex subject accessible and easy to understand for security practitioners and business leaders alike.\" \u003c\/p\u003e\u003cp\u003e\u003cb\u003e-- TONY MARTIN-VEGUE, \u003c\/b\u003eSociety of Information Risk Analysts (SIRA) board member and Chair of the San Francisco chapter of the FAIR Institute \u003c\/p\u003e\u003cp\u003e\"As the quip goes, in God we trust, all others must bring data. Richard's manifesto is a must-read for those who embrace this philosophy and want to apply it to an oft-misguided belief that our security controls work as intended.\" \u003c\/p\u003e\u003cp\u003e\u003cb\u003e-- SOUNIL YU, \u003c\/b\u003eCISO, JupiterOne; Former Chief Security Scientist, Bank of America; and Creator of the Cyber Defense Matrix \u003c\/p\u003e\u003cp\u003e\u003ci\u003e\"The Metrics Manifesto\u003c\/i\u003e helps to answer that ever important question of 'How do you know?', not beyond the shadow of a doubt but in direct confrontation and embracement of doubt. It's a toolkit for any defender looking to advance from safe to safe(ER), moving beyond hope as a strategy and landing squarely into the capability of trust AND verify.\" \u003c\/p\u003e\u003cp\u003e\u003cb\u003e-- ANNE MARIE ZETTLEMOYER, \u003c\/b\u003e Vice President, Security Engineering, Payments Industry\u003c\/p\u003e\u003ch3\u003eAuthor Biography\u003c\/h3\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cb\u003eRICHARD SEIERSEN\u003c\/b\u003e is Chief Risk Officer at Resilience Insurance. He is a technology executive with 20 years of experience in information security and risk management. Seiersen has held CISO roles at Twilio, LendingClub, and GE Healthcare and was Co-Founder of Soluble, which was sold to Lacework in 2021. He's also an active security startup advisor and consulting faculty member with IANS on cybersecurity risk management.\u003c\/p\u003e\u003cdiv\u003e\n\u003cstrong\u003eNumber of Pages:\u003c\/strong\u003e 320\u003c\/div\u003e\u003cdiv\u003e\n\u003cstrong\u003eDimensions:\u003c\/strong\u003e 1.26 x 9.21 x 6.06 IN\u003c\/div\u003e\u003cdiv\u003e\n\u003cstrong\u003ePublication Date:\u003c\/strong\u003e May 10, 2022\u003c\/div\u003e","brand":"Books by splitShops","offers":[{"title":"Default Title","offer_id":51772717138208,"sku":"9781119515364","price":39.95,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0974\/9764\/5344\/files\/bc5e969df35eeeffa8b4fb3e7294f14c.webp?v=1780412351","url":"https:\/\/ebocreations.com\/products\/the-metrics-manifesto-confronting-security-with-data-hardcover","provider":"The E-Book Oasis LLC","version":"1.0","type":"link"}