《超越点击率.pdf》由会员分享,可在线阅读,更多相关《超越点击率.pdf(20页珍藏版)》请在三个皮匠报告上搜索。
1、B e y o n d C l i c k R a t e sU s i n g H o l i s ti c Me t r i c s t o D r i v e S e c ur i t y A w a r e n e s s S uc c e s sSarah Kate ThomasDirector of Information Security,The New York TimesA g e n d a Why Metrics Matter Building Holistic Metrics Metrics as a Feedback Loop Whats NextWh y Me t
2、r i c s Ma tt e rbut they are not easy to build.Unique to each organizationMany,many data sourcesVarious approaches and ways to slice the dataOverwhelming!We k n o w m e t r i c s m a tt e r A comprehensive metric program is great Impact of security awareness program across an organizationProvides b
3、enchmarking and success metrics for goalsCan show need for additional resourcesWhen aggregated,metrics can serve as a feedback loop to illustrate training and engagement effectiveness and gaps in a training program.B ui l d i n g H o l i s ti c Me t r i c sMe t r i c s 1.0 -C R MWe started with a ba
4、sic customer relationship management(CRM)database on Airtable-something to track our 1:1 and live training engagement with staff.Each time someone on our team meets with an employee or leads a training,they fill out a form with the basics-date,employees,resources shared,topic types,short summary of
5、engagement,etc.Needed:access to export of employee directory;database or sheets softwareOutcomes:comprehensive list of engagements;insight into topic types;can see engagement trends over timeMe t r i c s 2.0 -t o o l a d o p ti o nWe quickly started importing user status exports from our various sec
6、urity tools-password manager,VPN,secure file sharing tools-to the Security Engagement Database.With this new data,its easy to see tool adoption broken down by department or job function-something thats not easy to see in an admin console.We also can look at adoption progress over time and adoption r