Infosecurity: HP has announced a new consulting services practice, named HP Security Metrics Services, an initiative to provide data that can deepen executive-level security engagement by demonstrating how specific security risks directly imperil business objectives.
The methodology is data-driven, using an organization’s existing sources of security data to set parameters that give stakeholders a clear alert when their business objectives are at risk. The idea of course is to enable enterprises and other entities to determine their overall risk posture, but also to proactively address security risks before they impact their business. When threats or incidents impact stakeholder objectives, IT departments want to quickly identify the source of the risk to make timely decisions on how to address the threat.