Chapter 5

Measuring Performance


Bullet Recognizing the hidden costs of awareness efforts

Bullet Fulfilling compliance requirements

Bullet Assessing engagement

Bullet Gauging whether your efforts are paying off

Bullet Helping clients see the value of your program

Bullet Testing with social engineering and phishing simulations

Bullet Recognizing the value of Day 0 metrics

As an awareness program proceeds, no matter what the awareness program involves, security incidents will occur — you can count on it. In response, people, including the managers who determine your budget, may assume that awareness has done little to improve security. At best, the manager may keep the program going just because awareness is “nice to have.”

Before you can measure whether an awareness program meets its goals, you need to do a great ...

Get Cybersecurity All-in-One For Dummies now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.