Skip to Content
How to Measure Anything in Cybersecurity Risk, 2nd Edition
book

How to Measure Anything in Cybersecurity Risk, 2nd Edition

by Douglas W. Hubbard, Richard Seiersen
April 2023
Intermediate to advanced
368 pages
10h 19m
English
Wiley
Audiobook available
Content preview from How to Measure Anything in Cybersecurity Risk, 2nd Edition

CHAPTER 2A Measurement Primer for Cybersecurity

Success is a function of persistence and doggedness and the willingness to work hard for twenty‐two minutes to make sense of something that most people would give up on after thirty seconds.

—Malcom Gladwell, Outliers1

Before we can discuss how literally anything can be measured in cybersecurity, we need to discuss measurement itself, and we need to address early the objection that some things in cybersecurity are simply not measurable. The fact is that a series of misunderstandings about the methods of measurement, the thing being measured, or even the definition of measurement itself will hold back many attempts to measure.

This chapter will be mostly redundant for readers of Doug Hubbard’s previous book How to Measure Anything: Finding the Value of “Intangibles” in Business. This chapter has been edited from the original and the examples geared slightly more in the direction of cybersecurity. However, if you have already read the original book, then you might prefer to skip this chapter. Otherwise, you will need to read on to understand these critical basics.

We propose that there are just three reasons why anyone ever thought something was immeasurable—cybersecurity included—and all three are rooted in misconceptions of one sort or another. We categorize these three reasons as concept, object, and method. Various forms of these objections to measurement will be addressed in more detail later in this book (especially in ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

AirBnbBlueOriginElectronic ArtsHomeDepotNasdaqRakutenTata Consultancy Services

QuotationMarkO’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.
Julian F.
Head of Cybersecurity
QuotationMarkI wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.
Addison B.
Field Engineer
QuotationMarkI’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.
Amir M.
Data Platform Tech Lead
QuotationMarkI'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Mark W.
Embedded Software Engineer

You might also like

How to Measure Anything in Cybersecurity Risk, 2nd Edition

How to Measure Anything in Cybersecurity Risk, 2nd Edition

Douglas W. Hubbard, Richard Seiersen
How to Measure Anything in Cybersecurity Risk

How to Measure Anything in Cybersecurity Risk

Douglas W. Hubbard, Richard Seiersen, Daniel E. Geer Jr., Stuart McClure
Cybersecurity Risk Management

Cybersecurity Risk Management

Cynthia Brumfield, Brian Haugli

Publisher Resources

ISBN: 9781119892304Purchase Link