2024-08-30 –, Track 1
Are you measuring what truly matters? This session provides a recipe. Identifying and prioritizing actionable KPIs to improve cloud security operation and communicate security value to the leadership.
As cloud security operations mature within the organisations, implementing effective metrics is vital for measuring cloud security posture and operational readiness. Organisations often face challenges in tracking security metrics without incurring resource overheads. This talk discuss examples of both potentially effective and ineffective metrics based on real-life experiences, tailored to various business scenarios and risk appetite. We will explore how to prioritize metrics that inform leadership and drive continuous improvement in cloud security posture. The session also introduces concepts and models like the Casual Loop diagram for identifying key metrics and Protection Level Agreements (PLAs) for building effective KPIs. The goal is to not only measure but enhance cloud security operations, empowering teams to identify cloud security metrics truly matter to their business.
Emma is a Senior Manager, Cloud Security Architect at EPAM Systems, with a specialized focus on cloud security and DevSecOps. In her role, she designs and architects security solutions for consulting projects in cloud transformation and software development. Formerly at Microsoft, she delivered cybersecurity projects and technical workshops to a diverse range of clients from tech startups to established FTSE 100 firms. Alongside her professional work, Emma is dedicated to advocate for a more diverse workforce in cybersecurity through mentorship and community programs. She volunteers as the Executive Lead at WiCyS UK&I, and serves as a member of Industry Advisory Board and guest speaker at the University of Buckingham.