Enterprise networking vendor HP today said its new consulting services will assist clients to take data-driven decisions about the management information-security risk.
HP Security Metrics Services, a patent-pending methodology and framework, utilize enterprise’s existing sources of security data, set parameters to offer clear alert when their business objectives are at risk, and enable them to determine their overall risk posture.
When threats or incidents impact stakeholder objectives, users can quickly identify the source of the risk and make timely decisions to address the threat, HP said.
A Ponemon Institute survey says 75 percent of respondents indicated that metrics are important or very important to a risk-based security program.
HP said organizations can prioritize their business objectives and processes and correlate them to threats, vulnerabilities and incidents. These components are underpinned by a predefined library of security data sources, which specifies how the data is gathered and used to provide ongoing business-related risk information.
The company said HP Security Metrics Services leverage the HP Executive Scorecard software application to display critical business objectives in a user-friendly dashboard. This allows for quick security incident alerts that enable users to obtain additional detail, including processes and assets prioritized by their risk status.