We have started this blog to enhance the SecurityMetametrics website and support both our book (due out in August) and the global community of professionals using, trying, or intending to use metrics to measure and improve information security.
This blog, like the website and the discussion forum, is brand new and will take a while to get up to speed, but we hope it will soon start to deliver real value. We have some great material to share with you, and definitely welcome your feedback comments and improvement suggestions. The field of security metrics is wide open for creative, innovative approaches, academic input and practical experience. As the field slowly matures, join us as we do our level best to nudge things along in the right direction.
We'll kick off by releasing our first "metric of the week" on Monday ...