Episode #072: Measuring the Immeasurable: The Power and Pitfalls of Metrics in DevSecOps Artwork

Relating to DevSecOps

A Podcast dedicated to forging iron clad relationships between developers, engineers, operations, and security practitioners by discussing hot topics in the world of DevSecOps. This podcast aims to air out some of the common gripes, misconceptions, and hardships that these teams face in the real world every day.

All Episodes

Relating to DevSecOps

Episode #072: Measuring the Immeasurable: The Power and Pitfalls of Metrics in DevSecOps

August 27, 2024 • Ken Toler and Mike McCabe • Season 1 • Episode 72

Send us a text

Ken and Mike dive deep into the world of metrics and measurement in the context of security and DevSecOps. They explore the critical role metrics play in driving security improvements, from tracking vulnerabilities to gauging the effectiveness of incident response. The hosts discuss what makes a good metric, the importance of aligning metrics with business goals, and the dangers of relying too heavily on numbers alone. They also tackle the challenges of quantifying "squishy" aspects like culture and training effectiveness. Whether you're a seasoned security professional or just getting started, this episode offers valuable insights into the art and science of measurement in security

Reference talk:

https://www.youtube.com/watch?v=GXTvlQXVCOs&t=0s

People on this episode

Ken Toler

Host

Michael McCabe

Co-host