ABSTRACT
Aside from the issue of which metrics you select, the way in which metrics are used can make a huge difference to the effectiveness of your information security measurement system. Because it would be a terrible shame to see all your hard work go to waste, this chapter offers guidance on how to position and use metrics more effectively.
