search menu icon-carat-right cmu-wordmark

Building a Security Metrics Program

In this podcast, Betsy Nichols explains that reporting meaningful security metrics depends on topic selection, context definition, and data access.

Software Engineering Institute



Selecting and reporting meaningful security metrics depend on picking topics of great interest, defining the business context, and having access to sound data.

About the Speaker

Betsy Nichols (PlexLogic)

Betsy Nichols is a serial entrepreneur who has applied mathematics to develop solutions in satellite mission optimization, industrial process control, war gaming, economic modeling, enterprise systems and network management, and most recently security metrics. Prior to starting PlexLogic, Nichols founded two other software companies in the roles of CTO and …

Read more
Headshot of Julia Allen.

Julia H. Allen

Julia Allen is an SEI alumni employee.

Julia Allen is a principal researcher within the CERT® Division at the Software Engineering Institute (SEI), a unit of Carnegie Mellon University in Pittsburgh, PA. Allen’s areas of interest include operational resilience, security governance, and measurement and analysis. Prior to this technical assignment, …

Read more