Rating a Company's Security Effectiveness -- Security Today

Rating a Company's Security Effectiveness

By Ginger Hill
May 26, 2015

It’s easily a billion-dollar industry that we are a part of, and it produces gobs of metrics and data that is supposed to demonstrate its effectiveness. I’m speaking of the security industry; however, it seems that some organizations have trouble analyzing their security efforts to determine if they are producing the results wanted. Needless to say, breaches are inevitable, so how do organizations measure their security’s effectiveness?

Many organizations spend their time counting the number of alerts and breaches. This data is easily plotted onto a graph so the company can analyze if the number of breaches goes up or down within an established time period. But, this really doesn’t say much about the actual security tools that are being deployed.

Here are three qualitative approaches to help organizations understand their networks:

Average time to respond: how quickly a company’s security team is able to respond to a breach or issue. Obviously, the quicker the better.
Time to repair: clarifies how quickly and accurate a security risk is mediated.
Dwell time: how long an attacker is on a company’s network.

Incorporating these three approaches into a company’s security plan provides real insight on how to prepare and plan as well as contain and control threats to minimize overall damage.

About the Author

Ginger Hill is Group Social Media Manager.

Featured

Community-Led Video Security Network Transforms Pennsylvania City Public Safety

A community-supported video security initiative has transformed public safety in Lancaster, Pennsylvania. The citizen-led collaboration demonstrates how open platform video technology can help revitalize struggling urban areas. Read Now
- Government
Browser-Based AI Agents: The Silent Security Threat Unfolding

Some of the most revolutionary advances in artificial intelligence include browser-based AI agents, which are self-sustaining software tools integrated into web browsers that act on behalf of individuals. Read Now
- Cybersecurity
Report: Cybercriminals Abandon Tech Tricks for Personalized Email Deception Tactics

VIPRE Security Group, a cybersecurity, privacy, and data protection company, has released its email threat landscape report for Q2 2025. Through an examination of worldwide real-world data, this report sounds the alarm on the most significant email security trends observed in the second quarter of 2025, enabling organizations to develop effective email security defenses for the remainder of the year. Read Now
- Cybersecurity
AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks

Veracode, a provider of application risk management, recently unveiled its 2025 GenAI Code Security Report, revealing critical security flaws in AI-generated code. The study analyzed 80 curated coding tasks across more than 100 large language models (LLMs), revealing that while AI produces functional code, it introduces security vulnerabilities in 45 percent of cases. Read Now
- Artificial Intelligence
- Cybersecurity
Unlocking the Possibilities

Security needs continue to evolve and end users are under pressure to address emerging risks and safety concerns. For many, that focus starts with upgrading perimeter openings and layering technologies—beginning at the door. Read Now
- Access Control
- Dealers and Integrators

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

A8V MIND

Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.
QCS7230 System-on-Chip (SoC)

The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge.
Unified VMS

AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities