Cybersecurity leaders are required to predict what a good system looks like, and if what they have in place is good enough to safeguard their businesses. Without a crystal ball, most of them find out how secure their companies are only when a breach, a leak or a system compromise happens. In this session, take a deep dive into the metrics your peers are using to identify if their organisations are secure. You will also explore if these metrics are effective and, if so, how effective. How do your peers know if ‘enough’ is being met? Moreover, how are they reporting the measurements back to the board to ensure the IT and Security teams havethe necessary support from the organization as a whole?