Not C. Severity of currently unremediated vulnerabilities - vulnerabilities can be identified yesterday and still within SLA, so nothing related to performance
Proactive indicators (help us anticipate and prevent problems) are more useful that reactive ones (look back on consequences of past actions).
No. of hours spent is reactive (hence less useful), whereas severity of unremediated vulnerabilities can reveal classification, prioritization and overall management of vulnerabilities, while helping us keep our eye on the ball.
The most useful metric to display on a security dashboard to demonstrate security performance would be option C: Severity of currently unremediated vulnerabilities. This metric provides a clear indication of the existing vulnerabilities in the system and their potential impact on security. It helps prioritize the resources and efforts towards addressing the most critical vulnerabilities first. By monitoring the severity of unremediated vulnerabilities, stakeholders can gauge the effectiveness of their security measures and track the progress in mitigating potential risks.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
aokisan
Highly Voted 1 year, 10 months agoTitanD
Most Recent 1 month agoPatSnyder
1 month, 1 week agoCISSPST
1 year, 1 month agokoala_lay
1 year, 1 month agooluchecpoint
1 year, 2 months agodevilend
1 year, 4 months agorichck102
1 year, 4 months agomeelaan
1 year, 7 months agoSouvik124
1 year, 9 months agoMyKasala
1 year, 9 months ago