UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ETSI - GS ISI 003

Information Security Indicators (ISI); Key Performance Security Indicators (KPSI) for the evaluation of maturity detection of security events

inactive
Organization: ETSI
Publication Date: 1 May 2014
Status: inactive
Page Count: 18
scope:

The present document defines and describes a set of Key Performance Security Indicators (KPSI) to be used for the evaluation of the performance, the maturity levels of the detection tools and processes used within organizations for security assurance. The response is not included in the scope of the present document.

In particular, the purpose of the present document is to enable organisations to:

• assess the overall maturity level of the security event detection;

• provide a reckoning formula to assess detection levels of major security events as summarized in GS ISI 001-1 [1];

• evaluate the results of measurements.

This work is mainly based on the US SANS CAG [5].

The target groups of the present document are Head of detection, reaction teams, Cyber defence team and head of security governance.

Document History

GS ISI 003
January 1, 2018
Information Security Indicators (ISI); Key Performance Security Indicators (KPSI) to evaluate the maturity of security event detection
The present document defines and describes a set of Key Performance Security Indicators (KPSI) to be used for the evaluation of the performance, the maturity levels of the detection tools and...
GS ISI 003
June 1, 2014
Information Security Indicators (ISI); Key Performance Security Indicators (KPSI) to evaluate the maturity of security event detection
The present document defines and describes a set of Key Performance Security Indicators (KPSI) to be used for the evaluation of the performance, the maturity levels of the detection tools and...
GS ISI 003
May 1, 2014
Information Security Indicators (ISI); Key Performance Security Indicators (KPSI) for the evaluation of maturity detection of security events
The present document defines and describes a set of Key Performance Security Indicators (KPSI) to be used for the evaluation of the performance, the maturity levels of the detection tools and...

References

This document references:
GS ISI 001-1 - Information Security Indicators (ISI); Indicators (INC); Part 1: A full set of operational indicators for organizations to use to benchmark their security posture
Published by ETSI on June 1, 2015
The present document provides a complete set of information security indicators (based on already existing results and hands-on user experience), covering both security incidents and vulnerabilities....
This document references:
GS ISI 001-2 - Information Security Indicators (ISI); Indicators (INC); Part 2: Guide to select operational indicators based on the full set given in part 1
Published by ETSI on June 1, 2015
The present document provides a guide to use the range of indicators provided in ETSI GS ISI 001-1 [5]. The present document is meant mainly to support CISOs and IT security managers in their effort...
This document references:
GS ISI 002 - Information Security Indicators (ISI); Event Model A security event classification model and taxonomy
Published by ETSI on November 1, 2015
The present document provides a comprehensive security event classification model and associated taxonomy (based on existing results and hands-on user experience), covering both security incidents...
This document references:
GS ISI 004 - Information Security Indicators (ISI); Guidelines for event detection implementation
Published by ETSI on December 1, 2013
The scope of the present document is to define and describe a classification of the main symptoms/use cases, which are used to detect security events listed in GS ISI 002 [i.3].
View Less
View All
Advertisement