(Editor’s note: This is the 39th installment of a monthly column on the growing number of cyberthreats facing businesses of all sizes and what they can do about them. See previous installments here.)
On Business Security Weekly, the weekly podcast that I co-host, we recently covered an article on a topic that business leaders should pay attention to. In this article, Rich Seiersen, chief risk technology officer at the cyber vulnerability management company Qualys, talked with a group of senior executives about a parallel between modern cybersecurity and the data-driven revolution in baseball known as “Moneyball.”
Before the Moneyball strategy existed, teams drafted players based on more conventional metrics such as batting average, stolen bases and tactical metrics. While these metrics are noticeable, they didn’t associate directly with winning games. The Oakland A’s, under general manager Billy Beane, changed the analytics of the game by using deep, non-obvious statistical analysis to find undervalued players whose skills added up to victories.
For decades, cybersecurity culture has been using “pre-Moneyball”…
