I am doing an analysis and writing a white paper for RSA that is currently entitled The Critical Incident Response Maturity Journey. I am interested in how organizations measure their maturity/performance. If you could share any key metrics that you use to measure how you are doing with incident detection, investigation, and response, I would be very interested in hearing a little about them.
