Holistic performance model for cyber security implementation frameworks

Abstract

The performance measurement process identifies if an implementation process is within acceptable thresholds. Performance measures for cyber security implementation frameworks are considered strategic controls because it can guide the implementation process. Consequently, corrective or predictive actions could be applied to resolve a security issue early in the implementation process. However, to our knowledge, there are no performance measures designed to function at the country level for cyber security implementation frameworks. As a result, cyber security strategy implementation process is left uncontrolled. To resolve this issue, this article proposes a new holistic performance model that is based on the well-known balanced scorecard. It aggregates performance measures from various entities involved in executing cyber security strategies. The inception of the proposed model draws its applicability to address performance measurement of holistic cyber security implementation frameworks.