PM-6: Information Security Measures Of Performance
Control Family:
CSF v1.1 References:
PF v1.0 References:
Baselines:
- Low
N/A
- Moderate
N/A
- High
N/A
Next Version:
- NIST Special Publication 800-53 Revision 5:
- PM-6: Measures of Performance
Control Statement
The organization develops, monitors, and reports on the results of information security measures of performance.
Supplemental Guidance
Measures of performance are outcome-based metrics used by an organization to measure the effectiveness or efficiency of the information security program and the security controls employed in support of the program.