The Cloud Security Alliance published a whitepaper on “Improving Metrics in Cyber Resiliency” The report is designed to help businesses develop metrics to measure security threats before they escalate and recover after attacks hit. The report argues publishing ETIF and ETIT would drive innovation for intrusion detection systems. It claims IDS companies should calculate and report ETIF instead of the organizations hit with attacks, saying this would standardize the forensic process and lead to the development of tools to define and measure the start of an attack.”]
Source: https://www.darkreading.com/cloud/cloud-security-alliance-offers-metrics-for-cyber-resiliency