What are you using to collect, calculate, and report security KPIs?
Hi everyone;
I've been looking around and haven't found a tool that lets you actually define and track your own KPIs. Not control compliance I mean real KPI tracking: define the metric, track it over time, report on it.
Everything I find is either a GRC tool (compliance-focused, not KPI-focused) or a BI tool you have to bend into shape yourself.
What's actually working for people here? Spreadsheets, Grafana, something built in-house, a GRC tool that secretly does this well?