Summary
In this chapter, we learned how to select metrics that are meaningful to the operational and strategic needs of the organization for detection engineering teams. We also located different sources of data that could be used to complete our reporting requirements for the selected metrics. We examined the different ways to produce various metrics, using Splunk. Then, we analyzed approaches of visualization and interaction. Finally, we ended the chapter with a hands-on lab to track metrics based on workflow management.
In our upcoming chapter, we’ll discover how to incrementally apply our learned skills in achievable patterns based on team maturity.
