Introducing a framework for security measurements

Nowadays it is obvious that a modern management would not be accessible unless it approaches to some effective indicators on the efficiency and the performance of the organization. The process to make the best decision is highly depended on the organization quality indicators. One of the requirements of the Chief Information Security Officer, CISO, is to specify a better security establishment of the organization strategy by using a security management dashboard. The exclusive characteristics of the security do not allow considering a static and a predefined criterion to represent quantitatively the security status of the organization. The quantitative representation of the security in an organization is related to fluid parameters that must be received and processed from various units as the input of a framework and be set as dashboard output. In this paper we introduce a new approach to measure the security of organization with a recommended framework. This would be an interface system named SM-Framework acts as a system management which yields in the figures of merit of an organization security. Finally we have given, numerically and graphically, the level of security in different times for an organization.