CISSP Question #1291: Real Exam Question with Answer & Explanation

The correct answer is D: They are consistently measured and quantitatively expressed. Security metrics are measurements that are used to evaluate and improve the effectiveness and efficiency of security processes, controls, and outcomes. The best characteristics of security metrics are that they are consistently measured and quantitatively expressed, as this ensur

Submitted by salim_om· Mar 5, 2026Security and Risk Management

Question

Which of the following are the B EST characteristics of security metrics?

Options

AThey are generalized and provide a broad overview
BThey use acronyms and abbreviations to be concise
CThey use bar charts and Venn diagrams
DThey are consistently measured and quantitatively expressed

Explanation

Security metrics are measurements that are used to evaluate and improve the effectiveness and efficiency of security processes, controls, and outcomes. The best characteristics of security metrics are that they are consistently measured and quantitatively expressed, as this ensures that the metrics are objective, reliable, comparable, and verifiable. Security metrics should not be generalized or provide a broad overview, as this may reduce their accuracy, relevance, and usefulness. Security metrics should not use acronyms and abbreviations to be concise, as this may cause confusion, ambiguity, or misunderstanding. Security metrics may use bar charts and Venn diagrams, or other graphical or visual representations, to illustrate or communicate the results, but this is not a characteristic of the metrics themselves, but rather a presentation

Topics

#Security metrics#Quantitative measurement#Performance indicators

Community Discussion

No community discussion yet for this question.

Full CISSP Practice Browse All CISSP Questions