What Statistics do you gather/report for Data in motion or Discover
This is an ongoing question for us and I wanted to get other opinions. We are trying to gather statistics that properly represent what we are doing. This is both a way to measure the effectiveness of the project over time and something that can be reported up. It is not clear to me what I have stated below is necessary nor sufficient and any comments or additions are of great interest.
The one wide open area that I have is Network Discover. What do you report. It is not clear to me what effective metrics are in this area. Note that I don't do Endpoint.
What we report (Email all false positives removed)
Defects per 100K (over all level of compliance:
- Blocked messages
- and monitored messages.
Payload of these messages (talks about overall care of data and training:
- Average number of records in a blocked email (Thinking of using median)
- Average number of records in a Monitored message. (Thinking of using median)
Totals
- Total number of messages blocked
- Total number of messages Monitored (remove all false positives)
I don't have a clue about Network Discover but here are my thoughts
- Number of Shares scanned?
- Number of GIG scanned ?
- Number of "exposed" shares found (not discover really)?
- Number of files passed over due to filters in scan..?
- Number of events per gig?
- Number of records per gig scanned?
- Number of records per (gig scanned + gig skipped)?
Note I am asking for
what you do or would like not necessary what is available. We can deal with Vontu on that later. Also what you think a particular statistic tells you about your environment.
If you don't want to post to this thread, contact me directly by clicking on my Symantec Connect user name and sendig me a private message.
This is one of the places that I think an open discussion might be of help to us all.
Also this is open to all Vontu customers not just the NY users group.