Explore practical security metrics in this 45-minute conference talk from the Central Ohio InfoSec Summit 2016. Learn how to communicate effectively, start small with metrics implementation, and develop scorecards. Discover the importance of organizational culture, using gimbal boards, and improving end-user experiences. Gain insights on personalizing metrics, examining real-world examples, and correcting representations. Develop a roadmap for assessing security posture, tracking project status and costs, and implementing public-facing metrics. Master the art of creating practical, actionable security metrics to enhance your organization's information security strategy.