Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters

What are ISO 27001 key performance indicators (KPIs)?

ISO 27001 key performance indicators (KPIs) are metrics an organization establishes for its Information Security Management System (ISMS), allowing the organization to measure the operating effectiveness of the ISMS and the controls implemented to mitigate risk. ISO 27001 requires recording KPIs to demonstrate the effectiveness and ongoing improvement of the ISMS.

A wide range of ISMS elements can measure the operating effectiveness and controls of the ISMS; some examples include::

  • Number of critical vulnerabilities addressed within 30 days of identification
  • Number of users who have passed the awareness training exam
  • Number of risks which have been managed to reduce the exposure of the organization

The goal of establishing ISO 27001 KPIs is for an organization to have metrics and measurements in place to monitor the ISMS and its implemented controls, ensuring they are operating effectively and meeting their intended objectives.

Additional resources you might like:

Ask Me (Almost) Anything: AI & Compliance

What does AI mean for your company’s security compliance program? Join our session on 28 March 9 am AEDT where Matt Cooper, Privacy, Risk and Compliance Manager at Vanta, and Noam Rubin, Sr. Software Engineer at Vanta, will answer (almost) all your questions about AI and compliance.

Automating SOC 2 compliance & more

Join Vanta’s 45-minute live product demo on March 12 at 11 am PST where Devin and Natalie will walk you through the Vanta platform and show you how we automate 90% of the work for security and privacy frameworks, and help you move towards a state of continuous compliance.

ISO 27001 & SOC 2 Compliance Automation

Join Vanta’s 45-minute live product demo on 13 March at 11 am GMT. Two of our team members will walk you through the platform and answer questions throughout the session.

Get compliant and
build trust, fast.

Two wind turbines on a white background.
Get compliant and build trust,
Get started