How to Use Cybersecurity Scorecards and KPIs to Achieve your Security Goals – Brad Thies – BSW #275

Sponsored By

Visit for more information!

In this segment, BARR Advisory founder and president Brad Thies will use real-world examples to discuss how cybersecurity scorecards and KPIs can help organizations measure and manage the effectiveness of their cybersecurity programs. Thies will also reveal which metrics he sees as most valuable in evaluating cybersecurity posture and discuss how to define accountability for security within an organization. This segment is sponsored by BARR Advisory. Visit to learn more about them! Visit for all the latest episodes!

Full Episode Show Notes

How to Use Cybersecurity Scorecards and KPIs to Achieve your Security Goals


Brad Thies

Brad Thies – Founder and President at BARR Advisory


As Founder and President of BARR Advisory, Brad Thies leads all aspects of the organization’s global client service delivery and security assessment services including SOC, ISO, PCI, NIST, and HIPAA examinations; FedRAMP reviews; and GRC consulting services. Under Brad’s leadership, BARR has become one of the most sought-after third-party assessors in the cloud computing space.

Brad is a recognized thought leader on security and compliance in the cloud computing space. He is a regular guest speaker at industry events, such as ISACA conferences, and is a member of the AICPA’s Trust Integrity Task Force. Brad’s professional advice has been featured in Entrepreneur, Cloud Computing Journal, and Information Security Buzz. Prior to founding BARR, Brad managed KPMG’s IT Advisory Services telecommunication industry practice in their gateway west region. He is a Certified Public Accountant (CPA) and Certified Information System Auditor (CISA).


Jason Albuquerque

Jason Albuquerque – Chief Operating Officer at Envision Technologies


Jason Albuquerque is the COO of Envision Technologies.

Matt Alderman

Matt Alderman – VP, Product at Living Security


VP, Product at Living Security, start-up advisor, and wizard of entrepreneurship.

Tyler Robinson

Tyler Robinson – Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element


As the Managing Director of Offensive Security & Research at Trimarc, Tyler leads a team of high-performance security professionals within the offensive security field by simulating sophisticated adversaries and creating scalable offensive security platforms using the latest techniques as seen in the wild. With over 2 decades of experience, Tyler specializes in Red Teaming, APT threat modeling, blackbox network penetration testing, and Physical/Social-Engineering. Tyler has presented at multiple conferences including BSides, DefCon and Blackhat panels, SANS security events and to multiple branches of the military.


  • Security Weekly is proud to partner with Hack Red Con for their first annual in-person event! Hack Red Con is happening at the Hyatt Regency in Louisville, KY from September 7th-11th. As a part of our partnership, Security Weekly listeners receive a 10% discount on registration! Visit to register now! We hope to see you there!

  • Don’t miss any of your favorite Security Weekly content! Visit to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!