The Executive Committee (Comex) and General Management do not speak KQL (Kusto Query Language), do not read Microsoft Defender JSON and do not know high-risk network ports. Their language is that of risk, return on investment (ROI) and business continuity.
However, it is to them that the Information Systems Security Manager (CISO) or the MSSP service provider must be accountable. To bridge this gap, we must abandon purely technical reporting in favor of strategic performance indicators (KPIs). Here are the 5 absolute metrics that any good SOC dashboard should display, and how Akuity SOC centralizes them in real time.
1. The Global Incident Volume (The Pressure Indicator)
The first question from the Comex is always:“Are we under attack?”.
The Akuity Dashboard displays the cumulative “Total Number of Incidents” at the top left. This raw figure is accompanied by a trend indicator (+ or - X% compared to the previous period).
How to explain it to the Comex? "This number represents the pressure on our shields. If the trend increases drastically, it indicates that a targeted campaign is underway against our company or that our attack surface has expanded following a new deployment."
2. MTTR (Mean Resolution Time) (Agility Indicator)
It is the compass of your efficiency. Akuity displays MTTR measured in minutes. It calculates the exact delta between the arrival of the threat from the Microsoft API and the closure of the incident by an analyst.
How to explain it to the Comex? "Facing ransomware, full encryption takes less than an hour. Our current MTTR is 14 minutes. This is proof that our investments in orchestration (SOAR) are working and that we are able to block the attacker before they paralyze the factory or accounting servers."
3. The Actual Resolution Rate (The Efficiency Indicator)
Forget the 99% success rate inflated by background noise. Akuity calculates the resolution rate by mathematically excluding False Positives (legitimate company noise).
How to explain it to the Comex? “Among the tens of thousands of alerts reported, we identified 120 real attacks last month. Our team neutralized 100% of these real threats. We do not waste time processing the noise, we are focused on the proven risk.”
4. Temporal Evolution over 30 Days (The Crisis Indicator)
A static dashboard is blind to trends. Akuity's interface includes a dynamic graph typeArea Chart(with premium visual rendering via Recharts) which shows the daily evolution of alerts over a month.
How to explain it to the Comex? "This major peak visible on the 14th of the month corresponds to the global wave of phishing that the press talked about. You can see that the peak immediately goes down on the 15th, which proves that our Global Email Purge action worked immediately."
5. Breakdown by Severity (Risk Indicator)
Not all alerts are equal. Downloaded malware is serious, but a system administrator's session theft (Token Theft) is an extinction event. Akuity SOC features a colorful interactive pie chart: Critical (Red), High (Orange), Medium (Yellow), Low (Blue).
How to explain it to the Comex? "Although the volume of attacks increased this quarter, 85% of them were low severity (automatically blocked by the antivirus). We only had to manage 3 Critical events (in red), which were successfully contained."
The Key to MSSP: The Dynamic Holding Filter
If you are a security service provider, presenting these numbers to 50 different clients would be an administrative nightmare.
Akuity's architecture solves this problem with itsDynamic Holding Filter. At the top of the KPIs page, a drop-down menu allows the cyber project manager to switch from the "Global View" (their own SOC) to the view of a specific client. A click on the refresh button forces the SQL query, and all of the 5 KPIs mentioned are updated to reflect only the scope of the client in question. You generate a perfect Copil report in 3 seconds.
Conclusion: Data is your best selling point
The cybersecurity budget is too often seen as a bottomless pit by management. By presenting clear indicators, stripped of background noise and aligned with business risks, you justify your workforce, you prove the return on investment (ROI) of your SOAR tools, and you position your team as a pillar of the company's sustainability.
Generate your Comex reports in one click.> Discover ourInteractive SOC Dashboards and KPIsand manage your cyber governance with precision.