| Evaluation item | Information security(D) >> Response level (capability) of infringement incident(D.2) |
| Metric | <D-2-1> Number of intrusion incidents per year |
| Explanation | The number of the infringement incident per year in organization |
| Measurement method | X = The number of the infringement incident per year in organization |
| Y = X − T arg e t V a l u e T arg e t V a l u e × 100 (excess ratio of infringement incident occurrence) |
| Data gathering method (Data sources) | ■ System □ Data |
| □ Questionnaires □ Interview |
| ※ Measure the total number of infringement incident from target IS |