Using Data Science to Strengthen Cybersecurity Posture: A Case Study

Data science plays a critical role in modern cybersecurity by transforming assessment data into insights that improve risk awareness, responsiveness, and prevention. By applying data analytics to our internal Threat Identification and Vulnerability Assessment dataset (2022–2023), we gained a clearer view of trends, blockers, and improvements in our security posture.

📈 What the Dataset Reveals

The dashboard, built on data from 2022 and 2023, shows a notable increase in completed assessments, reflecting a more proactive and preventative approach to cybersecurity. The color-coded breakdown of assessment statuses—Completed, In Progress, and Waiting for Client—further highlights ongoing efforts and areas impacted by external dependencies.

🎯 Objectives of This Analysis
 1. Track Progress Over Time
Show the increase in completed assessments from 2022 to 2023, emphasizing improvement in risk response capacity.
 2. Visualize Assessment Status Distribution
Highlight the balance between completed work and outstanding tasks to identify performance gaps and collaboration delays.
 3. Support Risk-Based Decision-Making
Use data to guide prioritization and allocate resources where delays or exposure risks are highest.
 4. Promote a Preventative Security Culture
Showcase the shift from reactive fixes to early detection, empowering teams to resolve vulnerabilities before escalation.
 5. Enhance Transparency & Communication
Offer stakeholders a clear, visual overview of the organization’s risk management efforts and progress.



In [37]:
pip install chardet


[1m[[0m[34;49mnotice[0m[1;39;49m][0m[39;49m A new release of pip is available: [0m[31;49m24.0[0m[39;49m -> [0m[32;49m25.1.1[0m
[1m[[0m[34;49mnotice[0m[1;39;49m][0m[39;49m To update, run: [0m[32;49mpip3 install --upgrade pip[0m
Note: you may need to restart the kernel to use updated packages.


In [38]:
pip install openpyxl



[1m[[0m[34;49mnotice[0m[1;39;49m][0m[39;49m A new release of pip is available: [0m[31;49m24.0[0m[39;49m -> [0m[32;49m25.1.1[0m
[1m[[0m[34;49mnotice[0m[1;39;49m][0m[39;49m To update, run: [0m[32;49mpip3 install --upgrade pip[0m
Note: you may need to restart the kernel to use updated packages.


In [39]:
pip install nbformat


[1m[[0m[34;49mnotice[0m[1;39;49m][0m[39;49m A new release of pip is available: [0m[31;49m24.0[0m[39;49m -> [0m[32;49m25.1.1[0m
[1m[[0m[34;49mnotice[0m[1;39;49m][0m[39;49m To update, run: [0m[32;49mpip3 install --upgrade pip[0m
Note: you may need to restart the kernel to use updated packages.


In [40]:
import pandas as pd
import plotly.graph_objects as go
from plotly.subplots import make_subplots


As step 1 we will be loading  Excel File 

In [41]:
file_path = r"/Users/kristina/python/Cybersecurity /Cybersecurity_dataset_KPIs_KRIs.xlsx"
df = pd.read_excel(file_path)  

To prepare the dataset for analysis, we first  clean and format the colums names

In [42]:
df.columns = df.columns.str.strip()

We extract the year from the ‘Created’ timestamp to enable year-wise analysis.

In [43]:
df['Year'] = pd.to_datetime(df['Created']).dt.year

Grouping the data by year and status allows us to uncover temporal patterns and categorical insights.

In [44]:
pivot_df = df.groupby(['Year', 'Status']).size().unstack(fill_value=0).reset_index()

To measure overall activity, we compute the total by adding completed, in-progress, and pending items.

In [45]:
pivot_df['Total'] = pivot_df['Completed'] + pivot_df['In Progress'] + pivot_df['Waiting for Client']

As the final step let's create the Dual-Panel Visualization

In [46]:
fig = make_subplots(
    rows=1, cols=2,
    subplot_titles=("Total Completed Assessments", "Assessment Status Breakdown" )
)

Plot 1: Completed Only

In [47]:
fig.add_trace(
    go.Bar(
        x=pivot_df['Year'].astype(str),
        y=pivot_df['Completed'],
        name='Completed',
        marker_color='green'
    ),
    row=1, col=1
)

Plot 2: Stacked Bar (Status Breakdown)

In [48]:
fig.add_trace(
    go.Bar(
        x=pivot_df['Year'].astype(str),
        y=pivot_df['Completed'],
        name='Completed',
        marker_color='green'
    ),
    row=1, col=1
)

fig.add_trace(
    go.Bar(
        x=pivot_df['Year'].astype(str),
        y=pivot_df['Completed'],
        name='Completed',
        marker_color='green'
    ),
    row=1, col=2
)

fig.add_trace(
    go.Bar(
        x=pivot_df['Year'].astype(str),
        y=pivot_df['In Progress'],
        name='In Progress',
        marker_color='orange'
    ),
    row=1, col=2
)

fig.add_trace(
    go.Bar(
        x=pivot_df['Year'].astype(str),
        y=pivot_df['Waiting for Client'],
        name='Waiting for Client',
        marker_color='red'
    ),
    row=1, col=2
)

To improve interpretation, we include in layout axis labels, chart size, and color scheme adjustments.

In [49]:
fig.update_layout(
    title_text="Cybersecurity Assessments Overview by Year",
    barmode='stack',
    showlegend=True,
    height=500,
    width=1000
)

# Show plot
fig.show()

Horizontal Bar Chart

In [50]:
fig = go.Figure()

fig.add_trace(
    go.Bar(
        y=pivot_df['Year'].astype(str),
        x=pivot_df['Completed'],
        orientation='h',
        marker_color='green'
    )
)

fig.update_layout(
    title="Completed Cybersecurity Assessments (Horizontal View)",
    xaxis_title="Number of Completed Assessments",
    yaxis_title="Year",
    height=400,
    width=800
)
fig.show()

Pie Chart

In [51]:
fig = go.Figure(
    go.Pie(
        labels=pivot_df['Year'].astype(str),
        values=pivot_df['Completed'],
        hole=0.3,
        marker=dict(colors=['#2ecc71', '#27ae60']),
        textinfo='label+percent'
    )
)

fig.update_layout(
    title="Distribution of Completed Assessments by Year",
    height=500,
    width=700
)
fig.show()

Line Chart

In [52]:
import plotly.graph_objects as go

fig = go.Figure()
fig.add_trace(
    go.Scatter(
        x=pivot_df['Year'].astype(str),
        y=pivot_df['Completed'],
        mode='lines+markers',
        name='Completed',
        line=dict(color='green', width=3)
    )
)

fig.update_layout(
    title="Trend of Completed Cybersecurity Assessments",
    xaxis_title="Year",
    yaxis_title="Number of Completed Assessments",
    height=500,
    width=800
)
fig.show()

🎯 Our KPIs in Context (2022–2023)

| Year | Completed | In Progress | Waiting for Client | Completion Rate | Client Delay Rate |
|------|-----------|-------------|---------------------|------------------|--------------------|
| 2022 | 35        | 15          | 10                  | 58.3%            | 16.7%              |
| 2023 | 60        | 20          | 5                   | 70.6%            | 5.9%               |

We’ve seen a 71% increase in completed assessments, a 12% jump in completion rate, and a significant reduction in client-related delays.

These numbers aren’t just metrics.  
They represent greater readiness, faster closure of vulnerabilities, and a more mature security posture.



🚀 What Comes Next?

This project has laid a solid foundation for continued advancement.  
We’re now working to:

- Expand our analysis across more business units
- Automate assessment workflows using data models
- Integrate threat intelligence feeds for dynamic risk scoring
- Share insights across teams to build cross-functional awareness
- Use predictive analytics to guide quarterly risk planning

We’ve proven that when cybersecurity meets data science, the result is smarter defense and greater confidence.

Let’s continue moving from compliance to resilience, from visibility to action, and from data to impact