How does the principle of empiricism enhance the effectiveness of cybersecurity practices?

Empiricism is to study based on experience and observations, not using opinions or assumptions. Using assumptions and opinions can lead to unreliable conclusions with little value. Using empirical data collection and analysis can help emerge threats because we would have used observable data. If we didn’t have this, we wouldn’t know the threat’s behavior and tactics. Empiricism can positively affect security measures as we would know what certain measures work and which ones don’t. Coming up with new strategies comes with a trial-and-error process. In order to understand what works and what doesn’t, these strategies need to be practiced. From there taking what was successful, using it then taking what failed and working on it to make it successful. Empiricism is an advantage to build from experiences rather than assuming what would happen.