Empirical Data and Cybersecurity

Empiricism enhances cybersecurity by enforcing the use of observed evidence to evaluate ways to improve cybersecurity. Cybersecurity can be monitored in many ways by implementing intrusion detection systems(IDS) and security information and event manager(SIEM). These security measures allow real-time monitoring of systems. “Types of data that can be obtained are various logs; such as, Network logs, proxy logs, domain name system logs, and etc.”(Hero et al, 2023) The data that is gathered by these security measures would be considered empirical data. “Empirical data is data that is acquired by direct observation ensuring that data is legitimate.”(Conceptually, n.d) The empirical data that is collected could be assessed to assist in implementing corrective policies to enhance security.   

Sources: 

“Empirical Evidence – Definition and Examples.” Conceptually, conceptually.org/concepts/empirical-evidence. Accessed 2 Sept. 2025. 

Hero, Alfred, et al. “Statistics and Data Science for Cybersecurity.” Harvard Data Science Review, The MIT Press, 26 Jan. 2023, hdsr.mitpress.mit.edu/pub/koyzu1te/release/1#:~:text=Many%20existing%20data%20sources%20are,are%20simulated%20or%20pseudo%2Dgenerated.