Insight on Security Metrics

The SEC’s perspectives on KPIs and business alignment.

Filter by

Insight on Security Metrics

Building Valued, Relevant Metrics Programs

In the SEC's October 2023 Security State of the Industry briefing, Tier 1 Security Leaders heard from two successful security executives discuss their metrics journey.
Click for more details
Insight on Security Metrics

Assess the Probability of Business Loss

Objective: To estimate the probability of loss in areas of concern, given known vulnerabilities.
Click for more details
Insight on Security Metrics

Demonstrating Security Program Value to the C-Suite

These are highlights from a panel discussion with security practitioners on Demonstrating Security Program Value to the C-Suite.
Click for more details
Insight on Security Metrics

Case Study: Risk Management and Security Metrics at Boeing

This case provides background information on Boeing and why its security group undertook an evaluation of the metrics that they use. The results of that evaluation are presented, along with a general discussion of how metrics are used to improve decision making and assessment.
Click for more details
Insight on Security Metrics

What Is the Return on Your Company’s Security Investment?

Objective: To select a small set of security-related services and assess the potential for a return on expenses.
Click for more details
Insight on Security Metrics

Investing in Security’s ROI

We hear a lot about the difficulty of documenting Security’s return on investment. Consider this example.
Click for more details
Insight on Security Metrics

Demonstrate Security’s Alignment with Business Objectives

Results Sought: Increased understanding and appreciation by senior management and other key stakeholders of security’s value and contribution to the bottom line.
Click for more details
Insight on Security Metrics

How Good Is Your Customer Connection?

The deeper I dig to find the reasons for the lack of workable, meaningful metrics within security organizations, the more I find myself tripping over both institutional and security-imposed roadblocks.
Click for more details
Insight on Security Metrics

Measure Influence by Tracking Recommendations

All non-revenue-producing organizations like Corporate Security are in the influence business. Influence is a measure of effectiveness, and we need to apply various processes to evaluate security’s effectiveness.
Click for more details
Insight on Security Metrics

Are Your Metrics Connected to Top Management’s Agenda?

The January/February 2011 issue of Financial Executive magazine included an article titled “Corporate Performance Metrics to Top Board Agendas,” ...
Click for more details
Insight on Security Metrics

Do Business Units Value Security Recommendations?

Our ability to influence internal customers starts and ends with their perception of the effectiveness and value of security programs.
Click for more details
Insight on Security Metrics

Measuring Alignment Using Key Risk Indicators

I get a lot of questions about how Security can demonstrate with metrics that we have a positive connection to the core business strategy and objectives. Here’s one example.
Click for more details
Insight on Security Metrics

Faculty Advisor: Turning Incident Based Data Into Metrics

We have a fairly new security metrics initiative. I am able to show how we are assisting the organization to be more secure but I don’t think we’re showing business-based value. How do I take incident-based data and make a more compelling “story” to senior management?
Click for more details
Insight on Security Metrics

Measuring and Communicating Security's Value

This book builds on George Campbell’s Measures and Metrics in Corporate Security. While Measures and Metrics guides you through creating a meaningful security metrics program, Measuring and Communicating Security’s Value takes you to the next step: using the metrics you deliver to communicate quantifiable value to the organization. The book...
Click for more details