Security Metrics Management

How to Manage the Costs of an Assets Protection Program


  • Gerald Kovacich, CFE, CPP, CISSP, Security consultant, lecturer, and author, Washington, USA
  • Gerald Kovacich, CFE, CPP, CISSP, Security consultant, lecturer, and author, Washington, USA
  • Edward Halibozek, MBA, Former Corporate VP of Security for a Fortune 100 company, Los Angeles, CA, USA

Security metrics is the application of quantitative, statistical, and/or mathematical analyses to measuring security functional trends and workload. In other words, tracking what each function is doing in terms of level of effort (LOE), costs, and productivity. Security metrics management is the managing of an assets protection program and related security functions through the use of metrics. It can be used where managerial tasks must be supported for such purposes as supporting the security professional’s position on budget matters, justifying the cost-effectiveness of decisions, determining the impact of downsizing on service and support to customers, etc. Security Metrics Management is designed to provide basic guidance to security professionals so that they can measure the costs of their assets protection program - their security program - as well as its successes and failures. It includes a discussion of how to use the metrics to brief management, justify budget and use trend analyses to develop a more efficient and effective assets protection program.
View full description


PRIMARY MARKET: (audience)Security Managers, Security Consultants, other Security ProfessionalsSECONDARY MARKET: (audience)Students in security and business programs


Book information

  • Published: November 2005
  • ISBN: 978-0-7506-7899-5

Table of Contents

Section I: Introduction to the Role of the Security Professionals and Security Metrics ManagementChapter 1: The Security Profession and Its Role in Supporting Business and Government Agency Assets Protection Needs Chapter 2: Management and a Security Metrics FoundationChapter 3: Policies, Procedures, Processes, Plans, and ProjectsChapter 4: Security Metrics Management Program – An OverviewChapter 5: Case Study: Measuring Costs of SecurityChapter 6: Case Study: Six Sigma Section II: Administrative SecurityChapter 7: Information SecurityChapter 8: Personnel SecurityChapter 9: Security Education & Awareness TrainingChapter 10: Security Compliance AuditsChapter 11: Surveys and Risk Management Chapter 12: Corporate Assets Protection ProgramChapter 13: Contingency PlanningSection III: Physical SecurityChapter 14: Guard ForceChapter 15: Technical Security SystemsChapter 16: Locks and KeysChapter 17: Fire ProtectionChapter 18: Executive ProtectionChapter 19: Event Security Section IV: Security OperationsChapter 20: Investigations & Non-Compliance InquiriesChapter 21: Government SecurityChapter 22: Information Systems SecurityChapter 23: Mergers & Acquisitions SecurityChapter 24: OutsourcingSection V: The Security Profession and Metrics Management in the Future Chapter 25: Preparing Now to Support Future Business NeedsChapter 26: Security Metrics Management Technology of the Future and How to Prepare Now to Use It