Metrics for Success

What's state-of-the-art in security metrics?

I am currently engaging in a poll of security practitioners, trying to nail down a few transferable metrics we can use for internal performance measurement and benchmarking with peers. It is a beginning, and hopefully it will serve to build a bigger, acceptable inventory of actionable metrics. If you would like to participate, please e-mail me at and I will send you a copy of the short survey.

George Campbell is emeritus faculty of the Security Executive Council and former CSO of Fidelity Investments. His book, Measures and Metrics in Corporate Security, may be purchased through the Security Executive Council Web site. The Security Executive Council is an innovative problem-solving research and services organization that works with Tier 1 Security Leaders(tm) to reduce risk and add to corporate profitability in the process. A faculty of more than 100 experienced security executives provides strategy, insight and proven practices that cannot be found anywhere else. Through its pioneering approach of Collective Knowledge(tm), the Council serves all aspects of the security community. To learn about becoming involved, e-mail or visit The information in this article is copyrighted by the Security Executive Council and reprinted with permission. All rights reserved.