Case Study

Case Study: Eastman Kodak Company Takes A Tiered-Risk Approach To Security Metrics

April 20th, 2009
Khalid Kark, null
Khalid Kark
With contributors:
Jonathan Penn , Alissa Dill , Margaret Ryan

Summary

Eastman Kodak's matrixed organizational structure enables its business units to act quickly in response to changing business conditions, but it also creates a decentralized security function. Security information resides in different parts of the organization, so it was hard to measure and report information security to management. With the help of his security team, CISO Bruce Jones developed a security metrics program that not only presented a holistic risk-based view of Kodak's security and risk posture but also translated the operational and tactical information in a fashion that made it easy for the business to digest and use this information.

Want to read the full report?

Contact us to become a client

This report is available for individual purchase ($1495).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.