Save or Share this Report

For Security & Risk Professionals

Case Study: Eastman Kodak Company Takes A Tiered-Risk Approach To Security Metrics

April 20, 2009

Primary author headshot


  • By Khalid Kark
  • with Jonathan Penn,
  • Alissa Dill,
  • Margaret Ryan

Why Read This Report

Eastman Kodak's matrixed organizational structure enables its business units to act quickly in response to changing business conditions, but it also creates a decentralized security function. Security information resides in different parts of the organization, so it was hard to measure and report information security to management. With the help of his security team, CISO Bruce Jones developed a security metrics program that not only presented a holistic risk-based view of Kodak's security and risk posture but also translated the operational and tactical information in a fashion that made it easy for the business to digest and use this information.

Get Access

Already a Client?

Log in to read this document.

Become a Forrester Client

Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.

Purchase Report

This report is available for individual purchase ($499 USD).