New eBook: Best-in-Class Security Operations and What it Takes to Get There

The CISO’s Guide to Metrics that Matter to the Board


  • Jeff Pollard

    VP, Principal Analyst


  • Colin O’Connor



Measuring and communicating the effectiveness of security programs is a challenge that enterprise security leaders are all too familiar with. The problem boils down to an inability to show return on existing investments and communicate this value to the business in a language that the board understands. As a result, many security leaders struggle to obtain executive support, are excluded from strategic business decisions, and fail to secure further funding needed to mature their security programs.

In this webinar, hear from Jeff Pollard, VP, Principal Analyst at Forrester, and Colin O’Connor, COO at ReliaQuest, on:

  • The top obstacles preventing security leaders from measuring and communicating ROI
  • How to align your security program with the business initiatives, so you’re speaking one common language
  • What metrics you should report on to show ROI, maximize your existing budget, and secure future funding needed to mature your security program

View the On-Demand Webinar

More resources

The Most Effective Security Metrics for the Changing Risk Landscape

Moderator: Colin O’Connor, Chief Operating Officer, ReliaQuest Panelists: Joseph Burkard, Chief Security Officer, Alight Solutions John Childers, Director Information Security, Aqua America Mike Ortlieb, Director of IT Security & Privacy, Protiviti In the midst of the current economic and operational volatility, security has become even more visible across the enterprise and boards are asking security […]

How to Measure and Communicate the Value of Your Security Program

In trying economic times, it’s more important than ever to be able to measure and communicate the effectiveness of one’s cybersecurity program. Colin O’Connor, COO of ReliaQuest, offers a new alternative to traditional metrics. In this video interview, O’Connor discusses: Why measuring cybersecurity is so hard; How traditional metrics fail to translate; New ways to […]

The CISO’s Guide to Metrics that Matter in 2021

The security metrics that teams traditionally use lack context and fail to provide insights needed to make strategic decisions, leaving CISOs struggling to show ROI, identify critical gaps, and gain the support across the organization to mature their security program. This can leave security teams with a false sense of confidence and a less-than-optimal budget, […]