Make Your Case
By Nathan Boberg, CPP, West Regional Security Manager, Progressive; and Keith Blakemore, CPP, Director-Corporate Security, WW Grainger.
Security Management, June 2014
The authors describe two corporate security risks: a request for capital to fund the installation of CCTV cameras in a high-risk location, and a fraud management solution related to corporate growth in e-commerce sales. In each instance, the security team developed a written business case, which was presented to the company’s senior management; both were approved. Most of the article is devoted to discussing the elements essential to a comprehensive business plan: the executive summary, project description, business impact, justification, cost-benefit analysis, alternatives and analysis, recommendations, and approvals. The authors emphasize:
- A business case assists organizational stakeholders in making decisions on the viability of a project.
- The business case should document all relevant information and link these points into a cohesive story.
- In a metrics-focused business environment, security practitioners must be able to complete a quantitative analysis projecting potential losses and a cost benefit analysis over five years
Planning and Budgeting
Effective Security Management, 6th Edition
By Charles Sennewald (Butterworth-Heineman, 2015)
This detailed chapter uses examples to describe the intrinsic relationship between plans and budgets. A budget breathes life into a plan and gives the plan direction, Sennewald contends, and plans must be based on good judgment and good decision-making estimates about the future. In an optimal scenario, senior management initiates the process by establishing acceptable expenditure guidelines. Next, security managers submit courses of action, with costs, for achieving organizational goals. Senior management, then, makes decisions based on the security manager’s recommendations. A sample of key points:
- Understanding the basics of budgeting provides a groundwork for sophistication and growth.
- Projects will not exceed the planned costs if the budget is managed properly.
- Budgets are based on intelligently anticipated and predictable conditions based on known conditions.
Creating a Corporate Security Strategy Aligned with the Business Strategy
Seminar Session 2014
Speaker: Malcolm Smith, CPP, Head of Group Security, Sasol Ltd.
A range of analytical tools can be used to align a credible security strategy with the organization’s goals. Understanding what the customer needs shapes the organization and aligns the business functions, including security, across the organization. In this scenario, security becomes an enabler, helping the organization meet its goals. To achieve this end, Smith presents analytical models that are encompassed within a strategic planning process, including a needs analysis, value chain analysis, and industry analysis. Among his key points are:
- Security executives must be able to align technology, resources, and people to drive the execution of new strategies that are meaningful to the enterprise.
- Providing statistical analysis with a security strategy provides believable information to executives and proves its conclusions.
- Security managers are not in the business of security. Alignment means they look at where the business is headed, not just losses.