Harnessing data is often seen as the cure for a lot of industry ails, however most companies are not at the stage of being able to implement data analytics processes and platforms. In fact, in my experience I often get the impression that even being able to collect data is a big challenge to many larger organizations. Their information comes from a variety of systems that each have their own characteristics and data structure. Getting to the point of collecting useful and integrated data requires significant investment, but will certainly help Security departments deliver on their remits.
Once the data is collected, being able to analyse it requires knowing what to look for. This involves identifying key performance indicators and pinpointing where the Security department can contribute and add value to the organization. The issue of changing perceptions of the Security department as just a cost driver has been discussed at length, and strategic data usage can definitely support this (see Kim Rahfaldt’s latest piece in Security Magazine).
Ultimately, having useful data and the ability to analyze it quickly will likely be the game-changer that enables Security to come into its own as a value-adding department. In particular, I believe that the use of predictive analytics to spot trends in the risk landscape and suggest relevant measures will be a critical value driver that really shifts the perception of what Security departments can offer.
We are on this journey with our platform. Our initial analysis underlines that the data is out there, with basic statistical analysis providing a solid basis for identifying changes in risks and suggesting relevant ways to address them.