• United States



by Ken Pfeil

Calculating ROSI

Apr 07, 20051 min
CSO and CISOData and Information Security

While there are subtle differences between the two, you still have the parallel of using the same metrics to calculate the savings from implementing a form of risk management. In a lot of cases, it is easier to quantify savings based on known variables of physical risk management. One example of this would be the effect of implementing surveillance on shoplifting. In a lot of instances, it is more tangible than in information security risk management.