Show Filters

Top Results

Security Staffing Assessment and Organization Design

ScottMadden analyzed work activity across an enterprise and redesigned organizational roles to align with the most urgent security needs.

Array

Improved Organizational Transparency

  • Discovered and documented organizational design from guiding principles for optimal organizational alignment

Optimized Security Investment

  • Evaluated divergent operating models and built integrated cybersecurity staffing and organizational design

Maximized Program Synergy

  • Conducted work-activity assessment and surveyed security and technology teams to align hours to optimal security functions

Challenge

Two large U.S. energy companies merged and wanted to understand their capital and O&M costs. Due to the divergent model of each of the previous organization models, they were interested to understand the FTE costs associated with various security activities. External and internal pressures were requiring greater transparency of security costs and related risk reductions.

Process

  • Established work-activity assessment aligned to leading practice security framework
  • Surveyed comprehensive security and technology teams to align hours to specific security practices
  • Consolidated results of FTEs and median compensation figures to establish FTE costs per security practices
  • Conducted a spans-and-layers analysis and compared to HR best practices
  • Established guiding principles for organization design and evaluated options for optimal organization alignment
  • Reviewed recommended organization design and support cost allocation figures with leadership and modified as needed

Result

  • Aligned FTEs and costs with high-risk areas to focus time, money, and effort on critical security functions

Related Insights

Achieving Security Program Alignment with the NIST Cybersecurity Framework

Case Study

ScottMadden partnered with a large energy provider to align its security program with the NIST Cybersecurity Framework (CSF).

Read More

Work Activity Analysis for Large University

Case Study

A large state university sought to improve institutional effectiveness and strengthen its culture of service by ensuring that academic support activities and business practices were efficient, responsive, and…

Read More

Security Upgrade Project

Case Study

ScottMadden assisted Tennessee Valley Authority, a large nuclear generator, to execute its Security Upgrade Project to comply with the Code of Federal Regulations 10 CFR 73.55 and…

Read More

Let’s Work Together

We don’t solve problems with canned methodologies. We help you solve the right problem in the right way. Our experience ensures that the solution works for you.

Connect With Us Find an Expert