With decades of experience helping organizations assess and mitigate security risks, David Feeney has joined CAP Index as Vice President of Security Consulting. In this conversation with Stephen Longo, CAP Index’s CRO and EVP, Dave shares how companies can get more strategic with risk scoring, use broader security indicators to build resilience, and close critical gaps in their security programs.
Looking at the Bigger Picture with CRIMECAST
STEVE: Dave, thank you for taking a few minutes to talk to me about your new role with CAP Index. I’m personally excited about the perspectives you bring and impact you’ll have both internally and for our clients.
DAVE: Thank you for the time. I’m also very excited about joining CAP Index in this new role and helping client uncover as much value as possible from the products and services we provide.
Why CAP RISC Scores Can Take You Further
STEVE: Many readers know that CAP Index’s CRIMECAST reports are a tool to understand and quantify crime risk at a given address or location. I know you’ve worked with and alongside CAP Index in various roles for many years. What is your perspective on the value that clients can get, or should get, from CRIMECAST reports?
DAVE: I think clients often use CRIMECAST reports to justify security measures or budget for that single location. While effective, a more strategic approach may be to regularly score all locations to establish a prioritized list of assets to serve as basis for security budget and overall security strategy. Sites can be sorted by CRIMECAST scores and optionally tiered to make these decisions even more straightforward. Budgets are limited and sometimes change – this approach provides an agile, constant basis for allocating those budgets across the enterprise. While clients can navigate this change themselves, consulting services are available to support and fast-track that change.
Helping Before and After the Risk Scoring Process
STEVE: One CAP Index product that readers may not be so familiar with is CAP RISC scores. Can you talk a bit about how CAP RISC scores expand the scope and, in turn, the value that CAP Index data can bring to clients?
DAVE: For those who aren’t familiar, CAP RISC scores go beyond crime risk by incorporating broader security risk indicators into the scoring algorithm to generate a holistic security risk score per location. Additional risk indicators might include risk assessment data, incident history, threat intel data, site criticality, or many other things. CAP RISC data can be used in the same ways as CRIMECAST data, the difference being the scope of security risk that is addressed. Consulting services are available to identify and quantify these risk indicators and automate their inclusion in the scoring algorithm.
STEVE: Consulting services even enable CAP Index to assist clients upstream and downstream of that risk scoring process. Can you talk more about that?
DAVE: Yes, CAP Index can help upstream of risk scoring in areas such as risk assessment and incident capture, and downstream of risk scoring in areas such as incident analysis and risk mitigation metrics. A couple of examples: Some clients may have a risk assessment process that lacks objectivity or consistency, requires templates or automation, or doesn’t quantify the risks it uncovers. Other clients may not have the ability to measure risk mitigation effectiveness or gain intelligence from security incident and threat data analysis. CAP Index can provide the tools, processes, and services to remediate these gaps and help clients realize the full value of their data.
Summary:
David Feeney’s journey from CAP Index client to Vice President of Security Consulting underscores the real-world value of our approach. His insights show how strategic use of risk scoring, broader security indicators, and targeted program improvements can help organizations make smarter, more confident security decisions.
Conclusion
Connect with our team to see how Dave’s experience can help you strengthen your security strategy—and discover new ways to get the most from your CAP Index data.
Recent Posts
Why Prioritizing Branches by Risk is the Smartest Security Strategy
A Conversation with McDonald’s Director of Security Rob Holm
