Key obstacles in enterprise security budgeting>
Help Net Security
IANS released its latest findings on budget-related best practices for information security leaders to consistently command the budget and resources they need. Half of the enterprise CISOs surveyed (49 percent) have annual security budgets between $1 million and $5 million. One in four (25 percent) have between $6 million and $10 million to spend, while roughly the same number (22 percent) report budgets larger than $10 million. Most CISOs allocate the biggest budget share to people and technology, with 43 percent on people and 36 percent on technology. The remaining 21 percent include professional services, outsourcing and other budget items. Two-thirds of CISOs indicate that both headcount and operating expenditures are areas of budget growth to which the company is most sensitive. Trust and credibility are the bedrock of CISO effectiveness. Two camps of CISOs emerged during the study â the Supported and Under-Supported. 38 percent of respondents considered themselves Under-Supported, while 62 percent described themselves as Supported. Under-supported CISOs are expected to get the same products and services for either the same (42 percent) or less money (32 percent) as supported CISOs. Ultimately, Under-Supported CISOs are under more pressure and face more scrutiny for ongoing spend. Only 26 percent of Under-Supported CISOs said their ongoing spend is âpretty much left aloneâ and that inflationary increases are accepted.
Link: https://www.helpnetsecurity.com/2018/04/12/enterprise-security-budgeting/