Growth in business and the need to remain competitive in an increasingly distributed and digital world necessitates working with subject-matter and functional experts both inside and outside of your organization. However, relationships between IT, security and the various internal stakeholders takes time to nurture.
Security leaders are often very technical and comfortable communicating with other technical folks. Similarly, functional department leaders, executives and advisors can be quick to dismiss the value that cyber security brings to advancing the organization’s goals. This challenge is often observed when leaders gather to review and plan budgets.
Multiple stakeholders are involved in the organization’s budget and each has its own perspective of what value security delivers. How can cyber security articulate risk and measure the effectiveness of its spending?
Cyber Budgeting Differs By Size And Type Of Organization
In the traditional IT-based organization, security may receive a capital expenditures (CapEx) budget or it may be managed in a discretionary manner. The level of scrutiny placed on the security budget can also vary. CISOs…