Identifying the Real Information Security Budget


Published: 03 August 2016 ID: G00239779

Analyst(s): |

Purchase this Document

Price: $195.00 USD (PAGES: 10)

To purchase this document, you will need to register or sign in above.

Summary

True organizational spending on IT security, risk management and business continuity is difficult to determine. Since these disciplines support cross-functional areas, security spending is diffused. There are practical reasons to know the real budget, as well as that controlled by the CISO.

Table of Contents

  • Introduction
  • Analysis
    • Use Standardized Budget Information as a Starting Point but Not an Absolute Measure of What Your Organization Should Be Spending
    • Do Not Interpret Security Expenditure as a Proxy for Security Maturity, and Verify That Important Security Activities Are Being Adequately Performed Regardless of the Budget That Funds Them
    • Ensure That the Right Risks Are Being Adequately Managed, and Understand That Spending May Fluctuate Accordingly
  • Gartner Recommended Reading
© 2016 Gartner, Inc. and/or its Affiliates. All Rights Reserved. Reproduction and distribution of this publication in any form without prior written permission is forbidden. The information contained herein has been obtained from sources believed to be reliable. Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartners research may discuss legal issues related to the information technology business, Gartner does not provide legal advice or services and its research should not be construed or used as such. Gartner shall have no liability for errors, omissions or inadequacies in the information contained herein or for interpretations thereof. The opinions expressed herein are subject to change without notice.

Why Gartner

Gartner delivers the technology-related insight you need to make the right decisions, every day.

Find out more