Annual amount per user for cybersecurity?
$50055%
$100037%
$15006%
Sort by:
This is a tough question. I am actually working on this now for a "startup" that is 7-8 billion in revenue in annual revenue. It really depends on who owns the Security applications such as training (could be HR), endpoint protection, secure coding scans (could be IT), etc. I would need to know the setup of your organization.
For the org I am helping, I am leading the company to not have the CISO own more than the actually resources so the enterprise spend is closer to $500 or less per person. I like running a lean CISO office that is more governance, risk and compliance with oversight in delivery but not ownership of the tools.
Having the CISO as a peer to the CIO and not in IT is my belief the best way to run an InfoSec office, which will directly impact the InfoSec operating budget.
I had a third option which was $1500 but it didn’t display for some reason.
Build it yourself? Far more expensive for both personnel and systems. Using a leveraged outsourced partnership is far more economical, even if just for certain functions. Still cannot outsource oversight and leadership though...