Who is best informed to have the final decision on how the IT budget should be spent?

Lead Architect14%

Lead Developer15%

Lead Engineer11%

Business Unit Leaders9%

CIO36%

CFO4%

CEO8%

Other (please specify in comment section)2%


615 PARTICIPANTS
2k views3 Upvotes3 Comments
Senior IT Manager in Government, 10,001+ employees
The CIO should probably get the final say but hopefully they get plenty of input on priorities from the business units and other stakeholders.
7 1 Reply
VP of IT in Software, 10,001+ employees

I think this is a tricky question because it specifically ask "how" which to me, reads as an execution question.  Ultimately the business isn't going to know that you need X servers, Y architects, etc.  Also it was specifically about the IT budget.  IT, like any other area has its own budget and doesn't really need to be told how to spend it.

However, the decision on how much to allocate is a business decision based on the specific business strategy.

The emphasis on where to spend it is a business allocation.  Find those capabilities that are behind from a competitive position and invest more.  Find those capabilities/journeys that are ahead and spend less.  The specific projects to do so are business problems and the business is accountable for ensuring that the project return the expected return.

IT ensure that it is allocating that budget in a way to be able to execute on those plans.  

At least that is the 1 min version of how it should work, accountabilities are clear but it plays out very collaboratively.

2
VP, Director of Cyber Incident Response in Finance (non-banking), 10,001+ employees
I'm not sure this is the right question.  Who is best informed to have the final decision?  It's the person who writes the check.

*HOW* should that person be informed?  Well, it sould be a combination of architects, infosec, business lines and ops people.  They all need to play together, including how to figure out staffing to handle any new workload.
1

Content you might like

How many days of stock of packaging materials do you have? (we're a food and beverage company with shelf life of about 1 year on most products and about 1000 SKUs)

10-30 DOS20%

30-50 DOS59%

50-70 DOS17%

70-90 DOS3%

90+ DOS1%


75 PARTICIPANTS
460 views1 Upvote

How do you keep a team motivated in absence of leadership?

People & Leadership
Read More Comments
40k views29 Upvotes20 Comments

I consider cloud computing an important part of my digital transformation strategy.

CloudPeople & LeadershipStrategy & Architecture

True96%

False3%


606 PARTICIPANTS
1.3k views2 Upvotes

How can you design your org’s security policies to more effectively drive awareness?

Security Strategy & RoadmapAwareness & TrainingRisk Management
Read More Comments
217 views2 Comments

Would anyone be willing to share best practices about how their organization deals with ensuring Cookie Compliance, specifically to GDPR rules? Where should this sort of compliance review sit in an organization? The particular issue we have is who should review new web deployments that use cookies and to make the decisions on whether Cookies are Strictly Necessary or Functionality Cookies. For example is a Cookie required for a Live Chat to work Functionality or Strictly Necessary? Our Security team does not consider taking on these compliance reviews as their domain, as Cookie Compliance is not an internal security matter and the Data Protection team has a limited interest as the GDPR rules around Cookies apply in case of any Cookie being used by a website, whether or not it contains personal data. 

Security & GRCRegulatory Compliance
241 views1 Comment