Report

August 2003

How Much Security Is Enough?


Laura Koetzle
Today's IT security spending is reactive and inefficient. Firms should tackle IT security differently: Use zero-based budgeting, create scenarios to combat uncertainty, and manage security like other business risk.

INTERVIEWS
  • 40% of IT security execs interviewed say they spend IT security dollars on the wrong risks.
  • Nearly half of respondents deem budgeting processes flawed.
ANALYSIS
  • Use zero-based budgeting to rationalize IT security spend.
  • IT security is a business risk like any other: Firms must build scenarios and assemble a risk management portfolio.
ACTION
  • IT security consultancies and insurers: Stick together.
WHAT IT MEANS
  • First movers AIG and Marsh will maintain the lead in IT security insurance.
 
Figures & Data
  • Figure 1.  Firms Spend Millions On IT Security
  • Figure 2.  IT Security Budgeting Is Misdirected And Complicated
  • Figure 3.  Today’s Security Spending Is Reactive, Not Proactive
  • Figure 4.  Optimal IT Security Spend
  • Figure 5.  ShipCo And Its IT Security Risks
  • Figure 6.  Scenario Segmentation For ShipCo
  • Figure 7.  IT Security Strategy: From Complexity To Simplicity
   
RELATED MATERIAL 
  • Companies Interviewed For This Report
  • Related Research
 
GRAPEVINE
  • Putting a new spin on "hands-free" telephony.
  • Now you see it, now you don't.
  • Divorce . . . by cell phone?
  • For the telecom guy (or gal) who has everything.

 

Find Documents In Related Categories

This document falls under the following categories. Click on a link below to find similar documents.

 
Analyst: Laura Koetzle
Document Type: Report
corner border corner
Ratings and Comments
NOT YET RATED
corner border corner