For Security & Risk Professionals (Length: 11 pages)

July 24, 2009

Articulating The Business Value Of Information Security

by Khalid Kark

with Robert Whiteley, Allison Herald

Executive Summary (This is a document excerpt)

Many CISOs struggle to articulate the value of their security programs and justify the security budget to business and executive management. This problem was acutely evident in the current economic downturn: Many security managers saw their budgets slashed, their projects postponed, and their employees laid off. CISOs have always struggled to effectively communicate the value of information security to business, but now there is a lot more at stake if they don't. Working closely with top CISOs at large, global organizations, Forrester has identified five areas of value for the business: reputation, regulation, revenue, resilience, and recession. Depending on your audience, we recommend that you use all or a combination of these business value propositions to make the case for continued investment and maybe even an increase in your security spending.

Buy Risk-Free

Download and print PDF immediately. Price: US $499

Our Money-Back Guarantee: If you are not completely satisfied, return it for a full refund within three weeks of your online purchase.

Already a Forrester Client?
Log in to read this document.

Add to cart

TABLE OF CONTENTS

NOTES & RESOURCES

itemCISOs Struggle To Answer Some Basic Questions

itemBusiness Value Is Subjective; Therefore, You Need A Value Tool Kit

itemFocus Your Security Value On Helping The Business Better Manage Its Information Risk

itemRemember The Five R's When Making The Case For Information Security

itemReputation: Security Protects Your Brand Equity

itemRegulation: Security Reduces The Cost Of Meeting IT Regulatory Mandates

itemRevenue: Security Protects Existing Revenue Streams And Helps Generate New Ones

itemResilience: Security Ensures Your Business Functions Even During Adverse Conditions

itemRecession: Security Affects The Top Line And The Bottom Line Of The Business

recommendations

itemUse 10 Steps To Overcome Security's Image Problem

In developing this report, Forrester drew from a wealth of analyst experience, insight, and research through advisory and inquiry discussions with end users, vendors, and regulators across industry sectors.

Related Research Documents

itemCase Study: DTCC Implements A Process-Based Approach To Security Metrics

April 29, 2009

itemCase Study: Harland Clarke Turns To Corporate Objectives For Defining Security Metrics

April 29, 2009

itemSecurity Budgets, Reporting, And Responsibilities Are All Rising In 2009

January 20, 2009

itemTwelve Recommendations For Your 2009 Information Security Strategy

January 20, 2009

itemBest Practices: Security Metrics

July 22, 2008

Find Documents In Related Categories

This document falls under the following categories. Click on a link below to find similar documents.

Analyst: Khalid Kark
Technology: Economy, Governance, Risk, & Compliance, IT Adoption, IT Management, IT Spending & Budgeting, Recession, Regulations & Legislation, Security & Risk, Security Operations, Security Program Governance, Serving the Business
Geography: Asia Pacific, Europe, North America
Archived Teleconference:
The Managed Security Services Market Landscape
Original air date: Friday, October 30, 2009
corner border corner
Ratings and Comments
Rating: 9 out of 10
based on 2 ratings across all roles.
corner border corner