Document Controls
For Security & Risk Professionals
| Primary Analyst Photo | Document Information | Rate this Document |
|---|---|---|
 |
July 24, 2009 Articulating The Business Value Of Information Securityby Khalid Kark with Robert Whiteley, Allison Viglianti |
Average: 9
(4 ratings)
|
This is an excerpt
Executive Summary
Many CISOs struggle to articulate the value of their security programs and justify the security budget to business and executive management. This problem was acutely evident in the current economic downturn: Many security managers saw their budgets slashed, their projects postponed, and their employees laid off. CISOs have always struggled to effectively communicate the value of information security to business, but now there is a lot more at stake if they don't. Working closely with top CISOs at large, global organizations, Forrester has identified five areas of value for the business: reputation, regulation, revenue, resilience, and recession. Depending on your audience, we recommend that you use all or a combination of these business value propositions to make the case for continued investment and maybe even an increase in your security spending.
TABLE OF CONTENTS
- CISOs Struggle To Answer Some Basic Questions
- Business Value Is Subjective; Therefore, You Need A Value Tool Kit
- Remember The Five R's When Making The Case For Information Security
RECOMMENDATIONS
- Use 10 Steps To Overcome Security's Image Problem
- Related Research Documents
This is an excerpt
Buy Risk-Free
Price: US $499
Our Service Guarantee: If you are not completely satisfied with this document, notify Forrester within 24 hours of purchase for a full refund.
Already a Forrester Client?
Log in to read this document.
