Why Read This
The global downturn has constrained security budgets for several years now, and chief information security officers (CISOs) have become accustomed to taking on more responsibilities without corresponding growth to their resource levels. Unfortunately, 2012 carried on where a turbulent 2011 left off, and the continuing drama of corporate espionage, state-sponsored hacking, and hacktivist mayhem has kept the topic of information security clearly in the sights of corporate boards. Most CISOs hoping that this attention would result in significant investment gains were disappointed; however, there were some signs for hope. This paper draws on Forrester's global security survey data and finds that 2013 may look very different to CISOs, depending on their geographic location. It also covers how security teams can "make do and mend" with a threadbare budget and how some CISOs are reframing the discussion to secure significant investment.