[ISN] How to optimize your security budget

http://www.csoonline.com/article/2153713/security-leadership/how-to-optimize-your-security-budget.html By George V. Hulme CSO Online May 12, 2014 The good news is that security budgets are rising broadly. The bad news? So are successful attacks. Perhaps that’s why security budgets averaging $4.3 million this year represent a gain of 51% over the previous year – and that figure is nearly double the $2.2 million spent in 2010 – all according to our most recent Global Information Security Survey, conducted by PricewaterhouseCoopers. The question is, why? Why are security budgets rising but enterprises still are not getting the results hoped? “Many organizations are infatuated with buying the latest trendy thing, whether or not it makes the most sense for their specific security posture,” says Jay Leek, chief information security officer at The Blackstone Group. The 11th annual Global Information Security Survey of 9,600 executives also found that the number of organizations reporting losses of greater than $10 million per incident is up 75 percent from just two years ago. The costs of these breaches also are rising, with data breaches up 9 percent in 2013 from 2012. One thing is certain – the organizations are not spending on the technologies and capabilities best suited to help spot advanced attackers, such as malware analysis with only 51% doing so, inspection of traffic leaving the network (41%), rogue device scaling (34%), deep packet inspection (27%), or threat modeling (21%). […]




Facebooktwittergoogle_plusredditpinterestlinkedinmail