Skip to main content

A Global Exploration of IT Security Budget Trends

Chief Information Security Officers (CISOs) have updated their IT security plans for 2017, due to ongoing concerns about new threats. Worldwide, IT organizations currently spend an average of 5.6 percent of their IT budget on IT security, according to the latest market study by Gartner.

However, the study uncovered that security spending can range from 1 to 13 percent of an organization's overall IT budget.

"Clients want to know if what they are spending on information security is equivalent to others in their industry, geography and size of business in order to evaluate whether they are practicing due diligence in security and related programs," said Rob McMillan, research director at Gartner.

That said, Gartner analysts believe that comparisons with industry averages are of limited value. CISOs could be spending at the same level as the peer group, yet be spending on the wrong things and are therefore vulnerable.

IT Security Market Development

According to the Gartner assessment, vendors could benefit, because the majority of organizations will continue to use average IT security spending figures as a proxy for assessing their security posture through 2020.

Without the context of business requirements, risk tolerance and satisfaction levels, the metric of IT security spending, by itself, doesn't provide valid comparative information that should be used to allocate resources.

Moreover, IT spending statistics alone do not measure IT effectiveness. They're not a gauge of successful IT organizations. They simply provide a view of average costs, without regard to complexity or demand.

Any statistics on explicit security spending are inherently soft, because they understate the true magnitude of enterprise investments in IT security -- since security features are being incorporated into hardware, software, activities or initiatives not specifically dedicated to security.

That's why many organizations do not know their real security budget. It's partly because few cost accounting systems break out security as a separate line item, and many security-relevant processes are carried out by staff who are not devoted full-time to security.

Gartner also believes that, in most instances, the CISO does not have insight into security spending throughout the enterprise.  Moreover, the very secure organizations can spend less than average on security as a percentage of their IT budget.

The lowest-spending 20 percent are composed of two distinctly different types of organizations. Un-secure organizations that under-spend, and secure organizations that have implemented best practices for IT security that reduce the overall complexity of their IT infrastructure by limiting security vulnerabilities.

Outlook for IT Security Spending Trends

According to Gartner, organizations should be spending between 4 and 7 percent of their IT budgets on IT security -- lower in the range if they have mature systems, higher if they are wide open and at risk. This represents the budget under the control and responsibility of the CISO, and not the "real" or total budget.

To demonstrate due care in information security, organizations must also assess their risks and understand both the CISO's security budget and the "real" security budget found in the complicated range of accounts that may not capture all security spending.

"A CISO who has knowledge of all of the security functions taking place within the organization as well as those that are necessary but missing and the way in which those functions are funded, is likely to use indirectly funded functions to greater advantage," McMillan concluded.

Popular posts from this blog

Industrial and Manufacturing Technology Growth

In an evolving era of rapid advancement, market demand for innovative technology in the industrial and manufacturing sectors is skyrocketing. Leaders are recognizing the immense potential of digital transformation and are driving initiatives to integrate technologies into their business operations.  These initiatives aim to enhance efficiency, reduce costs, and ultimately drive growth and competitiveness in an increasingly digital business upward trajectory. The industrial and manufacturing sectors have been the backbone of the Global Networked Economy, contributing $16 trillion in value in 2021. Industrial and Manufacturing Tech Market Development   This growth represents a 20 percent increase from 2020, highlighting the resilience and adaptability of these sectors in the face of unprecedented challenges, according to the latest worldwide market study by ABI Research . The five largest manufacturing verticals -- automotive, computer and electronic, primary metal, food, and machinery -

Rise of AI-Enabled Smart Traffic Management

The demand for smart traffic management systems has grown due to rising urban populations and increasing vehicle ownership. With more people and cars concentrated in cities, problems like traffic congestion, air pollution, and greenhouse gas emissions are pressing issues. Since the early 2000s, government leaders have been exploring ways to leverage advances in IoT connectivity, sensors, artificial intelligence (AI), and data analytics to address these transportation challenges. The concept of a Smart City emerged in the 2010s, with smart mobility and intelligent traffic management as key components.  Smart Traffic Management Market Development Concerns about continued climate change, as well as cost savings from improved traffic flow, have further motivated local government investment in these advanced systems. According to the latest worldwide market study by Juniper Research, they found that by 2028, smart traffic management investment will be up by 75 percent from a 2023 figure of

AI Software Market will Reach $251 Billion

The growth in Artificial Intelligence (AI) software could lead to many benefits. As more organizations adopt AI, they may become more efficient, productive, and able to offer improved products and services. The global job market could also expand, with demand growing for roles like AI engineers and technicians. Plus, AI apps could enable breakthroughs in fields like healthcare, transportation, and energy. The worldwide AI software market will grow from $64 billion in 2022 to nearly $251 billion in 2027 at a compound annual growth rate (CAGR) of 31.4 percent, according to the latest market study by International Data Corporation (IDC). AI Software Market Development The forecast for AI-centric software includes Artificial Intelligence Platforms, AI Applications, AI System Infrastructure Software (SIS), and AI Application Development and Deployment (AD&D) software (excluding AI platforms). However, it does not include Generative AI (GenAI) platforms and applications, which IDC recent