BUSINESS SURVEILLANCE
An effective budget must also include allocations for security training and culture development , so that every employee values it . Security culture means getting all employees to be part of the company ’ s security and risk posture and to engage in secure behaviour . These investments should also recognise role model employees in compliance and incident reporting .
Skills and automation
One of the best investments any CISO can make is in skilled people . With the market skills gap , it ’ s very difficult to acquire and retain talented security professionals . As
The budget cycle should start with an assessment of company assets and risks , and an accurate overview of your IT assets and resources too . a result , you should invest in developing your existing employees as much as possible , as well as maintaining a culture which retains them .
You should look at how to automate and make your staff more effective . Security teams can ’ t operate in stressful environments , so helping your team be more efficient will make their lives easier and also deliver better security overall . As you analyse potential investments , consider not only how much they cost , but also how much they could save .
Taking away manual process steps with automation also links back to the cultural
64 www . intelligentciso . com