The security metrics that many CISOs traditionally use typically lack business context and often fail to provide a comprehensive and actionable view of how the security program decreases risk and enables the business.
This can leave security teams with a false sense of confidence and CISOs struggling to show ROI and build budget. However, in order to keep pace with the new threats that have surfaced over the past year, many CISOs feel more investment in security will be critical. According to an Enterprise Strategy Group survey of IT decision makers1, 66% of respondents intend to increase their cyber security budget throughout 2021.
