Business case elements for information security

During recent RSA Conference 2016 in Singapore there was an interesting presentation on the elements or items to be presented to sponsor to consider when asking for resources – in form of Money, time and people to devote on a particular information security initiative.

You must be prepared to have answers to following 3 questions.

  1. How does it contribute in gaining competitive advantage for the organisation?
  2. What the future benefits of the investment?
  3. How does it compare to similar companies?

I find these questions are relevant during discussions on a new innovative technology initiative being pursued by business. Answers to above questions would also help Security folks understand the business context and perspective.

Above list shared by security team is also proof of how both business and security has lots to learn from each other. How this partnership can go a long way in shortening the time span in implementation of new technologies.





Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s