We all know the 10% statistic, companies should be spending ~10% of IT budget on security. Where should you spend that budget against NIST CSF (identify/protect/detect/respond/recover)? Let’s talk about optimizing your budget spend.
1: Understand where budgets compare (benchmark) around the 10% figure.
2: Think about where budget dollars go against CSF objectives.
3: Gain insights to help build budget case and investment directions.