The original post: /r/cybersecurity by /u/Rare_Protection on 2024-11-21 17:46:28.
As the title suggests, what data do CISOs use to justify their security budget outside of “we need to meet ___ compliance?”
Is it ALE? We’re exposed to 2 Million dollars annually in cybersecurity risk so we need to spend just south of that to reduce risk?
Are there databases with this information, or risk quantification platforms used like Axio?
How does this work?
You must log in or register to comment.