Graydon McKee Site Logo

Justifying the Value

Scales showing Risk versus Return


Return on Investment. Words that typically bring dread to the heart of any information security professional. Some have even gone so far as to advocate that it is a useless term in our industry given the nature of the threat environment with which we constantly live. If you look back at my last post entitle
“You get nothing! You lose! Good day, Sir!” you will see a conversation that revolves around on how CISOs are viewed as out of touch by their C-Level peers.