Over the last several years numerous CISOs and cybersecurity leaders have asked DayBlink Consulting if we have any reliable cybersecurity spending benchmarks. This question tends to spring up at the start of the financial planning season as they are pressed by finance teams and executive leadership seeking reasonable comparisons to their competitors, the industry and the broader market.
On the surface, it sounds like an entirely reasonable request and data point to review. Upon deeper scrutiny it could be the most dangerous metric in cybersecurity.
Read more here: Justin Whitaker on Medium