CYFIRMA’s Cyber Awareness Series: Cost of security controls, implementation time, resource requirements, and review cadence

Kumar Ritesh
Sep 2, 2018 · 1 min read

Cybersecurity Economics: While difficult to calculate the ROI of security controls, the damage caused by its absence can be catastrophic. Organizations must:

- Balance the critical drivers for installing effective security controls in an organization: cost, time and resources required for implementation, maintenance and a regular review cycle.

- Target the controls at People, Processes, and Technology as the critical parameters determining the design and operational effectiveness of the security controls.

Here’s our view on:

· Security control costs

· Implementation time

· Resource requirements

· Review frequency of control logs and configurations

While there is no fit-for-all approach as customization will be required based on strategic goals, risk tolerance, budget, organization size, user and site spread, and business complexity — our suggested approach to implementing an effective security controls program is universal.

Chairman and CEO @CYFIRMA, Cyber entrepreneur, innovator and evangelist

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade