Organizations spend an average of 5.6 percent of the overall IT budget on security and risk management, market research firm Gartner said on Friday. Enterprises should be spending between four and seven per cent of their IT budgets on IT security, lower in the range if they have mature systems, higher if they are wide open and at risk, it added. Also Read - FIR filed against Twitter India again, now over child pornography content
“Clients want to know if what they are spending on information security is equivalent to others in their industry, geography and size of business in order to evaluate whether they are practicing due diligence in security and related programmes,” said Rob McMillan, Research Director at Gartner, in a statement. Also Read - Ola to offer free oxygen concentrators to the needy
IT security spending ranges from approximately one percent to 13 percent of the IT budget and is potentially a misleading indicator of programme success. The majority of organisations will continue to misuse average IT security spending figures as a proxy for assessing security posture through 2020, the report added.