Buidling a case for security
Couple nights ago, I attended a vendor-sponsored meeting where I heard some attendees talking about their issues in convincing their CFO to spend money on security initiatives. I thought this is a problem that should have a ready response from the security industry. Apparently, not! So, how do you sell security and ask for a budget?The point is: You will never be able to win funding without talking to the CFO in a language that he understands. I believe that connecting the dots between security and risk management is what is key in convincing the CFO to get the money. i.e., lack of security means plenty of risks. And plenty of risks mean exposure that would directly affect the top management. As long as you do not distill your requirements in that fashion, it is not going to work in your favor. And stop blaming the CFO... he just does not understand what you are talking about!
<< Home