Making a case for more security can be a difficult task at any enterprise. Many executives incorrectly assume that the lack of a recent breach means the company is adequately secure. However, as the old adage goes, there are only two kinds of companies: those that have been breached, and those that don't know they've been breached. Additionally, in the not-so-distant past, the CISO's seat at the executive table was tentative at best. The role was seen as necessary — we need someone to lead our security efforts — but also tactical, and, as a result, security was seen as a check box item, rather than a function that could bring value to the enterprise.

How can enterprise CISOs overcome this challenge? One way is to demonstrate the value security brings to the enterprise. This value should extend beyond the simple "we avoided a breach" argument and demonstrate how security delivered true ROI and even accelerated innovation. One Global 2000 firm that Veracode works with recently teamed up with Forrester to create an ROI report to demonstrate just that. A summary of those findings can be seen in the following infographic.

About Jessica Lavery

Jessica is part of the content team at Veracode. In this role she strives to create and promote content that will engage, educate and inspire security professionals around the topic of application security. Jessica’s involvement with the security industry goes back more than a decade at companies like Astaro, and Sophos where she held roles in corporate communication and marketing.

Comments (0)

Please Post Your Comments & Reviews

Your email address will not be published. Required fields are marked *

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.