The Economics of Information Security Investment
Information security is a continuously changing discipline that requires continuous adaptation to new and ever-changing information security threats, countermeasures and the global business landscape. This calls for decision makers to become vigilant in their spending and move towards an optimised information security investment. This paper gives a brief overview on the economics of information security and discusses related work on information security investment. The main aim of this paper is to provide decision makers with a set of requirements to be considered when implementing a cost-effective and optimal information security budget; in a manner that preserve organisations’ information security posture and compliance status.
Helen Zhang, Gang Shen and David Jin
H. Wang "The Economics of Information Security Investment", Advanced Materials Research, Vols. 219-220, pp. 1550-1553, 2011