Loading ...
From Computerworld New Zealand: “Organisations that have reached a high level of IT security practice maturity can safely scale back security spending to between 3% and 4% of their IT budget by 2008, according to research firm Gartner.”
This makes sense. In the US the big security push seems to be dwindling. Compliance and the maintenance over IT needed to comply will always be present, but many companies have already pushed to implement or refine their internal controls. Since this implementation is near complete, the spike that accompanies the initial push for compliance with a new regulation (SOX) has ended and the infrastructure now modified. In other words, a significant change/growth has happened and now we are left with maintaining that change.
