Attacks/Breaches

10/24/2017
02:00 PM
Dawn Kawamoto
Dawn Kawamoto
Slideshows
50%
50%

10 Steps for Stretching Your IT Security Budget

When the budget gods decline your request for an increase, here are 10 ways to stretch that dollar.
Previous
1 of 11
Next

Image Source: Vadym Nechyporenko via Shutterstock

Image Source: Vadym Nechyporenko via Shutterstock

A whopping 1.9 billion data records were breached during the first half of the year, marking a 164% jump from the same time a year ago. But despite the never-ending rise in attacks and breaches, only 35% of IT professionals expect their organizations to increase security spending in the next 12 months, according to recent surveys.

In other words, IT security budget increases clearly are not keeping up with the rate of breaches and attacks. But despite this shortfall, IT security leaders may have more tools and tricks at their disposal to stretch their budgets than they realize. For example, ever think of joining one of the local security groups on Meetup.com to vet potential hires, rather than plunking down money for a recruiting firm? Or using free tools such as network scanner Nmap, or free apps from IT social media community Spiceworks?

Here are 10 top tips to stretch IT security budgets.

 

Dawn Kawamoto is an Associate Editor for Dark Reading, where she covers cybersecurity news and trends. She is an award-winning journalist who has written and edited technology, management, leadership, career, finance, and innovation stories for such publications as CNET's ... View Full Bio

Previous
1 of 11
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
More Than Half of Users Reuse Passwords
Curtis Franklin Jr., Senior Editor at Dark Reading,  5/24/2018
Is Threat Intelligence Garbage?
Chris McDaniels, Chief Information Security Officer of Mosaic451,  5/23/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-11487
PUBLISHED: 2018-05-26
PHPMyWind 5.5 has XSS via the cid parameter to newsshow.php, or the query string to news.php or about.php.
CVE-2018-11471
PUBLISHED: 2018-05-25
Cockpit 0.5.5 has XSS via a collection, form, or region.
CVE-2018-11472
PUBLISHED: 2018-05-25
Monstra CMS 3.0.4 has Reflected XSS during Login (i.e., the login parameter to admin/index.php).
CVE-2018-11473
PUBLISHED: 2018-05-25
Monstra CMS 3.0.4 has XSS in the registration Form (i.e., the login parameter to users/registration).
CVE-2018-11474
PUBLISHED: 2018-05-25
Monstra CMS 3.0.4 has a Session Management Issue in the Administrations Tab. A password change at admin/index.php?id=users&action=edit&user_id=1 does not invalidate a session that is open in a different browser.