Dlamini, Moses TEloff, MMEloff, JHPHone, K2010-09-292010-09-292009-07Dlamini, MT, Eloff, MM, Eloff, JHP and Hone, K. 2009. BC3I: towards requirements specification for preparing an information security budget. Information Security South Africa (ISSA 2009) Conference, University of Johannesburg, Johannesburg, 6-8 July 2009, pp 16978-1-86854-740-1http://hdl.handle.net/10204/4410Information Security South Africa (ISSA 2009) Conference, University of Johannesburg, Johannesburg, 6-8 July 2009The entire business landscape finds itself on the verge of a recession because of ongoing global economic turmoil. Thus, there is a heightened need to minimise and mitigate business risk and scrutinise information spending while ensuring compliance with regulatory mandates. This calls for decision makers to become vigilant in their spending and move towards an optimised information security investment. The main aim of this paper is to provide decision makers with a set of requirements to be considered when implementing a cost-effective and optimal information security budget; in a manner that preserve organisations’ information security posture and compliance status. Research reported on in this paper forms part of an ongoing project known as the BC3I (Broad Control Category Cost Indicators) framework.enInformation security spendingInformation security breachesRegulatory complianceInformation securityInformation security budgetInformation Security South AfricaISSA 2009Conference PresentationDlamini, M., Eloff, M., Eloff, J., & Hone, K. (2009). BC3I: towards requirements specification for preparing an information security budget. http://hdl.handle.net/10204/4410Dlamini, MT, MM Eloff, JHP Eloff, and K Hone. "BC3I: towards requirements specification for preparing an information security budget." (2009): http://hdl.handle.net/10204/4410Dlamini M, Eloff M, Eloff J, Hone K, BC3I: towards requirements specification for preparing an information security budget; 2009. http://hdl.handle.net/10204/4410 .TY - Conference Presentation AU - Dlamini, MT AU - Eloff, MM AU - Eloff, JHP AU - Hone, K AB - The entire business landscape finds itself on the verge of a recession because of ongoing global economic turmoil. Thus, there is a heightened need to minimise and mitigate business risk and scrutinise information spending while ensuring compliance with regulatory mandates. This calls for decision makers to become vigilant in their spending and move towards an optimised information security investment. The main aim of this paper is to provide decision makers with a set of requirements to be considered when implementing a cost-effective and optimal information security budget; in a manner that preserve organisations’ information security posture and compliance status. Research reported on in this paper forms part of an ongoing project known as the BC3I (Broad Control Category Cost Indicators) framework. DA - 2009-07 DB - ResearchSpace DP - CSIR KW - Information security spending KW - Information security breaches KW - Regulatory compliance KW - Information security KW - Information security budget KW - Information Security South Africa KW - ISSA 2009 LK - https://researchspace.csir.co.za PY - 2009 SM - 978-1-86854-740-1 T1 - BC3I: towards requirements specification for preparing an information security budget TI - BC3I: towards requirements specification for preparing an information security budget UR - http://hdl.handle.net/10204/4410 ER -