IT security and compliance cost as a percentage of total IT cost, excluding depreciation/amortization
This measure calculates the IT security and compliance cost as a percentage of the total IT cost. IT security and compliance cost covers expenses for security strategy and architecture, governance, risk and compliance control, infrastructure and endpoint security, application security, data security, identity and access management. Total IT Cost or Budget (excluding depreciation/amortization; i.e., based on cash flow) includes operating and capital expenses for performing the entire IT function. Operating expenses are independent of including or excluding depreciation/amortization. Capital expenses should include costs for all capitalized IT assets acquired during the reporting period. The IT function concerns the development, delivery, support, and management of IT business/strategy, IT customer relationships, IT resilience/risk/security, IT information, and IT services/solutions. This Cost Effectiveness measure is intended to help companies understand this cost expenditure related to the process group "Manage IT resilience and risk".
Benchmark Data
25th | Median | 75th |
---|---|---|
- | - | - |

Compute this Measure
Units for this measure are percent.
IT security and compliance cost as a percentage of total IT cost, excluding depreciation/amortization