Report: IT security spending on the rise
- By John Rendleman
- Oct 09, 2007
A typical government agency or company now spends 20 percent of its information technology budget on security, including product purchases, training, assessments and certification, according to a survey released today by the Computing Technology Industry Association.
Spending on IT security rose to 20 percent of an organization's total IT budget on average in 2006, up from 15 percent in 2005 and 12 percent in 2004, the survey of 1,070 organizations found.
Technology purchases accounted for 42 percent of the organizations' total IT security expenditures, while security-related processes accounted for 17 percent, training for 15 percent, security assessments for 12 percent and security certifications for 9 percent. Various other categories accounted for the rest.
Almost half of the organizations said they plan to increase their spending on security products in the next year and one-third said they plan to spend more on security training. Respondents planning to spend more on IT security in the coming year expect average increases in the 19 percent to 23 percent range for all categories of IT security.
The most widely deployed IT security measures are anti-virus software, firewalls and proxy servers, which were used almost universally by survey respondents, although organizations have significantly increased their use of multiple security techniques during the past two years, including the addition of intrusion detection systems, physical access controls, multifactor authentication systems and other security technologies, the survey found.