CISM - Information Security Governance - Section 1.6
Conduct strategic planning including budget development, resource allocation and business case preparation for security investments.
Prepare a business case for security investments that quantifies value through ROI on security and links budget planning and resource management decisions to risk reduction outcomes. Weigh competing priorities to allocate resources to controls that deliver the greatest reduction in residual risk.
Business caseBudget planningResource managementROI on security
More in this domain
Back to all Information Security Governance objectives, or the CISM cert hub.
Examworthy is not affiliated with or endorsed by ISACA. Original, blueprint-aligned practice material only.