Let us all strive for information security along with a healthy and prosperous new year.
See you all in 2011 !!!!!!!!!!!!!!!!
Friday, December 31, 2010
Tuesday, December 21, 2010
Cost Benefit Analysis
Arguably, the most important part of your business case is being able to clearly communicate the costs and benefits of a program. Below is a suggestion for this final part of your business case.
Costs:
To fulfill the required mandate for a security awareness training program, we will need to allocate resources and purchase materials for this purpose. To ensure the program’s success on a long-term basis, we are requesting that a Security Awareness Training Manager be appointed to this program. Expenses will include this individual’s salary as well as the costs for developing and/or delivering the awareness program. Cost estimates are summarized in the table below
Item
Program Manager Salary
Commercial of the Shelf Online Training Program License Costs
Customization costs for online program
Learning Management System – rental or purchase costs and comparison if required
Promotional materials for communicating the awareness program (ie., posters, games, videos)
Additional staff that might be required from time to time for delivery of program
Benefits:
Our proposed information security awareness program will realize the following benefits:
1. Make employees aware and communicate more effectively internal security policies and procedures.
2. Create a culture of security awareness by providing both the motivation and an understanding of the risks and threats and how to mitigate them.
3. Reduce the number of threats and potential risks and safeguard important company information.
4. Comply with federal/state regulations on security policies and practices.
5. Provides a basis from which disciplinary and/or legal action can be facilitated.
6. Reduce the risk and cost of breaches.
Costs:
To fulfill the required mandate for a security awareness training program, we will need to allocate resources and purchase materials for this purpose. To ensure the program’s success on a long-term basis, we are requesting that a Security Awareness Training Manager be appointed to this program. Expenses will include this individual’s salary as well as the costs for developing and/or delivering the awareness program. Cost estimates are summarized in the table below
Item
Program Manager Salary
Commercial of the Shelf Online Training Program License Costs
Customization costs for online program
Learning Management System – rental or purchase costs and comparison if required
Promotional materials for communicating the awareness program (ie., posters, games, videos)
Additional staff that might be required from time to time for delivery of program
Benefits:
Our proposed information security awareness program will realize the following benefits:
1. Make employees aware and communicate more effectively internal security policies and procedures.
2. Create a culture of security awareness by providing both the motivation and an understanding of the risks and threats and how to mitigate them.
3. Reduce the number of threats and potential risks and safeguard important company information.
4. Comply with federal/state regulations on security policies and practices.
5. Provides a basis from which disciplinary and/or legal action can be facilitated.
6. Reduce the risk and cost of breaches.
Subscribe to:
Comments (Atom)