Calculating the ROI in layered security

by Anthony O’Mara, Vice President EMEA, Malwarebytes What if it never happens? That’s the question which hangs over every investment in security. It’s the same with IT security....

Businessman drawing ROI (return on investment) with graphs

by Anthony O’Mara, Vice President EMEA, Malwarebytes

What if it never happens? That’s the question which hangs over every investment in security. It’s the same with IT security. Not only do inefficient security models waste time in IT administration but they also increase the risk of online theft and being held to ransom. At the same time, they expose the business to greater losses from reputational damage.

How many hours does IT administration spend cleaning up and re-configuring PCs and other systems after malware infection? How much does it cost per hour? What is the cost of business downtime while repairing systems? Answering these questions helps demonstrate the waste in the current IT security model and hence what businesses can save in moving to layered security.

However, there will be additional benefits that are more difficult to quantify. Business leaders might believe a serious cyber security breach won’t happen to their organisation but cyber-attacks can cost businesses hundreds of millions in direct financial theft, lost revenue and damage to reputation.

Layered security helps organisations mitigate these risks. Measuring these avoided costs can be difficult but they can come as an ‘added extra’ since the move to layered security can be covered by day-to-day efficiency savings in security and IT administration.

Lastly, layered security can provide greater additional assurance that the business is complying with legislation.

Combined, these benefits create a solid case for the return on investment of layered security and is recognised by an increasing number of successful IT leaders.

In this article

Join the Conversation