Research: 12 Percent of CISOs Faced Budget Reductions in 2024

IANS Research and Artico Search recently unveiled the 2024 Security Budget Benchmark Report, offering critical insights into the state of security budgets and staffing amidst a backdrop of global economic challenges. This comprehensive study compiled findings from the fifth annual CISO Compensation and Budget Research Survey, including responses gathered from over 750 Chief Information Security Officers (CISOs) between April and August 2024. The report indicates a cautious yet necessary expansion in security spending.

Amidst global economic and geopolitical uncertainty, markets are jittery, companies are spending frugally, and investors remain cautious. Security budgets are also affected by these realities with most budgets remaining flat or increasing modestly.

"As organizations confront an evolving threat landscape, the slight uptick in cybersecurity budgets this year reflects a careful balancing act," said Nick Kakolowski, Sr. Research Director at IANS. "While we see modest increases, it's clear that CISOs are prioritizing strategic investments over broad expansions. The focus is on strengthening defenses against sophisticated threats like AI-driven attacks, even as CISOs navigate tighter fiscal environments. Our research highlights the careful approach security leaders are taking, ensuring that every dollar spent is justified by the most pressing risks."

Key survey findings highlighted in the Security Budget Benchmark Report include:

Security budget growth hits 8%, up from 2023
Nearly two-thirds of CISOs report increasing budgets. The average growth has risen from 6% in 2023 to 8% this year, but this is only about half of growth rates in 2021 (16%) and 2022 (17%). A quarter of CISOs experienced flat budgets while 12% faced declines.

Security Outpaces IT Spend and Annual Revenue Growth
Over the past five years, the security budget as a percentage of IT spending has steadily increased, rising from 8.6% in 2020 to 13.2% in 2024. Similarly, as a percentage of revenue, security budgets have grown from 0.50% to 0.69% during the same period. These trends validate the increasing prioritization of security within organizations, as larger portions of resources are allocated to safeguarding against evolving threats.

External Risks Drive High Growth Scenarios
The research highlights that significant budget increases are often reactive, driven by external factors such as incidents, breaches, or the rising risks such as those associated with AI adoption. Additionally, internal dynamics like rapid company expansion or strategic shifts, including mergers and acquisitions, were cited by CISOs as key contributors to justify accelerated budget growth.

Budget Growth Rebounds in Some Industries but Not Others
Multiyear budget growth trends vary by industry. In the financial services, tech, retail and hospitality, and legal sectors, average security budget growth has improved from 2023 levels but only remains in the mid-to-high single digits. In contrast, the healthcare, business services, and consumer goods and services sectors have seen further declines in average growth rates compared to 2023.

Slower Hiring Amid Cautious Spending
Despite the budget increases, hiring trends tell a different story. Staff growth has slowed significantly, decreasing from 31% in 2022 to 16% in 2023 and further falling to 12% this year. Over a third of CISOs reported maintaining consistent headcount, reflecting a more measured approach to expanding security teams.

“For the last 12 months, it has been difficult for CISOs to add staff even when there's a need in the organization,” said Steve Martano, IANS Faculty and Executive Cyber Recruiter at Artico Search. “Teams are being asked to do more with less and CISOs are finding it difficult to get budget for recruiting and hiring. This puts a lot of pressure not only on CISOs, but also on their teams."

Featured

  • Survey Shows Election Anxiety Crosses Party Lines

    New reports of election worker intimidation are raising concerns about election interference. A majority of Americans (71%) are worried about voter intimidation or safety at the polls, and 75% want security cameras at their voting place, according to a new national survey. Read Now

  • 66 Percent of Cybersecurity Pros Say Job Stress is Growing

    Sixty-six percent of cybersecurity professionals say their role is more stressful now than it was five years ago, according to the newly released 2024 State of Cybersecurity survey report from ISACA, a global professional association advancing trust in technology. Read Now

  • Live from GSX 2024: Post-Show Recap

    Another great edition of GSX is in the books! We’d like to thank our great partners for this years event, NAPCO, LVT, Eagle Eye Networks and Hirsch, for working with us and allowing us to highlight some of the great solutions the companies were showcasing during the crowded show. Read Now

    • Industry Events
    • GSX
  • Research: Cybersecurity Success Hinges on Full Organizational Support

    Cybersecurity is the top technology priority for the vast majority of organizations, but moving from aspiration to reality requires a top-to-bottom commitment that many companies have yet to make, according to new research released today by CompTIA, the nonprofit association for the technology industry and workforce. Read Now

Featured Cybersecurity

Webinars

New Products

  • Luma x20

    Luma x20

    Snap One has announced its popular Luma x20 family of surveillance products now offers even greater security and privacy for home and business owners across the globe by giving them full control over integrators’ system access to view live and recorded video. According to Snap One Product Manager Derek Webb, the new “customer handoff” feature provides enhanced user control after initial installation, allowing the owners to have total privacy while also making it easy to reinstate integrator access when maintenance or assistance is required. This new feature is now available to all Luma x20 users globally. “The Luma x20 family of surveillance solutions provides excellent image and audio capture, and with the new customer handoff feature, it now offers absolute privacy for camera feeds and recordings,” Webb said. “With notifications and integrator access controlled through the powerful OvrC remote system management platform, it’s easy for integrators to give their clients full control of their footage and then to get temporary access from the client for any troubleshooting needs.” 3

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles. 3

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3