{"id":51066,"date":"2023-03-17T22:49:00","date_gmt":"2023-03-17T22:49:00","guid":{"rendered":"https:\/\/www.darkreading.com\/edge-articles\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget"},"modified":"2023-03-17T22:49:00","modified_gmt":"2023-03-17T22:49:00","slug":"how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/","title":{"rendered":"How CISOs Can Work With the CFO to Get the Best Security Budget"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltb781de4d49359347\/6414edec71e8c4296be880f7\/negotiating-Roman_Shyshak-alamy.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>Today&#8217;s enterprise security executives face situations that could really hurt the company&#8217;s bottom line. Security teams are trying to modernize security operations in an increasingly porous network environment with ever more sophisticated threats. There are also economic pressures from layoffs, budget cuts, and restructuring.<\/p>\n<p>Even worse, CFOs have heard from CISOs the doom-and-gloom predictions of the potential fiscal disaster of data breaches so often that it&#8217;s no longer resonating with them.<\/p>\n<p>The doomer scenario is not hypothetical \u2014 global compliance requirements and privacy regulations drive the cost of a breach even higher than just the technical costs. However, CFOs and other C-level executives have heard these warnings so often now that it&#8217;s just background information that doesn&#8217;t drive their decision making.<\/p>\n<p>Is there a more effective way to help the CFO understand why security needs to be far better funded? Yes: Present the CFO with a shared-risk scenario.<\/p>\n<h2 class=\"regular-text\">Setting Protection Priorities<\/h2>\n<p>Allan Alford, who was a CISO in various industries including technology, communications, and business services before morphing into a CISO consultant, says CISOs should use a different approach to describe cybersecurity issues to the CFO. They should begin by asking the CFO to identify the six most important strategic elements of the business \u2014 possibly including the supply chain, manufacturing operations, sensitive future product plans, etc. \u2014 then detail their plans for protecting each of those critical areas, Alford says.<\/p>\n<p>The CISO can present the situation to the CFO in the following manner: &#8220;Thanks for sharing those priorities. Now, you are saying we need to cut the security budget by 37%. Given the state of the economy in our sectors, that is completely understandable. To make the cuts possible, can you tell me which of these six areas I should stop protecting? We will also need to bring in the line-of-business executive so that you can explain how these changes will impact that area.&#8221;<\/p>\n<p>Historically, CISOs, CSOs, CROs, and other security-adjacent executives have been good soldiers, accepting the CFO-ordered cuts and deciding where changes have to be made, Alford says. This conflicts with the CISO&#8217;s job: to protect the company \u2014 including all intellectual property and all assets.<\/p>\n<p>If the CFO decides to cut back security funding, they need to work with the COO, the CEO, the board, and other senior executives to decide which operations they can afford to not protect. It should not be left to the CISO to make those calls or defend the choices.<\/p>\n<p>In fairness, the decision is rarely black-and-white. But if the CISO positions the budget decisions in this manner, the CFO will see the actual business impact the reductions would have. When the CFO is forced to decide where the cuts will happen and to choose which top-priority division is left undefended, the conversation shifts, Alford says. The CISO can say to the CFO, &#8220;We&#8217;ll jointly figure out what risks are tolerable, but make no mistake: A 37% cut will put various units at extreme risk. Can the business afford that deep a cut in our defenses?&#8221;<\/p>\n<p>The CISO can present cost-effective alternatives to reduce security defenses, rather than eliminating them entirely. Now there is the possibility of negotiating a smaller budget cut. Maybe that 37% cut becomes a 23% cut.<\/p>\n<h2 class=\"regular-text\">Negotiating as a Group<\/h2>\n<p>The conversation shouldn&#8217;t begin and end with the CFO, says Daniel Wallance, an associate partner with McKinsey. It should involve the board&#8217;s risk committee, the CEO, the COO, and other colleagues who have a role in security spending, such as the CIO and the CRO.<\/p>\n<p>&#8220;There is also spend coming from risk management [and] compliance on top of IT. I would engage those functions, as they have shared [security] responsibility and they may actually have dedicated resources,&#8221; Wallance says. &#8220;I need this to <em>not<\/em> be a one-on-one conversation. I want to make it a group.&#8221;<\/p>\n<p>These conversations with other security executives should happen before <em>and<\/em> after the CFO meeting, but not during.<\/p>\n<p>The CISO needs to meet with the other security players before meeting with the CFO to learn what overlaps and redundancies currently exist. The CISO also needs to know how much budget flexibility those other executives are willing to offer. That will be crucial information to have while working with the CFO. After meeting with the CFO, the CISO can go back to the other executives and see what they can negotiate as a group.<\/p>\n<p>The actual CISO-CFO meeting should be just the two executives, to avoid making the CFO feel ganged up on. The discussion should be as friendly as possible to allow for reasonable compromises.<\/p>\n<p>Involving the board&#8217;s risk committee is critical, as it is ultimately the board&#8217;s role \u2014 working with the CEO \u2014 to dictate the company&#8217;s risk tolerance. If the CFO&#8217;s requested budget reductions conflict with that risk tolerance, the board needs to know about it.<\/p>\n<p>&#8220;The CISO should be meeting with the risk committee regularly,&#8221; Wallance says. &#8220;The business may not understand the implications of the budget cut. The CFO is not the only person at issue here.&#8221;<\/p>\n<h2 class=\"regular-text\">Adapting to Market Conditions<\/h2>\n<p>Larger trends in the economy also affect CISO budgetary needs.<\/p>\n<p>There is a realistic <a href=\"https:\/\/www.darkreading.com\/edge-articles\/turbulent-cyber-insurance-market-sees-rising-prices-and-sinking-coverage\" target=\"_blank\" rel=\"noopener\">existential threat to cyber insurance<\/a>, the net that CFOs have relied on for more than 20 years. Lloyds of London said that it would stop covering the losses from <a href=\"https:\/\/www.darkreading.com\/edge-articles\/amid-notpetya-fallout-cyber-insurers-define-state-sponsored-attacks-as-act-of-war\" target=\"_blank\" rel=\"noopener\">state actor attacks<\/a>, which is problematic given how <a href=\"https:\/\/blogs.infoblox.com\/security\/what-to-do-about-cyber-insurance-trying-to-exclude-\" target=\"_blank\" rel=\"noopener\">difficult it is to prove an attack&#8217;s origin and who funded it<\/a>. Insurance giant <a href=\"https:\/\/www.ft.com\/content\/63ea94fa-c6fc-449f-b2b8-ea29cc83637d\" target=\"_blank\" rel=\"noopener\">Zurich warned<\/a> it might abandon cyber insurance entirely. And an <a href=\"https:\/\/www.inforisktoday.com\/ohio-supreme-court-says-ransomware-physical-damage-a-20808\" target=\"_blank\" rel=\"noopener\">Ohio Supreme Court decision<\/a> raised the prospect of other cyber insurance limitations. Those changes could sharply increase the pressure on the CFO to better fund security, given that the enterprise will now be on the hook for the full amount of damages.<\/p>\n<p>A complicating factor is the much-ballyhooed cybersecurity talent shortage. Whether the gap is as big as some say, it&#8217;s true that the cost of talent today is higher than what most budgets allow. So, yes, you will have difficulty finding qualified people, but increase the salary enough and, poof \u2014 no more talent shortage.<\/p>\n<p>Richard Haag, the VP for compliance services at consulting firm Intersec Worldwide Inc., maintained that the difficulty in acquiring sufficiently experienced talent is a powerful argument in those CFO discussions.<\/p>\n<p>&#8220;[I]n security, labor is about the only thing that can possibly be cut. You can&#8217;t just swap out firewalls. These agreements are locked in,&#8221; Haag says. &#8220;You need to say &#8216;I can barely protect your top strategic areas now. With the cuts you want, I simply won&#8217;t be able to defend your top targets and certainly not your not-so-top targets. I need more people, certainly not fewer people.'&#8221;<\/p>\n<p>Alford also suggests the CISO point out how they negotiate lower vendor costs. Document it and share it with the CFO to demonstrate that the budget is being spent wisely.<\/p>\n<p>&#8220;Demonstrate your efficiencies by driving vendor discounts as low as you can get them to go. CFOs want to know the money is being well spent, and &#8216;we got a heck of a deal&#8217; does that well,&#8221; Alford says.<\/p>\n<p>Finally, the CISO can also make the case for better security delivering more revenue. Does higher security investment make prospective customers more comfortable? Is lack of security making some existing customers leave? For example, if a financial institution chooses to reimburse customers in all fraud situations \u2014 rather than what most FIs do, which is to only reimburse in some situations \u2014 it could boast that its customers are better protected against fraud, prompting customers to leave competitors. That move would justify higher cybersecurity spend because of the greater acceptance of fraud costs.<\/p>\n<p>&#8220;If you can shorten that sales cycle and prove that security gained more sales, it can be highly persuasive to CFOs: &#8216;Today, three customers walked away, but tomorrow none will,'&#8221; Alford says.<\/p>\n<p>Read More <a href=\"https:\/\/www.darkreading.com\/edge-articles\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>CISOs can and should push back when they&#8217;re presented with budget costs that affect the business. Here&#8217;s how.Read More <a href=\"https:\/\/www.darkreading.com\/edge-articles\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-51066","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>How CISOs Can Work With the CFO to Get the Best Security Budget 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How CISOs Can Work With the CFO to Get the Best Security Budget 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-03-17T22:49:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltb781de4d49359347\/6414edec71e8c4296be880f7\/negotiating-Roman_Shyshak-alamy.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"How CISOs Can Work With the CFO to Get the Best Security Budget\",\"datePublished\":\"2023-03-17T22:49:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/\"},\"wordCount\":1326,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltb781de4d49359347\\\/6414edec71e8c4296be880f7\\\/negotiating-Roman_Shyshak-alamy.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/\",\"name\":\"How CISOs Can Work With the CFO to Get the Best Security Budget 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltb781de4d49359347\\\/6414edec71e8c4296be880f7\\\/negotiating-Roman_Shyshak-alamy.jpg\",\"datePublished\":\"2023-03-17T22:49:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/#primaryimage\",\"url\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltb781de4d49359347\\\/6414edec71e8c4296be880f7\\\/negotiating-Roman_Shyshak-alamy.jpg\",\"contentUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/bltb781de4d49359347\\\/6414edec71e8c4296be880f7\\\/negotiating-Roman_Shyshak-alamy.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How CISOs Can Work With the CFO to Get the Best Security Budget\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How CISOs Can Work With the CFO to Get the Best Security Budget 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/","og_locale":"en_US","og_type":"article","og_title":"How CISOs Can Work With the CFO to Get the Best Security Budget 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-03-17T22:49:00+00:00","og_image":[{"url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltb781de4d49359347\/6414edec71e8c4296be880f7\/negotiating-Roman_Shyshak-alamy.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"How CISOs Can Work With the CFO to Get the Best Security Budget","datePublished":"2023-03-17T22:49:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/"},"wordCount":1326,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltb781de4d49359347\/6414edec71e8c4296be880f7\/negotiating-Roman_Shyshak-alamy.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/","url":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/","name":"How CISOs Can Work With the CFO to Get the Best Security Budget 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltb781de4d49359347\/6414edec71e8c4296be880f7\/negotiating-Roman_Shyshak-alamy.jpg","datePublished":"2023-03-17T22:49:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/#primaryimage","url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltb781de4d49359347\/6414edec71e8c4296be880f7\/negotiating-Roman_Shyshak-alamy.jpg","contentUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/bltb781de4d49359347\/6414edec71e8c4296be880f7\/negotiating-Roman_Shyshak-alamy.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/how-cisos-can-work-with-the-cfo-to-get-the-best-security-budget\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"How CISOs Can Work With the CFO to Get the Best Security Budget"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/51066","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=51066"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/51066\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=51066"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=51066"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=51066"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}