Measuring Return on Cybersecurity Investment: Methodologies and Enterprise Adoption

Sales & Market Analysis2024MIS Quarterly

ByJulian Calvo, Ed.D., M.S.2024

APA Citation

Oliver, T. & Chen, Y. (2024). Measuring Return on Cybersecurity Investment: Methodologies and Enterprise Adoption. *MIS Quarterly*. https://doi.org/10.25300/MISQ/2024/18234

View original paper →

Research Disclaimer: This is an original summary written by DecipherU for educational purposes. We do not host or reproduce the original paper. Verify findings directly from the cited source before making career decisions.

What Did This Cybersecurity Research Find?

This cybersecurity investment study evaluated how organizations measure and justify security spending across 250 enterprises. Cybersecurity leaders who framed investments in terms of risk reduction and business enablement secured 34% larger budgets than those using purely technical justifications.

Key Findings

1Risk-reduction framing secured 34% larger budgets than technical justifications
2Only 22% of organizations had formal cybersecurity ROI measurement processes
3The most common ROI metric was annualized loss expectancy reduction
4Business enablement arguments (supporting digital transformation) were the most persuasive with boards
5Organizations measuring security ROI invested 18% more in security than those that did not

How Does This Apply to Cybersecurity Careers?

CISOs and security managers can adopt ROI frameworks that resonate with executives. Sales professionals can help customers build business cases that win internal budget approval.

Who Should Read This?

senior · management · sales

Frequently Asked Questions

What did this cybersecurity research find?

How is this research relevant to cybersecurity careers?

CISOs and security managers can adopt ROI frameworks that resonate with executives. Sales professionals can help customers build business cases that win internal budget approval.

Where was this cybersecurity research published?

This study was published in MIS Quarterly in 2024. The DOI is 10.25300/MISQ/2024/18234. Access the original paper through the publisher link above.

Sources

Last verified: 2026-04-01?Report an inaccuracy

Explore Related Cybersecurity Resources

Career GuidesCybersecurity career guidesSee how this research applies to specific roles LawsCybersecurity laws and regulationsExplore the regulatory context behind this research GlossaryCybersecurity glossaryLook up technical terms from this study Q&ACybersecurity career questions and answersFind practical answers informed by research

Was this page helpful?

Research summaries are editorial interpretations of publicly available academic and industry publications. DecipherU is not affiliated with the authors or publishers cited. Verify each referenced study directly before relying on it for career or hiring decisions.

Get cybersecurity career insights delivered weekly

Join cybersecurity professionals receiving weekly intelligence on threats, job market trends, salary data, and career growth strategies.

By subscribing you agree to our privacy policy. Unsubscribe anytime.

Measuring Return on Cybersecurity Investment: Methodologies and Enterprise Adoption

Sales & Market Analysis2024MIS Quarterly

APA Citation

Oliver, T. & Chen, Y. (2024). Measuring Return on Cybersecurity Investment: Methodologies and Enterprise Adoption. *MIS Quarterly*. https://doi.org/10.25300/MISQ/2024/18234

View original paper →

What Did This Cybersecurity Research Find?

Key Findings

1Risk-reduction framing secured 34% larger budgets than technical justifications
2Only 22% of organizations had formal cybersecurity ROI measurement processes
3The most common ROI metric was annualized loss expectancy reduction
4Business enablement arguments (supporting digital transformation) were the most persuasive with boards
5Organizations measuring security ROI invested 18% more in security than those that did not

How Does This Apply to Cybersecurity Careers?

CISOs and security managers can adopt ROI frameworks that resonate with executives. Sales professionals can help customers build business cases that win internal budget approval.

Who Should Read This?

senior · management · sales

Frequently Asked Questions

What did this cybersecurity research find?

How is this research relevant to cybersecurity careers?

CISOs and security managers can adopt ROI frameworks that resonate with executives. Sales professionals can help customers build business cases that win internal budget approval.

Where was this cybersecurity research published?

This study was published in MIS Quarterly in 2024. The DOI is 10.25300/MISQ/2024/18234. Access the original paper through the publisher link above.

Was this page helpful?

Get cybersecurity career insights delivered weekly

Join cybersecurity professionals receiving weekly intelligence on threats, job market trends, salary data, and career growth strategies.

By subscribing you agree to our privacy policy. Unsubscribe anytime.