Return On Information Security Investment
The research will investigate the various information security strategies that can be deployed in an e-business environment and assess their return on investment. The returns will not only be measured financially but will include the impact the information security programme will have on the customers, the employees and the internal processes of the company in question. The balanced scorecard approach, devised by Kaplan and Norton, will be one of the methods used to assess these various aspects of an information security programme. Nevertheless an important aspect of the research will be to calculate the Return on Security Investment (ROSI) in monetary terms. Based on the results, a company will be able to apply the techniques used in this research to determine whether it is under or overspending and adjust its security expenditure accordingly.