I am working on benchmarking the role of information security in the IT organization. If your company has at least one employee dedicated to information security, please respond to the following:
a. Approximately how many people are dedicated to security?
b. Approximately how many people are in the overall IT organization?
c. Where in the organization does security report (IT, Internal Audit, Risk Management)?
d. What is your industry?
Thanks in advance to anyone who responds!
