Now, assuming cuts will have to be made, which aspects of IT security should you fight for and insist be spared at all costs?

• Never stop educating users (this actually is expensive because it takes time away from other work).
• End-users are the weak link.
• Don’t stop paying for anti-spam/malware/virus software running on your servers, but consider switching vendors or using a multivendor solution to improve the net.
• Never stop scanning your network for signs of an attack. Look for malware, key loggers, remote control software, and unusual network activity.

And, finally, if you are forced to cut down on security staff and products, and worry how these changes will affect your security posture, here are a few hints that will tell you if you’re in trouble:

• If your Internet bandwidth spikes at odd times when there are no employees working and no updates are happening.
• If there are a lot of outbound network connections to individual home systems and strange countries where you don’t do business.
• If users complain about slow performance, pop-ups or web pages that don’t load.

And remember, if you deal with credit cards or online banking, you’re a target. Good luck.