IDC PeerScape: Practices for Planning and Optimizing Cybersecurity Team Structure
This IDC PeerScape offers guidance on how to approach cybersecurity team structure. Drawing on perspectives from enterprise cybersecurity across diverse sectors, it identifies best practices for managing team structure. It also provides guidance on why team structure is important, different approaches to structuring teams, and how to determine when a current team structure is not ideal for a business' needs."There's no one-size-fits-all approach to organizing security teams," says Chris Tozzi, adjunct research advisor for IDC's IT Executive Programs (IEP). "But what every organization must do is take a deliberate, strategic approach rather than defaulting to poorly planned or ad hoc team structures."
Please Note: Extended description available upon request.
IDC PeerScape Figure
Executive Summary
Peer Insights
Practice 1: Consider Creating Multiple Cybersecurity Teams
Challenge
Examples
Financial Services
Healthcare
Project Management and Construction
Guidance
Practice 2: Define and Track Measures of Each Cybersecurity Team's Impact
Challenge
Examples
Financial Services
Healthcare
Project Management and Construction
Guidance
Practice 3: Consider Team Hierarchies and Reporting Structures