Is this email difficult to read? View it in a web browser. ›
The Wall Street Journal ProThe Wall Street Journal Pro

CybersecurityCybersecurity

Sponsored by Zscaler logo.

Measuring What You Manage

By Kim S. Nash
 

Hello. How do you benchmark your cybersecurity spending?

Common metrics include cyber budget as a percentage of overall tech spending and cyber budget as a percentage of company revenue. I suppose these are as good as any, at least as a way to put a stake in the ground to consult over time.

But I’m not sure what these metrics really tell us.

I’d love some feedback on the subject. Are there other metrics that are inherently more meaningful? How do you use metrics? That is, when presenting to the board or C-suite? When vying for project funds? Let me know by email, or by replying to this newsletter. I'll include shrewd comments in an upcoming newsletter. Thank you!

More news below.
 

‏‏‎ ‎
CONTENT FROM: Zscaler
Firewalls Are Failing in the AI Era: Act Now with Zero Trust

AI-fueled cyberattacks are bypassing legacy firewalls and VPNs, exposing your enterprise to unprecedented risk. Zscaler’s Zero Trust AI platform eliminates your attack surface, delivers superior defense against AI-driven threats, and slashes cost and complexity. Lead securely in the era of generative AI—secure innovation for private and public AI starts here.

It’s Time to Leave Legacy Security Behind

 

More Cyber News

PHOTO: TATYANA MAKEYEVA/AFP/GETTY IMAGES

Pro-Ukrainian and pro-Belarus hackers claimed credit for a cyberattack on Monday against Aeroflot, Russia's national airline. The Russian government said it has launched a criminal investigation of the incident as more than 100 flights were canceled. Aeroflot offered refunds or rebooking to customers with flights within the next 10 days. The hacktivists also claimed to have stolen passenger data. (Associated Press)

The U.S. National Reconnaissance Office, which helps coordinate spy satellites, said it is investigating an incident affecting its research website where potential intelligence contractors make project bids and pitches. (Reuters)

New funding: Fable Security raised $31 million from investors Greylock Partners and Redpoint Ventures. Fable, based in San Francisco, provides tools for redirecting risky employee behavior in real time. 
45

Number of ransomware attacks against maritime organizations worldwide last year, according to Norma Cyber, a Norwegian nonprofit group that tracks cyber risk in the industry. Espionage and financial gains are two key motivations for the attacks, Norma said. 
 

About Us

The WSJ Pro Cybersecurity team is Deputy Bureau Chief Kim S. Nash and reporters Angus Loten, James Rundle and Catherine Stupp. Follow us on X @WSJCyber. Reach the team by replying to any newsletter you receive or by emailing Kim at kim.nash@wsj.com.
 
Share this email with a friend.
Forward ›
Forwarded this email by a friend?
Sign Up Here ›
 
Desktop, tablet and mobile. Desktop, tablet and mobile.
Access WSJ‌.com and our mobile apps. Subscribe
Apple app store icon. Google app store icon.
Unsubscribe   |    Newsletters & Alerts   |    Contact Us   |    Privacy Notice   |    Cookie Notice
Dow Jones & Company, Inc. 4300 U.S. Ro‌ute 1 No‌rth Monm‌outh Junc‌tion, N‌J 088‌52
You are currently subscribed as [email address suppressed]. For further assistance, please contact Customer Service at pro‌newsletter@dowjones.com or 1-87‌7-975-6246.
Copyright 2025 Dow Jones & Company, Inc.   |   All Rights Reserved.
Unsubscribe