Three key areas of concern have emerged for 2016: the ability for boards to provide effective governance of cyber risks. Security staffing issues, including the positioning of the security function itself within the organizations leadership structure and rising CISO salaries. Security budgets appear to be doing well, although the numbers vary widely from 2 percent to more than 10 percent of total IT spending: PwC study cited above indicated that security budgets in the U.S. in 2015 benefited from a 24 percent boost in funds.”]
Source: https://securityintelligence.com/cyber-risks-three-areas-of-concern-for-2016/