This week in cybersecurity from the editors at Cybercrime Magazine
Sausalito, Calif. – Jun. 16, 2026
– Read the full story from LinkedIn
The 2026 CISO Report by Cybersecurity Ventures, published in partnership with Sophos, lays out numbers that explain why mid-market cybersecurity is broken and why the problem isn’t a lack of tools, writes Fabe Hausner, founder and CEO at Woodlands Advisory, GmbH, a Heidelberg, Germany-based specialist consultancy for cybersecurity and compliance.
Particularly relevant for the central European market encompassing Germany, Austria, and Switzerland, Hausner points to these findings in the report:
Germany allocates 9.5 percent of its IT budget to cybersecurity, the lowest share in the report’s country comparison (India, the highest, sits at 24 percent);
90 percent of companies are small and close to zero percent of them employ a dedicated security officer;
Four out of five small businesses experienced a security or data breach over the last year, and more than three-quarters report costs of at least $250,000 per incident.
Hausner on the economics around renting or buying a CISO:
A dedicated CISO costs $250,000 to $400,000 per year, according to the 2026 CISO Report, while a vCISO model lands at $40,000 to $120,000 with access to senior expertise.
For anyone wanting to run the numbers on their own business, Woodlands Advisory GmbH built a calculator that compares internal CISO cost vs. a vCISO setup based on headcount, revenue and required hours.
What does security really cost you? Enter your key data into the calculator — and you’ll find out the real cost difference.
Read the Full Story
Cybercrime Magazine is Page ONE for Cybersecurity. Go to any of our sections to read the latest:
- SCAM. The latest schemes, frauds, and social engineering attacks being launched on consumers globally.
- NEWS. Breaking coverage on cyberattacks and data breaches, and the most recent privacy and security stories.
- HACK. Another organization gets hacked every day. We tell you who, what, where, when, and why.
- VC. Cybersecurity venture capital deal flow with the latest investment activity from various sources around the world.
- M&A. Cybersecurity mergers and acquisitions including big tech, pure cyber, product vendors and professional services.
- BLOG. What’s happening at Cybercrime Magazine. Plus the stories that don’t make headlines (but maybe they should).
- PRESS. Cybersecurity industry news and press releases in real time from the editors at Business Wire.
- PODCAST. New episodes daily on the Cybercrime Magazine Podcast feature victims, law enforcement, vendors, and cybersecurity experts.
- RADIO. Tune into WCYB Digital Radio at Cybercrime.Radio, the first and only round-the-clock internet radio station devoted to cybersecurity.
Contact us to send story tips, feedback and suggestions, and for sponsorship opportunities and custom media productions.
The post Virtual Or Full-Time CISO: ROI Calculator On Security Leadership appeared first on Cybercrime Magazine.
