The company behind Ashley Madison, the adultery enabling website, has agreed to pay a $1.6 million settlement related to a major data breach last year that exposed account details of 36 million users.
1.6MM penalty ?
$1.6MM is cheaper than infrastructure costs of a couple of decent firewalls, an IDS/IPS and staff to operate for three years.
$1.6MM is cheaper than the cost of three years of regular security reviews – Pen Testers, Auditors, Developer Training, Scanning etc.
In short, the cost of IT Security is larger than the value it delivers to the business.