System for determining effectiveness and allocation of information security technologies

The invention claimed is: 1. A computerized system for determining the effectiveness of information security technologies, comprising: an information system having one or more deployed security technologies; a computer apparatus including a processor, a memory, and a network communication device; and an information security analysis module stored in the memory, executable by the processor, and configured to: determine a security score for each element of a security technology defense matrix, each element of the security technology defense matrix being associated with the one or more deployed security technologies of the information system, wherein a first dimension of the security technology defense matrix corresponds to a plurality of resource classes, and a second dimension of the security technology defense matrix corresponds to a plurality of security operational functions, wherein determining a security score for each element of the security technology defense matrix comprises determining a control score C for one or more controls associated with each element, the security score for each element of the security technology defense matrix being equal to 1−(1−C 1 )× . . . ×(1−C x ), wherein x is the total number of controls associated with the particular element; determine a defense-in-depth score D resource for each resource class, wherein the defense-in-depth score D resource for each resource class is equal to 1−(1−E resource1 )×(1−E resource2 )× . . . ×(1−E resourcen ), wherein E resource corresponds to the security score for each element of the security technology defense matrix that is associated with a particular resource class and n is the total number of elements of the security technology defense matrix associated with the particular resource class; determine a defense-in-depth score D operation for each security operational function, wherein the defense-in-depth score D operation for each security operational function is equal to 1−(1−E operation1 )×(1−E operation2 )× . . . ×(1−E operationm ), wherein E operation corresponds to the security score for each element of the security technology defense matrix that is associated with a particular security operational function and m is the total number of elements of the security technology defense matrix associated with the particular security operational function; based on determining the defense-in-depth score D resource for each resource class and determining the defense-in-depth score D operation for each security operational function, determine an aggregate security score; and provide the defense-in-depth score D resource for each resource class, the defense-in-depth score D operation for each security operational function, and the aggregate security score to a user computing device. 2. The computerized system according to claim 1 , wherein the information security analysis module is configured to: receive information regarding a plurality of future deployment scenarios; determine an aggregate security score for each of the plurality of future deployment scenarios; and based on determining an aggregate security score for each of the plurality of future deployment scenarios, provide a technology deployment recommendation to a user computing device. 3. The computerized system according to claim 2 , wherein the technology deployment recommendation is a recommendation to upgrade one or more of the deployed security technologies. 4. The computerized system according to claim 2 , wherein the technology deployment recommendation is a recommendation to deploy one or more additional security technologies. 5. The computerized system according to claim 1 , wherein the information security analysis module is configured to: receive information regarding a plurality of future deployment scenarios; determine a defense-in-depth score for one of the resource classes for each of the plurality of future deployment scenarios; and based on determining a defense-in-depth score for one of the resource classes for each of the plurality of future deployment scenarios, provide a technology deployment recommendation to a user computing device. 6. The computerized system according to claim 5 , wherein the technology deployment recommendation is a recommendation to upgrade one or more of the deployed security technologies. 7. The computerized system according to claim 5 , wherein the technology deployment recommendation is a recommendation to deploy one or more additional security technologies. 8. The computerized system according to claim 1 , wherein the information security analysis module is configured to: receive information regarding a plurality of future deployment scenarios; determine a defense-in-depth score for one of the security operational functions for each of the plurality of future deployment scenarios; and based on determining a defense-in-depth score for one of the security operational functions for each of the plurality of future deployment scenarios, provide a technology deployment recommendation to a user computing device. 9. The computerized system according to claim 8 , wherein the technology deployment recommendation is a recommendation to upgrade one or more of the deployed security technologies. 10. The computerized system according to claim 8 , wherein the technology deployment recommendation is a recommendation to deploy one or more additional security technologies. 11. A computer program product for determining the effectiveness of information security technologies embodied on a non-transitory computer-readable storage medium having computer-executable instructions for: determining, via a computer system configured for information security analysis, a security score for each element of a security technology defense matrix, each element of the security technology defense matrix being associated with one or more deployed security technologies, wherein a first dimension of the security technology defense matrix corresponds to a plurality of resource classes, and a second dimension of the security technology defense matrix corresponds to a plurality of security operational functions, wherein determining a security score for each element of the security technology defense matrix comprises determining a control score C for one or more controls associated with each element, the security score for each element of the security technology defense matrix being equal to 1−(1−C 1 )× . . . ×(1−C x ), wherein x is the total number of controls associated with the particular element; determining, via the computer system configured for information security analysis, a defense-in-depth score D resource for each resource class, wherein the defense-in-depth score D resource for each resource class is equal to 1−(1−E resource1 )×(1−E resource2 )× . . . ×(1−E resourcen ), wherein E resource corresponds to the security score for each element of the security technology defense matrix that is associated with a particular resource class and n is the total number of elements of the security technology defense matrix associated with the particular resource class; determining, via the computer system configured for information security analysis, a defense-in-depth score D operation for each security operational function, wherein the defense-in-depth score D operation for each security operational function is equal to 1−(1−E operation1 )×(1−E operation2 )× . . . ×(1−E operationm ), wherein E operation corresponds to the security score for each element of the security technology defense matrix that is associated with a particular security operational function and m is the total number of elements of the security technology defense matrix ass