CISOs should lobby for an autonomous security budget to allow them to build reliable multi-year spending plans and projections so they can craft longer-term investments in the people and technology that they need.