Which of the following is the BEST way for an information security manager to justify ongoing annual maintenance fees associated with an intrusion prevention system (IPS)?
A.
Establish and present appropriate metrics that track performance.
B.
Perform industry research annually and document the overall ranking of the IPS.
C.
Perform a penetration test to demonstrate the ability to protect.
D.
Provide yearly competitive pricing to illustrate the value of the IPS.
(C) ISACA CISM 15ed Review Manuan Section 1.6.5 (Value Delivery Metrics):
Control cost-effectiveness that is determined by periodic testing
The effectiveness of controls as determined by testing.
C. We have to prove its capability and pay for its maintenance cost . Just like we buy insurance , we are not expecting its daily metrics , but we just need it during major incident .
PenTest is just a snapshot in time of the system's effectiveness but tracking the system's performance (e.g. no. of incidents prevented successfully and impact to business if the incidents were not prevented) gives more visibility to the RoI on the TCO.
Correct answer is A.
A. Establish and present appropriate metrics that track performance.
The best way for an information security manager to justify ongoing annual maintenance fees associated with an intrusion prevention system (IPS) is to establish and present appropriate metrics that track the system's performance. This approach demonstrates the tangible value of the IPS and its effectiveness in protecting the organization's network and data. By using metrics related to the system's performance, such as the number of detected and blocked intrusion attempts, reduction in security incidents, or the cost savings resulting from prevented breaches, the manager can provide concrete evidence of the IPS's impact on security.
Establishing and presenting metrics that track performance not only justifies the maintenance fees but also helps in monitoring and improving the IPS's effectiveness over time, which is essential for maintaining a strong security posture.
Establishing and presenting appropriate metrics that track performance is the only way to justify the cost, a penetration test only shows it works and can be used in the metrics.
upvoted 3 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
alifjouj
2 months, 3 weeks agoangellorv
6 months, 1 week agosimon205
7 months agoManix
10 months agoCISSPST
1 year, 1 month agooluchecpoint
1 year, 2 months agooluchecpoint
1 year, 2 months agopc2502
1 year, 3 months agorichck102
1 year, 5 months agoMauro4
1 year, 7 months agoAntonivs
1 year, 9 months agoSTUDYER2
1 year, 9 months agofac161f
2 months, 3 weeks agoKANLA
1 year, 10 months agoProspect57
1 year, 10 months agoSSP_Secure
1 year, 10 months agoD2D2
1 year, 11 months agoMSKid
1 year, 12 months agomad68
2 years ago