Which of the following is the BEST way for an information security manager to justify ongoing annual maintenance fees associated with an intrusion prevention system (IPS)?
A.
Establish and present appropriate metrics that track performance.
B.
Perform industry research annually and document the overall ranking of the IPS.
C.
Perform a penetration test to demonstrate the ability to protect.
D.
Provide yearly competitive pricing to illustrate the value of the IPS.
(C) ISACA CISM 15ed Review Manuan Section 1.6.5 (Value Delivery Metrics):
Control cost-effectiveness that is determined by periodic testing
The effectiveness of controls as determined by testing.
C. We have to prove its capability and pay for its maintenance cost . Just like we buy insurance , we are not expecting its daily metrics , but we just need it during major incident .
PenTest is just a snapshot in time of the system's effectiveness but tracking the system's performance (e.g. no. of incidents prevented successfully and impact to business if the incidents were not prevented) gives more visibility to the RoI on the TCO.
Correct answer is A.
A. Establish and present appropriate metrics that track performance.
The best way for an information security manager to justify ongoing annual maintenance fees associated with an intrusion prevention system (IPS) is to establish and present appropriate metrics that track the system's performance. This approach demonstrates the tangible value of the IPS and its effectiveness in protecting the organization's network and data. By using metrics related to the system's performance, such as the number of detected and blocked intrusion attempts, reduction in security incidents, or the cost savings resulting from prevented breaches, the manager can provide concrete evidence of the IPS's impact on security.
Establishing and presenting metrics that track performance not only justifies the maintenance fees but also helps in monitoring and improving the IPS's effectiveness over time, which is essential for maintaining a strong security posture.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
GAAMMC
4 weeks agoalifjouj
6 months agoangellorv
9 months, 3 weeks agosimon205
10 months, 1 week agoManix
1 year, 1 month agoCISSPST
1 year, 5 months agooluchecpoint
1 year, 5 months agooluchecpoint
1 year, 5 months agopc2502
1 year, 6 months agorichck102
1 year, 9 months agoMauro4
1 year, 11 months agoAntonivs
2 years, 1 month agoSTUDYER2
2 years, 1 month agofac161f
6 months agoKANLA
2 years, 1 month agoProspect57
2 years, 1 month agoSSP_Secure
2 years, 1 month agoD2D2
2 years, 2 months agoMSKid
2 years, 3 months ago