Mid-Term
jerryvthv
Mid_Term_Project.docxRunning Head: VESTIGE’S SECURITY PORTFOLIO DESIGN 2
Running Head: VESTIGE’S SECURITY PORTFOLIO DESIGN 2
Regarding cyber-attacks, the National Institute of Standards and Technology (NIST) framework is described as "a collection of principles that commercial enterprises should adhere to be effective in recognizing, detecting, and responding to cyber-attacks." The framework is intended to help commercial enterprises recognize, detect, and respond to cyber-attacks. The organization was founded to address the absence of standards in the field of security in general. This process includes the following steps: determining requirements, allocating risk-related expenses, developing a portfolio, selecting the best appropriate product, and rebalancing the portfolio as needed (Opiela, 2017).
Below are the stages that must be completed successfully for Vestige's security portfolio design.
The establishment of a well-balanced cyber security portfolio requires the completion of five phases by a company. The following are the procedures that a corporation must follow:
Step 1: Identify Requirements.
The Vestige Company must first look beyond basic border security to identify the types of attacks that could put them in danger. This is the first step in the process. When it comes to cyber-security, it is critical to identify the assets and requirements of the organization in question. There is no room for error of the Vestige Company when it comes to review, how their clients use and access their database system. Furthermore, businesses must analyze what distinguishes their security requirements from other organizations operating across a broad spectrum of industries and sectors. Vestige Company's database is its most valuable asset, and it must take precedence over all other concerns and be safeguarded from any form of loss or destruction (Pettijohn, 2019).
Step 2: Assign Spending according to the needs.
Next, the Vestige Company is responsible for making prudent financial decisions about the second stage, including avoiding overspending on preventative measures. It is expected that threats will be able to get beyond the company's defense systems, prompting the need for increased investment in detection, response, and recovery capabilities. Consequently, the company must assume that they have been compromised and must examine what steps they may take to make sure that they are told of the breach as soon as feasible and that the damage is kept to a bare minimum if at all possible. In this situation, the organization requires a set of tools that will enable them to trace down and resolve errors in any system that they are currently constructing as rapidly as possible (Opiela, 2017).
Step 3: Design the Portfolio.
The corporation must now evaluate whether or not it has the authority to prevent itself from being harmed in the future. In light of the dangers that have been recognized, it is necessary for the organization to build a more balanced portfolio of security investment alternatives (Pettijohn, 2019).
Step 4: Select the right product.
The first step in this approach is for the organization to identify the product that will provide the essential capabilities for the specific region under consideration. The Vestige Company is a good illustration of this. A company's ability to recognize and evaluate dangers and adapt to those threats by delivering specialized products is essential to its success. This group must be familiar with the characteristics of various technologies that can assist them in increasing their protection and visibility while also recognizing hidden threats and comprehending risk by centralizing information security and auditing information (Opiela, 2017).
Step 5: Rebalance as required.
In accordance with this decision, the firm's asset weightings will be rebalanced across the entirety of its portfolio of investment assets. The operations associated with this will include things like selling or purchasing assets that are currently included in the portfolio on an as-needed basis to preserve the targeted or original level of asset risk or allocation in the portfolio and other activities (Pettijohn, 2019).
References
Opiela N. (2017). Changing the Course of Portfolio Design. (Main story). Diary of Financial Planning,17(6),66-74. https://search.ebscohost.com/login.aspx?direct=true&AuthType=sso&db=buh&AN=13473460
Pettijohn JB., Ragan GA.,& Ragan KP. (2019). On-Line Investment Analysis and Portfolio Management: Using Learning Outcome Statements to Design Projects. Diary of Education for Business, 78(4), 185. doi:10.1080/08832320309598599
