Description
Assignment Overview
Continuous monitoring is a critical part of the risk management process. “Continuous monitoring is ongoing observance with intent to provide warning. A continuous monitoring capability is the ongoing observance and analysis of the operational states of systems to provide decision support regarding situational awareness and deviations from expectations.” —Source: Keith Willett (MITRE) in support of the National Security Agency.
“Information Security Continuous Monitoring (ISCM) is defined as maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions.” —NIST.
Organizations should establish, implement, and maintain ISCM. ISCM should be a recursive process as its monitoring strategy is continually refined so that ISCM is a robust system. Tiered organization-wide ISCM framework and dynamic ISCM processes are proposed by the National Institute of Standards and Technology.
This is a link to the Office of the Chief Information Officer for the Department of the Interior. It lays out their services for ISCM processes.
https://www.doi.gov/ocio/customers/assessment
Here is NIST example of an Information Security Continuous Monitoring Program Assessment.
https://nvlpubs.nist.gov/nistpubs/ir/2021/NIST.IR….
The tool for doing the ISCMP assessment is under the supplemental area on this site.
https://csrc.nist.gov/publications/detail/nistir/8…
Case Assignment
After reading the above articles, please write a 3- to 5-page paper titled:
“Information Security Continuous Monitoring—Challenges and Solutions”
Assignment Expectations
Please address the following issues in your paper:
The importance of continuous monitoring of information systems.
The technical and managerial challenges of continuous monitoring.
The technical and managerial solutions to continuous monitoring, including framework, processes, etc.
