Cybesecurity Strategic Planning
Cybesecurity Strategic Plan Cycle (around Mission):
- 1. Goals : Where does the oganization want to go?
- 2. Desired Outcomes: How will you get there?
- 3. Strategies: How do you measure success?
- 4. Measured Targets: How did we do?
- 5. Results : How can we improve?
Cybesecurity Strategic Plan Example:
Cybersecurity Planning:
- Strategic three year cycle and plan is made up of 3 tactical plans
- Tactical plans run one-year cycle
- Review of strategic plans begins 3 months before the current plan exires
- Management monitoring occurs quarterly
https://i.imgur.com/1GthZw4.png
Cybersecurity Operations
NIST : Five Functions |
Project Chart
Project Definition- Project objectives
- Project benefits
- Project strategy
- Cirtical success factors
- Milestone
- Type of resource
- Skill set
- Effort
- Duration
- Target date
- Known constraints
- Beginning assumptions
- Risk assessment
- Project Team
- Issue resolution team
- Departments impacted by the project
- Potential project priority
- User/Client responsibilities
Security Architecture Roadmap Examples
1 Cybersecurity roadmap : Global healthcare security architecture(https://www.slideshare.net/cisoplatform7/cybersecurity-roadmap-global-healthcare-security-architecture)
2 Microsoft Cybersecurity Reference Architecture
(https://www.microsoft.com/security/blog/2018/06/06/cybersecurity-reference-architecture-security-for-a-hybrid-enterprise/)
3 Another example
Tools
- IT Business Edge - Security Architecture Roadmap Tool
Download Link
References
- https://www.youtube.com/watch?v=4GTd5XFr2Rs - Cybersecurity annual planning and budgeting
via Blogger http://blog.51sec.org/2019/11/security-architecture-roadmap-with.html
March 02, 2023 at 10:34PM Architecture