Examining the return on investment of a security information and event management solution in a notional Department of Defense network environment
Warnecke, Matthew P.
MetadataShow full item record
Sophisticated cyber threats represent a significant adversary in the evolving world of the cyber domain. Furthermore, determining whether or not an attack has taken place and the extent of the damage caused requires significant resources. In order to guarantee reliable detection, prevention and mitigation of these advanced threats, the Department of Defense (DoD) must invest in advanced information security technologies that increase the defensive capabilities of its information networks. This thesis focuses on Security Information and Event Management (SIEM) systems as an enabling technology that possesses the advanced security capabilities required to address sophisticated, evolving cyber threats. The research explores the capabilities of this technology in terms of the speed of detection, depth of investigative power, and additional value provided. Additionally, this research attempts to quantify the return on investment that a SIEM solution could provide when deployed in a notional DoD network architecture. Ultimately, the research provided in this thesis endeavors to justify DoD investment in SIEM technology. The focus of this research revolves around a qualitative description of the inherent capabilities of SIEM products and utilizes several Return on Security Investment models in an attempt to quantitatively define the value of these capabilities in a DoD network.
Approved for public release; distribution is unlimited
Showing items related by title, author, creator and subject.
Analyzing the U.S. Marine Corps Enterprise Information Technology Framework for IT Acquisition and Portfolio Governance Shives, Timothy R.; Pelz, Laban M. (Monterey, California. Naval Postgraduate School, 2012-09);This research examined the ongoing development of a Marine Corps-wide, enterprise architecture (EA) approach for assessing the IT planning and investment process, including IT-related programs of record. The EA-approach ...
Simning, David S. (Monterey, California: Naval Postgraduate School, 2013-09);The Department of Defense and the United States Marine Corps are under increased pressure to reduce costs and expenditures in response to the austere financial environment. Marine Corps information technology (IT) programs ...
Applying modern portfolio theory and the capital asset pricing model to DoD's information technology investments VanOrden, Marc A. (Monterey, California. Naval Postgraduate School, 2009-03);Program Managers (PMs) throughout the Department of Defense (DoD) were directed by the DoD Chief Information Officer to manage information technology (IT) investments as portfolios (to include Mission Areas, Subportfolios, ...