DSCI Assessment Framework - Security (DAF-S)
Security as a subject and organization function has been expanding its scope and reach, which is articulated by DSF© in 16 distinct disciplines. Maturity of each discipline is becoming important for effective delivering objectives of security. Ever increasing complexity of the underlying infrastructure, extending nature of the business ecosystem, growing pace of adopting new technology solutions and innovative ways of connecting and accessing IT assets are increasingly organizations to evolving, advanced, persistent and targeted security threats. Managing the affairs of security is becoming more daunting, demanding and granular. A weakness, lacuna and deficiency in one area may lead to catastrophic damage the organization’s security. So maturity of security in each of the disciplines is becoming important for the overall maturity of the security. Secondly, competence in the specific disciplines such as − application security, threat and vulnerability management, monitoring & incident management and data security − are becoming critical to the performance of security in delivering a swift response to the security threats and protection of the critical information assets. Assessment of these disciplines for their competence, role, efforts, and performance would provide critical insight into an organization’s capability of delivering to the desired security expectations. DSCI Assessment Framework for Security (DAF-S)© is developed on the premise of discipline based approach to security.
Discipline specific security assessment solves many problems and challenges associated with assessment of security. Manny of the contemporary methods fails on account of Ability to reach realities of security, Relevancy to the evolution of the subject, challenges & trends and Dynamism to incorporate or reflect the changes & evolutions. DSCI Assessment Framework – Security focuses on Bringing Reality, Relevance and Dynamism in Security Assessments