# Operational Security Operational Security (OPSEC) at Avant Protocol represents the first and most critical layer of security. It refers to the internal framework of processes and controls designed to manage risk across all protocol operations. This framework governs how investment strategies are selected, monitored, and managed. The objective of the OPSEC framework is to ensure that all operational decisions are deliberate, reviewed, and executed securely. It is composed of the following key functions: ## **Ongoing Performance and Risk Monitoring** All active strategies and deployed assets are subject to continuous monitoring. This process involves: * Tracking key performance and risk indicators for each position. * Utilizing internal and third-party tools to monitor for security alerts or abnormal onchain activity. * Regularly reviewing market conditions that could impact the risk profile of a position. If a strategy's performance or risk level deviates from its established parameters, capital may be reallocated or withdrawn. ## **Internal Transaction and Access Controls** Avant Protocol's architecture enforces a strict separation between high-level treasury control and day-to-day trading functions. This model ensures that while strategists have the necessary flexibility to execute their strategies, ultimate control over protocol funds is always retained. Within this secure and controlled trading environment, strategists are granted a specific set of permissions. These permissions allow them to: * Interact with pre-approved, whitelisted smart contracts (e.g., signing messages, setting allowances, and executing contract calls). * Transfer assets between designated internal vaults to manage allocations for active strategies. Any such external transfer requires a separate, multi-signature authorization process, ensuring that no single individual can move assets outside of the protocol's control. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.avantprotocol.com/security/operational-security.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.