Monitoring
Once you've locked your critical assets in a safe, locked the doors and windows (no pun intended) of the building the safe is in, topped the fence around the building with barbed wire, and locked the gate, what else can you do? Keep in mind that your overall goal is to make it very difficult for incidents to occur, and barring that, make sure any incidents that do occur do not go unnoticed. So in addition to the steps you've already taken, you want to include a guard to monitor the building grounds and the surrounding area. This analogy can be translated to a variety of security mechanisms, but in the end they all come down to a pair of eyes.
Why is monitoring important? Monitoring our infrastructure, or more appropriately the systems ...
Get Windows Forensics and Incident Recovery now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
