What do you think?
Rate this book
Security Monitoring: Proven Methods for Incident Detection on Enterprise Networks
How well does your enterprise stand up against today's sophisticated security threats? In this book, security experts from Cisco Systems demonstrate how to detect damaging security incidents on your global network--first by teaching you which assets you need to monitor closely, and then by helping you develop targeted strategies and pragmatic techniques to protect them.
Security Monitoring is based on the authors' years of experience conducting incident response to keep Cisco's global network secure. It offers six steps to improve network monitoring. These steps will help you:
Security Monitoring illustrates these steps with detailed examples that will help you learn to select and deploy the best techniques for monitoring your own enterprise network.
244 pages, Paperback
First published February 15, 2009
9 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 of 1 review
March 9, 2012
Book review: http://www.burgessct.com/2009/08/secu...
Security Monitoring: Proven Methods for Incident Detection on Enterprise Networks
By Martin Nystrom and Chris Fry
—–
A Network monitoring guide? Absolutely
–
Martin and Chris do a great job in providing the network security professional with a hands-on guide to incident detection on enterprise networks. The authors state at the outset – this is not a guide for the novice, but rather a guide for the journeyman who has a good working knowledge of network, server and database administration, as well as security tools and techniques. The guide is as stated a professional guide, with exemplars which can be used in a sandbox, or to assist you in noodling through specific infrastructure monitoring issues – such as “tuning” so the incident logs tell you the story, and don’t drown you in event data.
Their chosen format draws upon the authors’ experiences and of course discusses the tools they use on a daily basis. To their credit, they also point out and list other tools which are substantially similar to those they use in their everyday work, and this alone is a benefit to the reader – you’ve the makings of your list of potential vendors, ready at hand. I have the privilege of seeing the result of these gentleman’s work and impact. That said, I also hear their voices clearly and distinctly in their verbiage – their articulation and emphasis is spot-on.
Worthy of the read, essential for the impact provided – a book of reference and exemplars which should be required in every company’s incident response tool-box.
(NB: The authors gifted me a copy of their book)
Security Monitoring: Proven Methods for Incident Detection on Enterprise Networks
By Martin Nystrom and Chris Fry
—–
A Network monitoring guide? Absolutely
–
Martin and Chris do a great job in providing the network security professional with a hands-on guide to incident detection on enterprise networks. The authors state at the outset – this is not a guide for the novice, but rather a guide for the journeyman who has a good working knowledge of network, server and database administration, as well as security tools and techniques. The guide is as stated a professional guide, with exemplars which can be used in a sandbox, or to assist you in noodling through specific infrastructure monitoring issues – such as “tuning” so the incident logs tell you the story, and don’t drown you in event data.
Their chosen format draws upon the authors’ experiences and of course discusses the tools they use on a daily basis. To their credit, they also point out and list other tools which are substantially similar to those they use in their everyday work, and this alone is a benefit to the reader – you’ve the makings of your list of potential vendors, ready at hand. I have the privilege of seeing the result of these gentleman’s work and impact. That said, I also hear their voices clearly and distinctly in their verbiage – their articulation and emphasis is spot-on.
Worthy of the read, essential for the impact provided – a book of reference and exemplars which should be required in every company’s incident response tool-box.
(NB: The authors gifted me a copy of their book)
Displaying 1 of 1 review