|
IDS
mailing list archives
Re: Value of IDS, ROI
From: Bamm Visscher <bamm.visscher () gmail com>
Date: Wed, 4 May 2005 08:44:18 -0500
There is no calculating ROI for security (including IDS) [0]. A CIO
should be able to understand that. Security is about mitigating loss,
much like insurance. You should focus on explaining how your IDS
implementation will help protect the investment your company has made
in IT. An IDS should provide early warnings of a compromise and other
security events. It will also help you quickly determine the scope of
the event, escalate the activity to the correct departments, and the
data gathered will make the remediation effort more efficient.
Bammkkkk
[0] http://taosecurity.blogspot.com/2004/04/calculating-security-roi-is-waste-of.html
On 3 May 2005 18:15:19 -0000, Jason Patel <patel1210 () yahoo com> wrote:
I was wondering how big companies CIO show their executives Return of investment on IDS. What is the monitoring
strategy for IDS alerts. I am trying to figure monitoring strategy and how to show my executive that how important
job this is, but cant come up with a convincing solution. Anyhelp is highly appreciated.
Thanks,
Jason
--------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------------------
--
sguil - The Analyst Console for NSM
http://sguil.sf.net
--------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------------------
 By Date 
By Thread
Current thread:
|
Intro
