|
|
|
|
|
|
by bsrx
4084 days ago
|
|
|
SecOps mission is: prevent, detect, respond. Yes, outright prevention is important. Yet proper centralized log collection and intelligence helps with all three missions, including prevention. Proper logging allows you to identify known-good behavior patterns and outlying anomalies. With profiles in place, one can automate blocking of reconnaissance and probes, not just blocking known vulnerabilities. |
|
|