Learn what network security visualization is. Jungwoo provides the essential terms and concepts of network security visualization.
- Visualization is a crucial element of data science. It is a primary mechanism used by data scientists to interpret the results of their data processing for data consumers. The same principle applies to network security visualization. That is visualization is a critical step in enabling network security professionals to make sense of a pile of network traffic data, or log entries and to extract the information that is relevant to their daily tasks.
To be an effective visualization specialist, in the domain of network security, you need basic skills as a data scientist. Which include math and statistics knowledge. This doesn't mean that you need to be an expert in data science. But you should at least be proficient in using well known statistical tools such as R and know how to interpret their analysis results.
Even more important is your domain expertise, as a network security professional, which allows you to read between the lines when examining the information produced by the scripts you write, or the software packages you happen to use. Without the domain-specific insight your job as an interpreter between the data processing group and data consumer becomes extremely difficult.
Last but not least is your attitude as a hacker. The majority of work goes into preparing your data when you're attempting to visualize anything. The job is messy. You have to usually cobble together data from diverse sources that are formatted differently. This is where your talent as a hacker should shine. Because you're required to do a lot of tinkering, improvising, et cetera.
As you can see, the job of a network security visualization specialist is not a trivial one, especially due to its complex and multidisciplinary nature. However, this challenging aspect of the job also makes it very rewarding both monetarily and intellectually.
- Network security concepts
- The basic functions of a firewall
- Intrusion detection and prevention systems
- Using network data to improve security
- Using log servers to collect data
- Collecting application data
- Collecting OS data
- Network forensics
- Network security visualization