From the course: Data-Driven Network Security Essentials
Use network data to improve security
From the course: Data-Driven Network Security Essentials
Use network data to improve security
- It is unimaginable to think of network security without data. None of the well-known network security tools can function without access to network data. Therefore, readily available data in various forms is crucial in ensuring network security. This network data comes from many different sources. Network packets are the most obvious data source. Firewalls are another data source and create log entries whenever they drop a packet. IDSs and IPSs also produce data in the form of alerts when they detect and discard suspicious attack packets. Same goes for vulnerability management systems. Network software applications and operating systems like Windows or MacOS are also a major producer of network security relevant data. Since there are many disparate sources of network data, interoperability is very important. That is, it should be possible for the data generated by each source to be forwarded to, and usable by, a collection system such as SIN for further analysis. Once aggregated, all this data from the diverse origins I mentioned, can produce much more powerful insight on your network security than when they exist in silos. Remember that consolidation is the key to solve this very complex puzzle of network security challenges.
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.