Keeping computer networks up and running is essential to maintaining an organization’s operational well-being. To keep your network and data safe you need to take explicit measures to monitor and protect them. But we have all heard horror stories about warnings that were ignored or indicators of problems that were not recognized.
The primary reason that these warnings were ignored is caused by the problem known as 'over-warning'. Over-warning is when the network generates excessively long and often complex lists of warnings and event logs that result in the operational staff being unable distinguish between normal network behavior and events that warrant investigation and resolution.
Protecting your network requires the right balance between collecting network data and generating meaningful and actionable warnings. In this article I show you with the five steps to make sure you have the right network monitoring and data collection plan for your organization, whether you are a small business or a large enterprise.
You can also watch my video, Applying Filters to Network Data, so that you can see how to select the important data that you should be monitoring.
What are you doing now to isolate the important network alerts?