CDSA

5 Strategies For Enhancing Targeted Security Monitoring (Dark Reading)

[svg-table-content]

Crime scenes — in both the physical and digital sense — exist where investigators must work quickly to gather and process evidence before it is no longer available or has been modified. In both cases, investigators set up a large perimeter around the crime scene and work to narrow it down by establishing credible, evidence-based conclusions.

In the digital realm, the most common collection of security incident and event information occurs in sources where large volumes of data can be gathered in support of investigations. However, this large volume of data can easily lead to “analysis paralysis,” making it more difficult to find the proverbial needle in the haystack.