Security News > 2020 > December > Making Sense of the Security Sensor Landscape

Is the problem with sensor efficacy, or is it in how these sensors have been architected, managed and applied in the environment?

Scientific, data-driven management of the sensor grid will be able to measure a few key performance characteristics, including the volume of alerts generated and total traffic seen, the number and diversity of signatures that alarm, and whether or not SOCs recognize and can react to real incidents.

Sensitivity in a network sensor is directly related to the number, diversity and effectiveness of signatures enabled on your devices.

Another factor related to sensitivity in a network sensor is ongoing signature tuning.

Several challenges reduce the efficacy of sensors we deploy in our environments that have the potential to significantly impact our security posture.

News URL

https://threatpost.com/making-sense-security-sensor-landscape/161911/