After devising your monitoring solution, you are asked to demonstrate how effective it is. Consider the following
Question:
After devising your monitoring solution, you are asked to demonstrate how effective it is. Consider
the following three issues:
What kind of testing would you recommend in order to determine if the system is working
accordingly to specifications and goal? Explain types of tests to be performed, who should
conduct them, where, and when.
Are there any concerns that the company should think of with respect to the qualifications of
the testers? Review through the kind of certification, knowledge base and toolset experience
you would look for to ensure that the testers are up to the job.
APT attacks are an increasing threat. What mechanisms of your proposed monitoring system
would address these particular threats? Give some description of the kind of APT behaviour
you may observe and how your monitoring deployment could detect or prevent it.