Security Monitoring with Cisco Security MARS
Cisco's MARS (Monitoring, Analysis, and Response System) is a hot topic just now. This book's back cover touts it as the "next-generation Security Threat Migration system (STM)" and further states, "easy-to-use family of threat mitigation appliances enables you to centralize, detect, mitigate, and report on priority threats by leveraging the network and security devices already deployed in the network, even if the devices are from multiple vendors". That's a tall order, but Cisco Press would have to be out of its collective mind to publish something and not be able to deliver...wouldn't it?
|
|
The real problem with many books like this one is that while the text tells you how to install, configure, and deploy the tool in question, it doesn't really explain how to apply it to a thousand different real-world scenarios that you'll actually face in real life. Few if any "out-of-the-box" solutions adapt perfectly to a production environment, so even if Halleen and Kellogg write the perfect MARS book generically, will it still help you to use MARS on your "real-to-life" network? Full Story |
This topic does not have any threads posted yet!
You cannot post until you login.