Re: Value of IDS, ROI

[Bamm Visscher <bamm.visscher () gmail com>]

There is no calculating ROI for security (including IDS) [0]. A CIO
should be able to understand that. Security is about mitigating loss,
much like insurance. You should focus on explaining how your IDS
implementation will help protect the investment your company has made
in IT. An IDS should provide early warnings of a compromise and other
security events. It will also help you quickly determine the scope of
the event, escalate the activity to the correct departments, and the
data gathered will make the remediation effort more efficient.

Bammkkkk

[0] http://taosecurity.blogspot.com/2004/04/calculating-security-roi-is-waste-of.html


On 3 May 2005 18:15:19 -0000, Jason Patel <patel1210 () yahoo com> wrote:
> I was wondering how big companies CIO show their executives Return of investment on IDS. What is the monitoring 
> strategy for IDS alerts. I am trying to figure monitoring strategy and how to show my executive that how important 
> job this is, but cant come up with a convincing solution. Anyhelp is highly appreciated.
>
> Thanks,
>
> Jason
>
> --------------------------------------------------------------------------
> Test Your IDS
>
> Is your IDS deployed correctly?
> Find out quickly and easily by testing it with real-world attacks from
> CORE IMPACT.
> Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
> to learn more.
> --------------------------------------------------------------------------


-- 
sguil - The Analyst Console for NSM
http://sguil.sf.net

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------------------