IDS Operational Support Functions and Processes
Posted on 2011-03-07
I am looking for a detailed list of the kind of support functions that an IDS operations group would be responsible for. By that I mean functions across the entire breadth of managing, supporting and monitoring an IDS platform.
eg, release signature updates, manage incidents, patch IDS software, patch IDS OS, handle security incidents
Ideally I would love some kind of framework from which I can pick and choose these which are specific to my deployment.