07-18-2005 05:47 AM - edited 03-10-2019 01:32 AM
what are the day to day activities of an IDS admin.
07-18-2005 01:16 PM
1) Looking out for new signatures
2) Tuning existing configuration to reduce false positives
3) Coordination with system admins whenever alerts are generated to confirm or deny malicious activity
4) Sifting through tons of event logs
5) Read the Cisco NetPro site
6) Study for CCNP
Rinse, repeat
Hope this helps.
Please remember to rate all replies
07-19-2005 03:08 AM
what are the best possible methods to tune the existing configuration
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide