Welcome » IT Booklets » Information Security » Security Monitoring » Analysis and Response
The analysis and response to activity and condition monitoring is performed differently in financial institutions of different size and complexity. Smaller and less complex institutions may assign operational personnel to the analysis and response function. Larger and more complex institutions may maintain a security response center that receives and analyzes the data flows as activity occurs. Additionally, institutions of all sizes may outsource various aspects of the analysis and response function, such as activity monitoring. Outsourcing does not relieve the institution of the responsibility for ensuring that control failures are identified before a security incident occurs, an intrusion or other security incident is detected in sufficient time to enable an effective and timely response, and post-event forensics activities are supported.