How Do Enterprises Apply AIOps?
If networked threats and malware can cause your business to be susceptible to data theft or data loss, it is very important to know where it will come from and how to defend yourself. This article, which appears in a previous issue of our newsletter, discusses four of the top business applications of AIOps. It is important to note that this article focuses primarily on AIOps, not AOS, because while AOs are the applications to which much of the attention is dedicated, they are extremely useful to understand how these applications can be used to defend businesses. For those who are unaware of the term AIOPS, they are the application of Advanced Organization Monitoring and Prevention Systems (AOAPS) for network management that are often overlooked. AIOps are applications that are designed to assist the administrator in implementing AOAPS and to monitor, detect and prevent AOs, but they are not necessarily AOs themselves. Rather, AIOps are tools that focus on AOAPS and are intended to assist the administrator in understanding what threats are currently in the environment and how to prepare them. In fact, AIOps are so often overlooked and have such a bad reputation that many enterprises have never heard of them. For example, when we first went to our local coffee shop years ago, everyone assumed we were talking about AIOps. In fact, AIOps was a topic the only time anyone had any knowledge of. This article will help you understand why AIOps are so important and show you how to make them work for you. This article is based on the current editions of “How Do Enterprises Apply AIOps?” and “How Do Enterprise Security Teams Work?” In addition, the text below is based on information that was presented at the IEEE Security Forum, the annual security conference in San Francisco, California. The “How Do Enterprises Apply AIOps” article was updated on January 15, 2015.
The following article is based on information presented at the IEEE Security Forum on February 22, 2010.
The goal of advanced organization monitoring and prevention systems (AOAPS) is to assist the network administrator (or other administrator) by identifying, locating, and potentially controlling potentially malicious activity.
AIOps: Automatically Identifying and Fixing Network Issues
Handling a high volume of alerts
“To get the job done, he uses a highly scalable alerting system that can handle thousands of alerts per second.
I had used Zabbix for a while – but after moving from AWS to AWS CloudFormation, I switched back to Zabbix. I’m impressed by the flexibility Zabbix offers. In my opinion Zabbix is the most flexible monitoring solution with the best support and the most reliable dashboard. One of the reasons I’ll continue using Zabbix is the easy to read online documentation. There is a lot of useful information already provided by the Zabbix developers. The best thing Zabbix offers is a dashboard and a web interface – even though the web interface is quite limited compared to the rest of Zabbix.
At first glance, Zabbix dashboard is quite the same that it is shown on the website. There is an obvious gap where Zabbix expects something called “Dashboard Management and Administration”. This is a requirement that Zabbix does not have. That’s why I have prepared the following screencast on how Zabbix dashboard is supposed to be built. It’s quite a simple task, but I hope it helps to understand.
First you have to register at Zabbix. It’s easy, there are no technical skills needed and in just a few steps you can register your account or sign up for email newsletters. Then you can start taking your look at the Zabbix dashboard.
A Zabbix dashboard is a static HTML page that contains few sub-pages. There are sub-pages for every component – e. Alert, Dashboards, Manage Settings. Then you can see what is going on in one main page.
As you can see, Zabbix is not based on a relational database. It means that it uses an almost entirely XML-based infrastructure. Zabbix has two major components – Alerts and Dashboards.
All alerts and dashboards are linked to a specific resource. So it is quite easy to find out what is the resource the alerts or dashboards depend on. Just navigate to the particular resource you want to see.
Learning in NetOps
Tips of the Day in Network Security
This week I’m doing a bit of catchup writing and I’m going to be doing some posts relating to my previous blog posts. I’m also going to be talking about and reviewing some of the popular tips.
I have read a lot of articles and blog entries recently and wanted to talk about a few particularly interesting and thought provoking articles and how I found them to be very good.
This is Part 1 of my catch-up series and I’m doing a bit more on the security aspect of my blog, which I’m starting to build up quite a bit there.
I’m going to look at a few of the very prominent Security Tips that I’ll be doing a bit of writing about and some of the really interesting articles I’ve read recently; these will be the ones I will be talking about in the next couple blogs. I will make this part a catch up one.
Related Posts:
Spread the loveIf networked threats and malware can cause your business to be susceptible to data theft or data loss, it is very important to know where it will come from and how to defend yourself. This article, which appears in a previous issue of our newsletter, discusses four of the top business applications of…