Challenges of Managing an Intrusion Detection System (IDS) in the Enterprise

While every enterprise is unique, there are common challenges in managing, monitoring and reacting to network IDS alerts. These include: managing the flood of alerts, creating actionable reports, and following-up on the reported alerts.

This paper will explore the IDS challenges of a large organization with examples of specific lessons learned in monitoring the internal network.