Badges
User Activity
5 months ago
Contributed a review of IBM Db2 Database: Has an easy setup process, but the cloud integration capabilities need improvement
7 months ago
Contributed a review of Splunk Enterprise Platform: Enables us to create dashboards and do analysis but has limitations
Almost 3 years ago
Answered a question: What is the difference between denial of service and distributed denial of service?
I think the answers are already provided.
DoS is e.g., one user, one host is attacking and creating a denial of service attack to a system.
A distributed denial of service attack is when multiple users/hosts are performing a denial of service attack on a system.
A DoS…
Almost 3 years ago
Contributed a review of Splunk Enterprise Security: Poor performance and the display options are limited, but it can parse a variety of log files
Almost 3 years ago
Answered a question: How do you decide about the alert severity in your Security Operations Center (SOC)?
It depends on the information in your current alerts. E.g if the alert has the priority or the severity field, it will be normal to use this field.
I will assume tha in your current alert system you do not have the severity or priority field.
The next option would be to…
About 3 years ago
Answered a question: What types of Security Operations Center (SOC) deployment models do exist?
There are many variations for a Security Operations Centre. depending on the organisation's data center, configurations, and setup you will need a different organisation. To give a good answer, we would need more information. eg
- Do you have your own data centre from which…
About 3 years ago
Answered a question: What is your recommended cost-effective solution to detect and prevent APT attacks?
APT attacks are tough. And as already mentioned, there is no single solution for it. To me, there are two areas that are important to consider protecting.
1) Attacks from Outside to Inside: An APT attack that is launched and maybe focused on like a DDOS attack to just deny…
About 3 years ago
Answered a question: When evaluating Network Performance Monitoring, what aspect do you think is the most important to look for?
Most things are already said but for Network monitoring, one of the most important items is that the monitoring is real time. And it should have the capability to retain data for a good period of time.
The capability of alerts is important
Reliability of (any) software is…
Over 4 years ago
Answered a question: Why is it important to monitor traffic on your network?
As already said Network monitoring is just one type of monitoring, and you should monitor on all levels to get a clear picture.
Hnad in hand with monitoring goes a good Event, Alert setup, to be warned when something is happening
Now to Why?
- Network monitoring is to find…
Over 4 years ago
Answered a question: What is the difference between SNMP polls and SNMP traps?
SNMP polls are used to poll data from a system or application via SNMP get command. SNMP traps are events that are sent from a system to a trap receiver. E.g. in case a CPU is at 100% utilization an SNMP TRAP is sent to a TRAP receiver to indicate an event. SNMP traps are…
Over 4 years ago
Contributed a review of ServiceNow Strategic Portfolio Management: Stable and scalable, could improve dashboards and visualization
Reviews
5 months ago
IBM Db2 Database
7 months ago
Splunk Enterprise Platform
Almost 3 years ago
Splunk Enterprise Security
Over 4 years ago
ServiceNow Strategic Portfolio Management
Answers
Almost 3 years ago
Distributed Denial-of-Service (DDoS) Protection
Almost 3 years ago
Network Monitoring Software
About 3 years ago
Network Monitoring Software
About 3 years ago
Network Monitoring Software
About 3 years ago
Network Monitoring Software
Over 4 years ago
IT Infrastructure Monitoring
About me
30+ years experience within IT
Network experience/knowledge with lot of protocols, form tcp/ip, ipx/spx, ss7, diameter, icmp, snmp, vpn etc.
Configured/managed: routers, switches, hubs, firewalls (checkpoint, ASA, etc)
managed/designed/installed: HA systems en applications: from Novell SFTIII, till tcp/ip bonding on linux.
Experience with lot of pltforms: DOS, Win Windows, Windows NT, Novell OS2, Linux(rehat, ubuntu, centos etc). Solaris, hpux, aix.
Development exerience: from assemby, to c, pascal/modula, basic, java, perl, bash etc.
Overall i have a broad knowledge on IT topics, from low level to high level, whcih gives me the capability to manage/design and support complex environments.