Create a main post that recommends 2 key areas to engage in for the normal, everyday operations of a security team, or highlight 2 key areas to monitor.
Create a main post that recommends 2 key areas to engage in for the normal, everyday operations of a security team, or highlight 2 key areas to monitor. Justify why you chose these areas. Propose the optimal range of metrics and/or key performance indicators (KPIs) that you plan to monitor and the recommended actions that you would take if the reported data are outside of the optimal range.
Some examples are the following:
Security incidents (per week, month, or year)
Viruses detected
Administration violations (unauthorized changes)
Spam that is not detected
Invalid log-in attempts