Intrusion Detection and Prevention (IDP) systems are complex security tools that cannot just be bought and installed. To achieve the desired level of effectiveness a significant amount of planning is required before tools can be acquired, otherwise companies may buy the wrong thing and never get the capability, or the payback, they expect. Alternately they may spend far more money than is required for the level of capability that is desired. Three key factors that must be considered before implementation, or even acquisition, are:
- Baseline Functionality.
- System Architecture.
- Monitoring Requirements.
By clearly establishing the company's expectations and requirements in these three areas an appropriate IDP system can be designed, acquired and then implemented. Only by assessing these factors ahead of time will the system achieve the required level of effectiveness at a controlled level of spending.