Now that we've looked at the regional data centers, let's go down to the local offices:

• We are focusing on the local offices, as it was discussed previously, because system owners are able to put systems on the network without much control:
  • There is more risk in doing this action second 
  • This would also open up an opportunity to train system owners and establish better processes
• Again, please notice that reporting is now feeding into both continuous monitoring for cyber intel purposes as well as IT ops so that they can take on follow-on actions