Now that we've looked at the regional data centers, let's go down to the local offices:
- We are focusing on the local offices, as it was discussed previously, because system owners are able to put systems on the network without much control:
- There is more risk in doing this action second
- This would also open up an opportunity to train system owners and establish better processes
- Again, please notice that reporting is now feeding into both continuous monitoring for cyber intel purposes as well as IT ops so that they can take on follow-on actions