From the course: CISSP Cert Prep (2021): 4 Communication and Network Security
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
File integrity monitoring
From the course: CISSP Cert Prep (2021): 4 Communication and Network Security
File integrity monitoring
- [Instructor] File integrity monitoring is an important component of a defense-in-depth approach to cyber security. We have many different defenses designed to keep our endpoint systems safe. Antivirus software is designed to detect malicious files before they gain a foothold on end points. Centralized multi-factor authentication prevents attempts to compromise user accounts. Host intrusion detection and prevention systems alert us to potential compromises and sometimes even block them. However, the principle of defense-in-depth suggests that we should have controls in place that can help us detect an intrusion even when those other systems fail. File integrity monitoring is a great example of this type of control. File integrity monitoring systems watch the file system of an endpoint or server for any unexpected changes, and then report those changes to an administrator for further investigation. They perform this…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.