A new ISO/IEC standard provides guidelines to help organisations implement intrusion detection and prevention systems (IDPS). In particular, it addresses the selection, deployment, and operations of IDPS.
ISO/IEC 27039:2015 Information technology – Security techniques – Selection, deployment and operations of intrusion detection systems provides guidelines for effective IDPS selection, deployment, and operation, as well as fundamental knowledge about IDPS. It also applies to organisations that are considering outsourcing their intrusion detection capabilities.
IDPS products can assist an organisation in obtaining intrusion information and can serve as an important security device within the overall information and communications technology infrastructure.