Use this checklist when evaluating intrusion detection and prevention systems to ensure you select the right solution for your organization’s needs.
Must-Ask Questions
- What detection methods are used?
- How frequently are signatures updated?
- What is the documented false positive rate?
- What throughput is supported?
- Is inline (IPS) deployment supported?
- What high availability options are available?
- What management and reporting capabilities are included?
- Does it integrate with your SIEM?
- What virtualization support is available?
- What is the total cost of ownership over 3 years?