PR.IR-04.269

Does your organization have a system in place to monitor the usage of IT resources including storage, power, compute, and network bandwidth?

Explanation

Resource monitoring is essential for detecting anomalies that could indicate security incidents, such as unexpected spikes in network traffic potentially signaling data exfiltration, or unusual compute usage that might indicate cryptomining malware. Effective monitoring also helps with capacity planning, performance optimization, and can provide early warning of resource exhaustion that could lead to service disruptions or denial of service conditions. Evidence could include screenshots of monitoring dashboards (e.g., from tools like Nagios, Prometheus, Grafana, or cloud provider monitoring services), documentation of monitoring thresholds and alerts, or reports showing historical resource usage patterns with annotations for investigated anomalies.

Implementation Example

Monitor usage of storage, power, compute, network bandwidth, and other resources

ID: PR.IR-04.269

Context

Function: PR: PROTECT
Category: PR.IR: Technology Infrastructure Resilience
Sub-Category: Adequate resource capacity to ensure availability is maintained

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Neil Cameron

Founder, ResponseHub