If you were talking to someone whose organization is considering HelpSystems Intermapper, what would you say?
How would you rate it and why? Any other tips or advice?
I would recommend this solution, but it really depends on what you're looking for. HelpSystems Intermapper is more like a network topology tool in my opinion. This solution is more relevant for service providers, like SP organizations. That's where it helps as compared to other systems. You can take different environments for other systems, for example, Azure can be extremely important for intensive application monitoring. For a company for which I build the network, we had the IT system and homegrown systems. Some homegrown systems were SNMP-based, but we didn't have an SNMP system admin. We just had a person who was responsible for utilizing different applications, such as KRTG or Cacti. There was a lot of struggle in dealing with all these systems. These systems weren't exactly network interactive. It was back in 2002 or 2003 when I became familiar with HelpSystems Intermapper, and it really got my attention right away. You could see live networks and live devices. I like HelpSystems InterMapper ever since. I am kind of a huge fan of this solution. In my 15 years of managing different software, I feel if InterMapper had a better SLA reporting and monitoring feature, it would have been especially awesome. It is almost perfect. I would rate HelpSystems Intermapper a seven out of ten. If somebody would pay attention and add advanced SLA monitoring to the map, it would be a nine.
My advice is to make sure that you are clear about your requirements rather than going for a solution-based approach. You should know your needs and what you're looking for. There are thousands of product offers on the market which can do network monitoring but it should start with your needs. I would rate this product an eight out of 10.
Put Intermapper in as your base to start from, hands-down. My most important criterion when selecting a vendor is product reliability. It actually has to run. A lot of products make promises and the stuff just doesn't work. I would rate Intermapper a nine out of 10. Actually, it's a 10 because it does what it says it will do. In and of itself it's a 10. But I would like to see additional features put into it.
Hi SOC analysts and other infosec professionals,
Which standard/custom method do you use to decide about the alert severity in your SOC?
Is it possible to avoid being too subjective? How do you fight the "alert fatigue"?