Fork me on GitHub

InformationGathering -> Monitoring: Simple system metrics

Risk and Opportunity

Risk: Without simple metrics analysis of incidents are hard. In case an application uses a lot of CPU from time to time, it is hard for a developer to find out the source with Linux commands.
Opportunity: Gathering of system metrics helps to identify incidents and specially bottlenecks like in CPU usage, memory usage and hard disk usage.

Usefulness and Requirements of this Activitiy

Usefullness: Very High
Required knowledge: Low (one discipline)
Required time: Low
Required resources (systems): Low

Additional Information

Implementation hints:

OWASP SAMM VERSION 2

ISO27001 2017