Cyber Shelf

// Comparison

Applied Network Security Monitoring vs Tableaux de bord de la sécurité réseau: Which Should You Read?

Two cybersecurity books on Detection, compared honestly: who each is for, what each does best, and which to read first.

Intermediate
4/52013
Applied Network Security Monitoring

Collection, Detection, and Analysis

Chris Sanders, Jason Smith

A practitioner's walkthrough of building an NSM capability end to end, from deciding what to collect through detection and the analysis workflow that ties it together. The tooling is dated, but the way it teaches you to think about monitoring is not.

Advanced
3/52010
Tableaux de bord de la sécurité réseau

Cédric Llorens, Laurent Levier, Denis Valois

A practitioner's manual for measuring and steering network security — metrics, dashboards, monitoring and risk indicators — for the people who run security operations.

Read this if

SOC analysts and aspiring detection engineers who want a structured mental model for collection, detection, and analysis rather than a pile of disconnected tooling tutorials.
Network and security engineers, and security managers who need to instrument and report on security: what to measure, how to build dashboards, how to track risk over time.

Skip this if

Anyone hoping for a current toolkit. Skip this if you want hands-on Zeek/Suricata/Elastic configs you can paste today, the commands here have aged out.
Readers wanting attacks or the latest cloud-native tooling; it's an operations-and-metrics book whose editions predate much of the modern stack.

Key takeaways

  • Collection is a deliberate decision, not a default. Decide what data matters before you drown in everything.
  • The book's split of detection into signature, anomaly, and statistical approaches still maps cleanly onto how modern stacks work.
  • Analysis is a discipline with a workflow, not improvised packet-staring, and that framing is the most durable thing here.
  • A rare French book focused on measuring security — metrics, indicators and dashboards, not exploits.
  • Written for security operations and management: how to make security legible to the organisation.
  • The principles of security measurement endure; check the specific tooling against current practice.

How they compare

We rate Applied Network Security Monitoring higher (4/5 against 3/5 for Tableaux de bord de la sécurité réseau). For most readers, that means Applied Network Security Monitoring is the primary pick and Tableaux de bord de la sécurité réseau is a useful follow-up.

Applied Network Security Monitoring is pitched at intermediate level. Tableaux de bord de la sécurité réseau is pitched at advanced level. Read the easier one first if you're not yet comfortable with the topic.

Applied Network Security Monitoring and Tableaux de bord de la sécurité réseau both cover Detection, Networking, Defensive, so reading them in sequence reinforces the same material from different angles.

Keep reading

Applied Network Security Monitoring

Alternatives to Applied Network Security MonitoringWhat to read after Applied Network Security Monitoring

Tableaux de bord de la sécurité réseau

Alternatives to Tableaux de bord de la sécurité réseauWhat to read after Tableaux de bord de la sécurité réseau

Related topics

DetectionNetworkingDefensive