ABSTRACT
Until this point, emphasis has been placed on the requirements for organizations to ensure that the digital evidence they gather, in support of the major business risk scenarios, is done in a manner that guarantees it will be admissible in a court of law. In addition to gathering digital evidence for later use in legal proceedings, the aggregation of data sources can also be used to enhance monitoring capabilities to detect potential threats in a more effective and timely manner.
