Security monitoring involves continuously observing networks, systems, and applications to detect suspicious activities. Tools like IDS (Intrusion Detection Systems) and SIEM (Security Information & Event Management) are commonly used.
Example:
A SIEM tool alerts the security team when multiple failed logins are detected in a short time, preventing a potential brute-force attack.