I received an email asking certain questions about digital security. The author said he could post his reply in his Blog, here is an excerpt from his email. No organization can be considered “secure” for any time beyond the last verification of adherence to its security policy. I believe the answer lies in following the security process, which consists of assessment, protection (prevention), detection, and response. None of the products you mentioned (yes, even Sguil ) can provide ultimate security. Even all of the best of breed products in the world deployed simultaneously cannot.”]
Source: https://taosecurity.blogspot.com/2004/08/what-is-ultimate-security-solution-i.html