This document discusses security controls and monitoring for Drupal systems. It outlines frameworks like NIST SP-800-53 and the SANS Top 20 controls. It describes concepts like continuous monitoring, logging, auditing and the anatomy of security controls. It also discusses tools and techniques for Drupal security monitoring including Watchdog, Nagios, OSSIM, Logstash and SCAP. The goal is to provide focused, application-centric security monitoring moving from standard to intelligent monitoring.