With important, complex, and difficult tasks such as security monitoring, most of us struggle to benefit from knowledge, experience, and fresh approaches available outside our own small community. While we are often quick to praise ourselves for thinking "outside the box," too seldom do we actually reach for guidance very far beyond our own narrow technical and social niches, let alone completely different but not so different communities, cultures, and industries. This session will consider essential components and activities of web application security monitoring as they relate to Drupal 8, including target selection, measurement techniques, event correlation and normalization, anomaly detection, threat intelligence, and collaborative incident response. Next, we will assess our current standard models and practices in these areas, comparing our approaches and performance to those performing analogous monitoring tasks in other IT realms, as well as in other worlds such as medicine, aviation, and public safety.