Detection Engineering: The Blue Team Cheat Code
Detection engineering requires a unique combination of technical skills, threat research, and scientific method. Done properly, it allows us to better sift through the noise and identify information we can use to save time and manual effort.
In this episode of Wait Just an Infosec, SANS Certified Instructor Mark Orlando welcomes Zack Allen and Scott Foley for a discussion on common challenges in detection engineering, what it takes to get started, and why detection engineering done well can be your blue team “cheat code!”