SANS Detection Engineering Survey: Detection Engineering Best Practices for Implementing a Threat-Informed Defense

There are two cybersecurity truisms: You can’t prevent attacks you can’t detect; and attacks you can’t prevent turn into incidents you need to detect before you can respond to them.

It takes skilled people, and effective, efficient tools to make sure you can create, validate, and maintain detection signatures that will provide full coverage of real-world attacks while minimizing false positives and false negatives. This SANS webcast will examine data from our recent survey on the state of the practice in “detection engineering” and provide guidance how to improve your capabilities in keeping up with rapidly changing threats.

Register for this webcast now and be among the first to receive the associated white paper by SANS authors Mark Orlando and John Pescatore.


Thank You to Our Sponsor