Detection as Code is one of the most important evolutions in modern security detection, and in this video, we break it down.

I first encountered this concept as a Cloud Threat Detection Engineer at Datadog. Today, I’m joined by Dennis Chow, a Detection Engineering specialist and author of Automating Security Detection Engineering (which I had the honor of technically reviewing).

Together, we explore what Detection as Code really means and walk through two hands-on CI/CD pipeline demos:

🔹 Lab 1: Building SIEM detections with synthetic AI testing using Sumo Logic

🔹 Lab 2: Policy-as-Code integration testing with Cloud Custodian on GCP

You’ll learn how Detection as Code leverages Git, automated testing, reproducibility, collaboration, and CI/CD to make detection engineering more scalable, accountable, and reliable.

Dennis' Blog

Dennis' Github

Dennis' LinkedIn

_____________

📁RESOURCES:

→ GitHub repo for lab 1

→ GitHub repo for lab 2

→ Dennis’ book

→ My book review

→ Our podcast episode together

_____________

⚡️⁠⁠⁠⁠⁠⁠JOIN 6,000+ CWX MEMBERS ON DISCORD⁠⁠⁠⁠⁠⁠

📰 ⁠⁠⁠⁠⁠⁠SUBSCRIBE TO THE CYBERWOX UNPLUGGED NEWSLETTER⁠⁠⁠⁠⁠⁠

🥶 ⁠⁠⁠⁠⁠⁠CYBERWOX MERCH⁠⁠⁠⁠⁠⁠

_____________

🧬 CYBERWOX RESOURCES

🔹 ⁠⁠⁠⁠⁠⁠Cyberwox Cybersecurity Notion Templates for planning your career⁠⁠⁠⁠⁠⁠

🔹 ⁠⁠⁠⁠⁠⁠Cyberwox Best Entry-Level Cybersecurity Resume Template⁠⁠⁠⁠⁠⁠

🔹 ⁠⁠⁠⁠⁠⁠Learn AWS Threat Detection with my LinkedIn Learning Course⁠⁠⁠⁠⁠⁠

_____________

📱 LET'S CONNECT

→ ⁠⁠⁠⁠⁠⁠IG⁠⁠⁠⁠⁠⁠

→ ⁠⁠⁠⁠⁠⁠Threads⁠⁠⁠⁠⁠⁠

→ ⁠⁠⁠⁠⁠⁠Substack⁠⁠⁠⁠⁠⁠

→ ⁠⁠⁠⁠⁠⁠Twitter⁠⁠⁠⁠⁠⁠

→ ⁠⁠⁠⁠⁠⁠Linkedin⁠⁠⁠⁠⁠⁠

→ ⁠⁠⁠⁠⁠⁠Tiktok⁠⁠⁠⁠⁠⁠

Email: [email protected]

_____________

⚠️DISCLAIMER

This description has some affiliate links, and I may receive a small commission for purchases made through these links. I appreciate your support!