Sign up to save your podcasts
Or
Share #S03EP03 DevOpsification of Threat Detection Development | Wasim Halani
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
#S03EP03 DevOpsification of Threat Detection Development | Wasim Halani
Learn to DevOpsify your Threat Detection Development!
Guest: Wasim Halani, Director - Detection Engineering at Securonix
SOC teams face a continuous challenge of evolving threats and a difficulty in developing #analytics to detect such #threats. Recent times have seen the Detection Engineering function evolve along the lines of Software Engineering - which means the Agile and DevOps methodologies also apply to new detections being developed and deployed.
Continuous development, continuous testing and continuous deployment are part of the game.
In this episode, we dive into the challenges faced by traditional #SOC teams in building effective threat detections, explore why threat detection is inherently difficult, and discuss how #DevOps principles can enhance this process. We also cover the groundwork for implementing these principles and the most challenging aspects of developing a #detection #engineering #program.
Recommended reading/viewing for practitioners:
1. https://medium.com/anton-on-security/can-we-have-detection-as-code-96f869cfdc79
2. https://www.securonix.com/blog/ddlc-detection-development-life-cycle/
3. https://medium.com/snowflake/detection-development-lifecycle-af166fffb3bc
Follow us on LinkedIn: @breakpoint-security-podcast
Breakpoint Youtube: BreakpointSecurityPodcast
https://youtube.com/@breakpointsecuritypodcast
If you like to see more like this, please Subscribe to Breakpoint Youtube!
Please Share with others in the community. It always means a lot!
Follow us on LinkedIn: @breakpoint-security-podcast
Audio on Buzzsprout: https://breakpoint.buzzsprout.com
Buzz me on Twitter or LinkedIn Connect with me on -
- Twitter: @NeeluTripathy
- LinkedIn: @neelutripathy
View all episodes
By Neelu TripathyLearn to DevOpsify your Threat Detection Development!
Guest: Wasim Halani, Director - Detection Engineering at Securonix
SOC teams face a continuous challenge of evolving threats and a difficulty in developing #analytics to detect such #threats. Recent times have seen the Detection Engineering function evolve along the lines of Software Engineering - which means the Agile and DevOps methodologies also apply to new detections being developed and deployed.
Continuous development, continuous testing and continuous deployment are part of the game.
In this episode, we dive into the challenges faced by traditional #SOC teams in building effective threat detections, explore why threat detection is inherently difficult, and discuss how #DevOps principles can enhance this process. We also cover the groundwork for implementing these principles and the most challenging aspects of developing a #detection #engineering #program.
Recommended reading/viewing for practitioners:
1. https://medium.com/anton-on-security/can-we-have-detection-as-code-96f869cfdc79
2. https://www.securonix.com/blog/ddlc-detection-development-life-cycle/
3. https://medium.com/snowflake/detection-development-lifecycle-af166fffb3bc
Follow us on LinkedIn: @breakpoint-security-podcast
Breakpoint Youtube: BreakpointSecurityPodcast
https://youtube.com/@breakpointsecuritypodcast
If you like to see more like this, please Subscribe to Breakpoint Youtube!
Please Share with others in the community. It always means a lot!
Follow us on LinkedIn: @breakpoint-security-podcast
Audio on Buzzsprout: https://breakpoint.buzzsprout.com
Buzz me on Twitter or LinkedIn Connect with me on -
- Twitter: @NeeluTripathy
- LinkedIn: @neelutripathy