Practical Threat Detection Engineering

Threat validation is an indispensable component of every security detection program, ensuring a healthy detection pipeline. This comprehensive detection engineering guide will serve as an introduction for those who are new to detection validation, providing valuable guidelines to swiftly bring you up to speed.
The book will show you how to apply the supplied frameworks to assess, test, and validate your detection program. It covers the entire life cycle of a detection, from creation to validation, with the help of real-world examples. Featuring hands-on tutorials, projects, and self-assessment questions, this guide will enable you to confidently validate the detections in your security program.
By the end of this book, you’ll have developed the skills necessary to test your security detection program and strengthen your organization’s security measures.

Type

ebook

Category

publication date

2023-07-21

what you will learn

Understand the detection engineering process
Build a detection engineering test lab
Learn how to maintain detections as code
Understand how threat intelligence can be used to drive detection development
Prove the effectiveness of detection capabilities to business leadership
Learn how to limit attackers’ ability to inflict damage by detecting any malicious activity early

no of pages

328

duration

656

key features

Gain a comprehensive understanding of threat validation * Leverage open source tools to test security detections * Harness open source content to supplement detection and testing

approach

This is a practical, hands-on guide to detection engineering, with lots of real-world examples, written by cybersecurity experts for analysts and engineers. You’ll learn everything from setting up a threat detection lab to the processes and infrastructure required for a mature detection engineering organization.

audience

This book is for security analysts and engineers seeking to improve their organization’s security posture by mastering the detection engineering lifecycle.
To get started with this book, you’ll need a basic understanding of cybersecurity concepts, along with some experience with detection and alert capabilities.

meta description

Go on a journey through the threat detection engineering lifecycle while enriching your skill set and protecting your organization

short description

Gain a comprehensive understanding of the detection engineering lifecycle, why it’s important, and how it can be leveraged to protect your organization. Authored by three cybersecurity veterans, this practical guide covers everything from fundamental concepts to career insights, enriching your cybersecurity expertise and bolstering your CV.

subtitle

A hands-on guide to planning, developing, and validating detection capabilities

keywords

threat intelligence, cyber threat intelligence, cyber threat hunting, cybersecurity, threat detection, detection engineering

Product ISBN

9781801076715