all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Detection Engineering

Add to bookmarks
Nov. 2, 2023, 12:31 a.m. | /u/SignificantShame430

For [Blue|Purple] Teams in Cyber Defence www.reddit.com

We want to better enrich some of our data generated via attack sim for making custom detections and spending our time where it counts. (Have moved off traditional SIEM to more of a data lake driven approach)

Any tips?

attack blueteamsec data data lake detection detection engineering detections engineering generated making siem sim spending tips

Visit resource

More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence

Fake Advanced IP Scanner Installer Delivers Dangerous CobaltStrike Backdoor 11 hours ago | www.reddit.com
advanced backdoor blueteamsec cobaltstrike +4
The CTI Analyst Challenge 18 hours ago | www.reddit.com
analyst blueteamsec challenge cti
Breaking through Defender's Gates - Disabling Tamper Protection and other Defender components 1 day, 8 hours ago | www.reddit.com
blueteamsec breaking components defender +3
Chinese spies are targeting disgruntled workers within U.S. corporations, warns national counterintelligence head Michael Casey … 1 day, 8 hours ago | www.reddit.com
aware blueteamsec can ceos +13
Features removed or no longer developed starting with Windows Server 2025 (preview) 1 day, 8 hours ago | www.reddit.com
blueteamsec features preview server +2
Update on the Recall preview feature for Copilot+ PCs 1 day, 18 hours ago | www.reddit.com
blueteamsec copilot copilot+ pcs feature +4
Suspicious DNS Probing Operation Amplified 1 day, 18 hours ago | www.reddit.com
blueteamsec dns
Threat Actors' Systems Can Also Be Exposed and Used by Other Threat Actors 2 days, 3 hours ago | www.reddit.com
blueteamsec can exposed systems +2
An Introduction to Chrome Exploitation 2 days, 6 hours ago | www.reddit.com
blueteamsec chrome exploitation introduction

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com