all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

What's Your Framework For Detection Engineering?

Add to bookmarks
Jan. 25, 2024, 8:14 p.m. | /u/matthewob5

cybersecurity www.reddit.com

I'm currently working on building out the Detection Engineering program at my company. However, I haven't come across many frameworks for metrics that we could use to score our detections. Our current process is centered around creating detections for MITRE ATT&CK techniques that we feel are most relevant to our organization. There are a few helpful articles like Cyb3rWard0g's [How Hot Is Your Hunt Team?](https://cyberwardog.blogspot.com/2017/07/how-hot-is-your-hunt-team.html?_sm_au_=iHV5kH2s2rnJlk4sM8BqHKH3q4Nt1), Palantir's [ADS Framework](https://blog.palantir.com/alerting-and-detection-strategy-framework-52dc33722df2), and SpecterOps' series on [Capability Abstraction](https://posts.specterops.io/capability-abstraction-fbeaeeb26384), but I'm still left wanting something …

can cybersecurity detections frameworks industry metrics people program quality score

Visit resource

More from www.reddit.com / cybersecurity

Copilot‘s screen-snapping Recall data stored in plain text 9 hours ago | www.reddit.com
copilot cybersecurity data plain text +3
Cops Swarm Global Cybercrime Botnet Infrastructure in 2 Massive Ops 11 hours ago | www.reddit.com
botnet cops cybercrime cybersecurity +4
What are the most common IAM and PAM solutions in cybersecurity? 12 hours ago | www.reddit.com
cybersecurity cybersecurity professional goal iam +5
How does hiring in APT groups work? 12 hours ago | www.reddit.com
apt apt groups can cybersecurity +5
State of WiFi Security in 2024 13 hours ago | www.reddit.com
article cybersecurity exploiting feedback +9
Prioritize Blue Team for Cybersecurity Success 15 hours ago | www.reddit.com
blue blue team box can +16
Reported a Critical Vulnerability, Retested, and Now I Guess I'm Just Shouting Into the Void? 18 hours ago | www.reddit.com
bypass critical critical vulnerability cvss +6
NIST unveils ARIA program to evaluate and verify AI capabilities & impacts. 19 hours ago | www.reddit.com
ai capabilities aria aria program capabilities +4
Malware Analysis of Latrodectus - Part 1 19 hours ago | www.reddit.com
analysis cybersecurity latrodectus malware +1

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com