all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Detection Engineering

Add to bookmarks
Nov. 2, 2023, 12:31 a.m. | /u/SignificantShame430

For [Blue|Purple] Teams in Cyber Defence www.reddit.com

We want to better enrich some of our data generated via attack sim for making custom detections and spending our time where it counts. (Have moved off traditional SIEM to more of a data lake driven approach)

Any tips?

attack blueteamsec data data lake detection detection engineering detections engineering generated making siem sim spending tips

Visit resource

More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence

How to Block Residential Proxies using Okta 1 day, 1 hour ago | www.reddit.com
block blueteamsec okta proxies
2024 Cyber Insurance Claims Report 1 day, 15 hours ago | www.reddit.com
blueteamsec claims cyber cyber insurance +2
Just-in-Time admin and production access using Azure PIM 2 days, 7 hours ago | www.reddit.com
access admin azure blueteamsec +3
Hackers use developing countries as testing ground for new ransomware attacks 2 days, 11 hours ago | www.reddit.com
attacks blueteamsec countries developing countries +4
OSHIT: Seven Deadly Sins of Bad Open Source Research - bellingcat 2 days, 12 hours ago | www.reddit.com
bad bellingcat blueteamsec open source +1
Examining the Deception infrastructure in place behind code.microsoft.com 3 days, 3 hours ago | www.reddit.com
blueteamsec code com deception +2
The cyber threat to research laboratories - Canadian Centre for Cyber Security 3 days, 13 hours ago | www.reddit.com
blueteamsec canadian canadian centre for cyber security cyber +6
hunt_arcanedoor_ips.csv: Full IP list to check against your ASA/Flow logs for the ArcaneDoor Cisco ASA … 4 days, 1 hour ago | www.reddit.com
arcanedoor asa blueteamsec check +8
CVE-2024-21111 - Local Privilege Escalation in Oracle VirtualBox 4 days, 2 hours ago | www.reddit.com
blueteamsec cve cve-2024 escalation +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineer - Vulnerability Management

@ Starling Bank | Southampton, England, United Kingdom
View on infosec-jobs.com

Manager Cybersecurity

@ Sia Partners | Rotterdam, Netherlands
View on infosec-jobs.com

Compliance Analyst

@ SiteMinder | Manila
View on infosec-jobs.com

Information System Security Engineer (ISSE)-Level 3, OS&CI Job #447

@ Allen Integrated Solutions | Chantilly, Virginia, United States
View on infosec-jobs.com

Enterprise Cyber Security Analyst – Advisory and Consulting

@ Ford Motor Company | Mexico City, MEX, Mexico
View on infosec-jobs.com
View more jobs