Automating Security Detection Engineering
A hands-on guide to implementing Detection as Code
Created by Dennis Chow
Learn how to automate security detection engineering and streamline your threat detection workflows. Explore practical ways to build, test, and monitor detection use cases using modern tools and automation techniques. Gain hands-on experience with Detection as Code to boost your organization's security response.
Packt | Jun 2024 | 252 min
What You Will Learn
You'll work through real-world scenarios that show how to automate the detection use case lifecycle from start to finish. By using hands-on labs and technical walkthroughs, you'll learn to integrate APIs, set up CI/CD pipelines, and develop custom code for various security platforms. Each step is designed to help you apply automation in practical ways.
Key Features
- Build automated CI/CD pipelines to deploy and test detection use cases efficiently
- Develop custom detection code for tools like EDRs, WAFs, SIEMs, and more
- Apply DevSecOps principles to monitor, scale, and optimize your detection program
Target Audience
Ideal for security engineers and analysts who manage or develop detection capabilities at scale. If you already have experience with scripting or programming and are familiar with security tools and DevSecOps concepts, you'll benefit most. This content is designed for those looking to mature their detection programs and free up valuable engineering time.
