← All Tags
# threat-detection detection-engineering

2 links tagged with all of: threat-detection + detection-engineering

Click any tag below to further narrow down your results

+ testing (1) + cybersecurity (1) + ci-cd (1) + aws (1) + logging (1) + cloud-security (1)

Links

AWS Detection Engineering: Mastering Log Sources for Threat Detection

AWS detection engineering practices were critically assessed after a breach simulation revealed undetected attacker persistence. The team rebuilt their detection capabilities by focusing on key log sources like CloudTrail, VPC Flow Logs, and GuardDuty, emphasizing the importance of correlation across these sources for effective threat detection.
Saved by tldr-importer · Last saved October 29, 2025 · 5 min read
+ aws threat-detection ✓ + logging + cloud-security detection-engineering ✓

Why You Should be Testing Your Detection Rules — Part 1

Testing detection rules is essential for improving the effectiveness and reliability of threat detection in digital environments. By implementing unit testing, linting, and integration testing, security teams can quickly identify issues, enhance the quality of their detection rules, and build trust with stakeholders. The article emphasizes the importance of such testing practices in a CI/CD framework and outlines a pragmatic approach for getting started.
Saved by tldr-importer · Last saved October 29, 2025 · 7 min read
detection-engineering ✓ + testing + cybersecurity + ci-cd threat-detection ✓