Explore the power of detection engineering in this 33-minute conference talk from NorthSec 2023. Dive into the world of Infrastructure as Code (IaC), automation, and testing to revolutionize your security team's approach to detection management. Learn how to ensure deployed detections match their design, validate detection and prevention controls, and maintain a single source of truth for detection logic. Discover the benefits of detection-as-code and how it enables automation and unit testing across multiple environments. Gain insights into building a robust development and deployment process using Azure DevOps, Microsoft Sentinel, Microsoft Defender suite, Azure Logic-Apps, and Functions. Understand how these tools integrate to create a scalable, effective detection system suitable for enterprises and service providers. Unlock the potential to improve control, quality, and documentation of your detection systems while boosting confidence in your security measures.
Infrastructure as Code, Automation, and Testing in Detection Engineering
Overview
Syllabus
NSEC2023 - IaC, Automation, and Testing: The Key to Unlocking the Power of Detection Engineering
Taught by
NorthSec
Related Courses
-
DevOps with GitHub and Azure: Implementing Infrastructure as Code
-
Configure SIEM security operations using Microsoft Sentinel
-
Microsoft Security, Compliance, and Identity Fundamentals: Security Solutions
-
Manage security operations in Azure
-
CI/CD Pipelines using Azure DevOps
-
SC-100: Design security operations, identity, and compliance capabilities
