Udvidet returret til d. 31. januar 2025

Practical Threat Detection Engineering - Megan Roddie - Bog

Bag om Practical Threat Detection Engineering

Go on a journey through the threat detection engineering lifecycle while enriching your skill set and protecting your organization Key Features: - Gain a comprehensive understanding of threat validation - Leverage open-source tools to test security detections - Harness open-source content to supplement detection and testing Book Description: Threat validation is an indispensable component of every security detection program, ensuring a healthy detection pipeline. This comprehensive detection engineering guide will serve as an introduction for those who are new to detection validation, providing valuable guidelines to swiftly bring you up to speed. The book will show you how to apply the supplied frameworks to assess, test, and validate your detection program. It covers the entire life cycle of a detection, from creation to validation, with the help of real-world examples. Featuring hands-on tutorials and projects, this guide will enable you to confidently validate the detections in your security program. This book serves as your guide to building a career in detection engineering, highlighting the essential skills and knowledge vital for detection engineers in today's landscape. By the end of this book, you'll have developed the skills necessary to test your security detection program and strengthen your organization's security measures. What You Will Learn: - Understand the detection engineering process - Build a detection engineering test lab - Learn how to maintain detections as code - Understand how threat intelligence can be used to drive detection development - Prove the effectiveness of detection capabilities to business leadership - Learn how to limit attackers' ability to inflict damage by detecting any malicious activity early Who this book is for: This book is for security analysts and engineers seeking to improve their organization's security posture by mastering the detection engineering lifecycle. To get started with this book, you'll need a basic understanding of cybersecurity concepts, along with some experience with detection and alert capabilities. Table of Contents - Fundamentals of Detection Engineering - The Detection Engineering Life Cycle - Building a Detection Engineering Test Lab - Detection Data Sources - Investigating Detection Requirements - Developing Detections Using Indicators of Compromise - Developing Detections Using Behavioral Indicators - Documentation and Detection Pipelines - Detection Validation - Leveraging Threat Intelligence - Performance Management - Career Guidance for Detection Engineers

Vis mere
  • Sprog:
  • Engelsk
  • ISBN:
  • 9781801076715
  • Indbinding:
  • Paperback
  • Sideantal:
  • 328
  • Udgivet:
  • 21. juli 2023
  • Størrelse:
  • 191x18x235 mm.
  • Vægt:
  • 615 g.
  • 8-11 hverdage.
  • 4. december 2024
På lager

Normalpris

  • BLACK NOVEMBER

Medlemspris

Prøv i 30 dage for 45 kr.
Herefter fra 79 kr./md. Ingen binding.

Beskrivelse af Practical Threat Detection Engineering

Go on a journey through the threat detection engineering lifecycle while enriching your skill set and protecting your organization
Key Features:
- Gain a comprehensive understanding of threat validation
- Leverage open-source tools to test security detections
- Harness open-source content to supplement detection and testing
Book Description:
Threat validation is an indispensable component of every security detection program, ensuring a healthy detection pipeline. This comprehensive detection engineering guide will serve as an introduction for those who are new to detection validation, providing valuable guidelines to swiftly bring you up to speed.
The book will show you how to apply the supplied frameworks to assess, test, and validate your detection program. It covers the entire life cycle of a detection, from creation to validation, with the help of real-world examples. Featuring hands-on tutorials and projects, this guide will enable you to confidently validate the detections in your security program. This book serves as your guide to building a career in detection engineering, highlighting the essential skills and knowledge vital for detection engineers in today's landscape.
By the end of this book, you'll have developed the skills necessary to test your security detection program and strengthen your organization's security measures.
What You Will Learn:
- Understand the detection engineering process
- Build a detection engineering test lab
- Learn how to maintain detections as code
- Understand how threat intelligence can be used to drive detection development
- Prove the effectiveness of detection capabilities to business leadership
- Learn how to limit attackers' ability to inflict damage by detecting any malicious activity early
Who this book is for:
This book is for security analysts and engineers seeking to improve their organization's security posture by mastering the detection engineering lifecycle.
To get started with this book, you'll need a basic understanding of cybersecurity concepts, along with some experience with detection and alert capabilities.
Table of Contents
- Fundamentals of Detection Engineering
- The Detection Engineering Life Cycle
- Building a Detection Engineering Test Lab
- Detection Data Sources
- Investigating Detection Requirements
- Developing Detections Using Indicators of Compromise
- Developing Detections Using Behavioral Indicators
- Documentation and Detection Pipelines
- Detection Validation
- Leveraging Threat Intelligence
- Performance Management
- Career Guidance for Detection Engineers

Brugerbedømmelser af Practical Threat Detection Engineering



Gør som tusindvis af andre bogelskere

Tilmeld dig nyhedsbrevet og få gode tilbud og inspiration til din næste læsning.