DiscoverCloud Security Podcast by GoogleEP202 Beyond Tiered SOCs: Detection as Code and the Rise of Response Engineering
EP202 Beyond Tiered SOCs:  Detection as Code and the Rise of Response Engineering

EP202 Beyond Tiered SOCs: Detection as Code and the Rise of Response Engineering

Update: 2024-12-09
Share

Description

Guest:

  • Amine Besson, Tech Lead on Detection Engineering, Behemoth Cyberdefence

Topics:

  • What is your best advice on detection engineering to organizations who don’t want to engineer anything in security? 
  • What is the state of art when it comes to SOC ? Who is doing well? What on Earth is a fusion center? 
  • Why classic “tiered SOCs” fall flat when dealing with modern threats?
  • Let’s focus on a correct definition of detection as code. Can you provide yours?
  • Detection x response engineering - is there a thing called “response engineering”? Should there be?
  • What are your lessons learned to fuse intel, detections, and hunting ops?
  • What is this SIEMless yet SOARful detection architecture?
  • What’s next with OpenTIDE 2.0?

Resources:

 

Comments 
In Channel
loading
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

EP202 Beyond Tiered SOCs:  Detection as Code and the Rise of Response Engineering

EP202 Beyond Tiered SOCs: Detection as Code and the Rise of Response Engineering

Anton Chuvakin