Category: Detection Engineering
-
Measuring Detection Coverage
Purple Teaming and Detection Engineering even though that as a concept exist in the information security industry for years lack of specific standardization, models and metrics. The absence of dedicated purple teams for the vast majority of organizations doesn’t enable people with collaborative mindset to focus on detection resilience. Offensive,…
-
Detection Rules Development Framework
Organizations who invest in detection engineering have an edge towards identification of threats. However, there is no industry standard to define the framework around the development of detection rules and every organization use their own approach according to their threat landscape and internal resource capability available. There is an industry…
Purple Team 