Practical Threat Detection Engineering: A hands-on guide to planning, developing, and validating detection capabilities
暫譯: 實用威脅檢測工程:規劃、開發與驗證檢測能力的實作指南

Roddie, Megan, Deyalsingh, Jason, Katz, Gary J.

Practical Threat Detection Engineering: A hands-on guide to planning, developing, and validating detection capabilities
  • 出版商: Packt Publishing
  • 出版日期: 2023-07-21
  • 定價: $2,200
  • 售價: 9.5$2,090
  • 語言: 英文
  • 頁數: 328
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1801076715
  • ISBN-13: 9781801076715
  • 相關分類: 資訊安全

    • 立即出貨 (庫存=1)

買這商品的人也買了...

相關主題

商品描述

Get to grips with the detection engineering lifecycle and transform internal and external threat intelligence into relevant detection controls to protect your organization

Purchase of the print or Kindle book includes a free PDF eBook

 

Key Features:

  • Gain a comprehensive understanding of threat validation
  • Leverage open source tools to test security detections
  • Harness open source content to supplement detection and testing

 

Book Description:

Threat validation is an indispensable component of every security detection program, ensuring a healthy detection pipeline. This comprehensive detection engineering guide will serve as an introduction for those who are new to detection validation, providing valuable guidelines to swiftly bring you up to speed.

The book will show you how to apply the supplied frameworks to assess, test, and validate your detection program. It covers the entire life cycle of a detection, from creation to validation, with the help of real-world examples. Featuring hands-on tutorials, projects, and self-assessment questions, this guide will enable you to confidently validate the detections in your security program.

By the end of this book, you'll have developed the skills necessary to test your security detection program and strengthen your organization's security measures.

 

What You Will Learn:

  • Become well versed in the detection engineering process
  • Build a detection engineering test lab
  • Discover how to maintain detections as code
  • Find out how threat intelligence can be used to drive detection development
  • Demonstrate the effectiveness of detection capabilities to business leadership
  • Limit the attackers' ability to inflict damage by detecting malicious activity early

 

Who this book is for:

This book is for security analysts and engineers seeking to improve their organization's security posture by mastering the detection engineering lifecycle.

To get started with this book, you'll need a basic understanding of cybersecurity concepts, along with some experience with detection and alert capabilities.

商品描述(中文翻譯)

掌握檢測工程生命週期,將內部和外部威脅情報轉化為相關的檢測控制,以保護您的組織

購買印刷版或 Kindle 版書籍可獲得免費 PDF 電子書

主要特色:


  • 全面了解威脅驗證

  • 利用開源工具測試安全檢測

  • 利用開源內容補充檢測和測試

書籍描述:

威脅驗證是每個安全檢測計劃中不可或缺的組成部分,確保健康的檢測管道。本綜合檢測工程指南將作為新手進入檢測驗證的入門,提供寶貴的指導,幫助您迅速掌握相關知識。

本書將向您展示如何應用提供的框架來評估、測試和驗證您的檢測計劃。它涵蓋了檢測的整個生命週期,從創建到驗證,並輔以實際案例。這本指南包含實作教程、專案和自我評估問題,將使您能夠自信地驗證您安全計劃中的檢測。

在本書結束時,您將具備測試安全檢測計劃和加強組織安全措施所需的技能。

您將學到什麼:


  • 熟悉檢測工程過程

  • 建立檢測工程測試實驗室

  • 了解如何將檢測維護為代碼

  • 發現如何利用威脅情報推動檢測開發

  • 向業務領導展示檢測能力的有效性

  • 通過及早檢測惡意活動來限制攻擊者造成損害的能力

本書適合誰:

本書適合希望通過掌握檢測工程生命週期來改善組織安全狀態的安全分析師和工程師。

要開始閱讀本書,您需要對網路安全概念有基本了解,並具備一些檢測和警報能力的經驗。

類似商品