Anvilogic Raises $45M Series C Funding to Grow Adoption of Its AI-Based Multi-Data Platform SIEM.
Learn More
Skip to main content
Episode
20

The Lifecycle of a Detection

#20 The Lifecycle of a Detection

April 11, 2024

Get the Giveaway

In this episode, we will dive deep into the critical phases of a detection lifecycle. Christina Westfall, our expert Detection Engineer (DE), will guide us through the intricacies of detection engineering lifecycles, highlighting the good, the bad, and the ugly things encountered along the way.  We’ll start with the calm before the storm phase prior to the detection build, progress through the construction and testing of the detections, examine the outcomes, and end with addressing the subsequent "Now What?" steps.

This discussion will encompass potential strategies for generating effective coverage against emerging threats, methodologies for researching and developing detection techniques, and the critical process of testing these techniques' underlying logic. An important focus will, of course, be on the tuning process, which is vital for maintaining the efficacy and health of detections. Christina and Alex Hurtado, Detection Dispatch host, will also discuss her team’s innovative methods compared to the traditional SOC approach.

Join us for this 45-minute session packed with detection engineering insights. Arm yourself with knowledge, for with great knowledge comes great responsibility.

Episode Host Headshot
Christina Westfall
Threat Detection Engineer, Anvilogic
Episode Host Headshot
Alex Hurtado
Sr. Product Marketing Manager, Anvilogic

Additional Resources

Launch the Snowflake Lab
Anvilogic for Snowflake
Proactive Security Starts with Detection

Past Episodes & Resources

Cloud Security: Navigating Effective Detection for Cloud Environments

March 28, 2024

#19 Cloud Security: Navigating Effective Detection for Cloud Environments

Join us for an eye-opening episode of Detection Dispatch, where we delve into the critical realm of cloud security detection.

Watch Now and Get the Giveaway
5 Security Data Lake 'Aha Moments' for Detection Engineers

March 14, 2024

#18 Five Security Data Lake 'Aha Moments' for Detection Engineers

Omer Singer, VP of Strategy and Tim Frazier, Sales Engineering Director sit down to discuss how security data lakes can unlock new use cases, and more effective and efficient processes for detection engineering teams.

Watch Now and Get the Giveaway
Unlocking LLM Use Cases for Security Operations

February 29, 2024

#17 Unlocking LLM Use Cases for Security Operations

Mike Hart & Scott Rodgers, Principal Data Scientists at Anvilogic, sit down to discuss how SOC teams can leverage LLMs and work effectively with their data scientists to let the machines do more work, for you.

Watch Now and Get the Giveaway
Breaking Down the Detection Engineering Lifecycle: Deep Dive into Threat Research

February 15, 2024

#16 Breaking Down the Detection Engineering Lifecycle: Deep Dive into Threat Research

Join Kevin Lo, Senior Threat Researcher at Anvilogic, for a deep dive session on all things threat research and how it plays into the entire detection engineering lifecycle.

Watch Now and Get the Giveaway
Build the Right Detections: An Intro to Threat Modeling

February 1, 2024

#15 Build the Right Detections: An Intro to Threat Modeling

Join Omer Singer, VP of Strategy and Tim Frazier, Sr. Sales Engineer for a deep dive into the world of threat modeling.

Watch Now and Get the Giveaway
A Day in the Life of a Detection Engineer

January 18, 2024

#14 A Day in the Life of a Detection Engineer

Join us for the first episode of 2024 with Raymie Michael, Security Engineer @ eBay.

Watch Now and Get the Giveaway
Hands-on Technical Workshop: File Identification, Encoding, and Encryption for Beginners

December 7, 2023

#13 Hands-on Technical Workshop: File Identification, Encoding, and Encryption for Beginners

Learn the basics of identifying files, encoding, and encryption based on file characteristics & contents.

Watch Now and Get the Giveaway
From Practitioner to Security Leader: All Things Detection Engineering

November 9, 2023

#12 From Practitioner to Security Leader: All Things Detection Engineering

Learn what detection engineering skills are most crucial in todays environment

Watch Now and Get the Giveaway
Threat Hunting 101: Lateral Movements in Windows Networks

October 26, 2023

#11 Threat Hunting 101: Lateral Movements in Windows Networks

Learn how you can improve your investigation skills for lateral movements in Windows Event Logs.

Watch Now and Get the Giveaway
Part 3 | Time for Your Check-up: Leverage AI to Monitor the Health of Your Security Environment

October 12, 2023

#10 Part 3 | Time for Your Check-up: Leverage AI to Monitor the Health of Your Security Environment

In this episode, you'll learn how to maintain a healthy security environment to prevent the unexpected.

Watch Now and Get the Giveaway
Part 2 | Get Rid of Lousy Detections: Leverage AI to Tune Your Detections & Stop Alert Fatigue

September 28, 2023

#9 Part 2 | Get Rid of Lousy Detections: Leverage AI to Tune Your Detections & Stop Alert Fatigue

In this episode, learn how you can leverage AI to automate the tuning & maintenance of your alerts.

Watch Now and Get the Giveaway
Scaling Detection Engineering: Leveraging AI for Workloads on Snowflake

September 14, 2023

#8 Scaling Detection Engineering: Leveraging AI for Workloads on Snowflake

Come learn how Anvilogic leverages ML to help you get the most of not just your Snowflake investment, but any data platform you use.

Watch Now and Get the Giveaway
Detection Engineering Fundamentals: Best Practices for Building Robust Detections

August 31, 2023

#7 Detection Engineering Fundamentals: Best Practices for Building Robust Detections

Join us for our 7th episode where we'll continue diving deeper into the fundamentals of detection engineering.

Watch Now and Get the Giveaway
Interactive Webshell Investigation: Tracing the Intruder's Tracks in Your Web Apps

August 17, 2023

#6 Interactive Webshell Investigation: Tracing the Intruder's Tracks in Your Web Apps

This session will help you deduce when a webshell may be in the process of being installed/utilized, and how to get ahead of it. If you love getting hands-on, and into the details- this session is for you!

Watch Now and Get the Giveaway
Rakuten Mobile Defends Against MFA Attack Techniques by Leveraging Anvilogic and Splunk

August 3, 2023

#5 Rakuten Mobile Defends Against MFA Attack Techniques by Leveraging Anvilogic and Splunk

Watch the session to hear from Sota, and see how Anvilogic can empower your Splunk investment to defend against these type of attacks.

Watch Now and Get the Giveaway
Analyzing Powershell Scripts: A Deep-Dive for Threat Hunters

July 20, 2023

#4 Analyzing Powershell Scripts: A Deep-Dive for Threat Hunters

This session will help you fine-tune your hunting skills when you encounter a threat, understand popular types of payloads, and triage efficiently. Stay tuned for the giveaway where you can apply your learnings hands-on!

Watch Now and Get the Giveaway
Capture the Flag (CTF): Snowflake Edition

July 6, 2023

#3 – Capture the Flag (CTF): Snowflake Edition

It's time to up-level or test your detection engineering skills by achieving top-level objectives and answering quiz-style questions to emerge victorious in this epic CTF challenge.

Watch Now and Get the Giveaway
Mastering Threat Detection: Building Behavioral-Based Detections

June 22, 2023

#2 – Mastering Threat Detection: Building Behavioral-Based Detections

We'll walk through examples, and be giving away detections that can help you apply your learning hands-on right after the session. Come join us, and stay ahead with the detection engineering community!

Watch Now and Get the Giveaway
Detection Engineering 101 to Empower Splunk Users

June 8, 2023

#1 – Detection 101 to Empower Splunk Users

Join Anvilogic for bi-weekly sessions where we’ll surface detection engineering best practices, trending threats, detection content or a hands-on workshop.

Watch Now and Get the Giveaway