Dec 13

Purple Teaming with Detection-as-Code for Modern SIEM

Dec 13, 2023
8:00 AM - 10:00 AM (PST)
Dec 13, 2023
8:00 AM - 10:00 AM (PST)

We will demonstrate how modern organizations use Purple team techniques to develop hypotheses for new detections and strengthen their defenses against future attacks.

Our approach: We will use open-source offensive security tools to simulate attacks against lab infrastructure and use an investigative approach to learn and build new detections & manage them using detection-as-code principles to eliminate noise and false positives.

Who should attend?

This hands-on virtual workshop is perfect for detection & security engineers who are expected to develop and write detections to support new log sources, threat models, and vulnerabilities that are exploited in the wild

This workshop is eligible for 2 CPE Credits from ISC(2). Enter your ISC(2) member number in the form for credit. 

Register Now!