Make your detection lifecycle more effective by leveraging software development tools and processes like version control, approval flows, and automation, including a human-readable Content Catalog. Learn how Sumo Logic approaches detection engineering to drive scalable, automated security operations, transitioning from preventive measures to reactive responses. In this short talk, Paul Tobia, Senior Product Manager for Security at Sumo Logic, outlines the functions within detection engineering, plus a core principle of treating detections as code.
Watch to learn:
- How customers can build and sync their own rule repositories using Terraform and GitHub actions
- How detection engineering is the focal point of a well-rounded cybersecurity program
- How Sumo Logic’s Threat Labs team uses detection as code to manage and update about 1000 Cloud SIEM detection rules asynchronously with real-time testing