Threat Hunting: Review, Automate, and Improve
Offered By: Pluralsight
Course Description
Overview
What are the follow-on tasks after completing a threat hunt? This course will teach you how to generate tangible outcomes and improve your threat hunting process.
Completion of a threat hunt involves not only the hunting, but ensuring tangible outputs to improve your organization's security. In this course, Threat Hunting: Review, Automate, and Improve, you'll learn to complete the threat hunting cycle with continuous automation and improvement. First, you'll explore the reporting process and how to measure success. Next, you'll discover how to build custom detection and automation mechanisms. Finally, you'll learn how to employ adversary emulation to improve detections. When you're finished with the course, you'll have the skills and knowledge of threat hunting needed to improve the maturity of your organization's threat hunting program.
Completion of a threat hunt involves not only the hunting, but ensuring tangible outputs to improve your organization's security. In this course, Threat Hunting: Review, Automate, and Improve, you'll learn to complete the threat hunting cycle with continuous automation and improvement. First, you'll explore the reporting process and how to measure success. Next, you'll discover how to build custom detection and automation mechanisms. Finally, you'll learn how to employ adversary emulation to improve detections. When you're finished with the course, you'll have the skills and knowledge of threat hunting needed to improve the maturity of your organization's threat hunting program.
Syllabus
- Course Overview 1min
- Continuous Improvement and Reporting 33mins
- Custom Detection and Automation 34mins
- Emulation and Detection 26mins
Taught by
Brandon DeVault
Related Courses
TOTAL: CompTIA CySA+ Cybersecurity Analyst (CS0-003)Udemy Operationalizing Cyber Threat Intel: Pivoting & Hunting
Pluralsight Threat Hunting with Yara
Pluralsight Enterprise Security: Policies, Practices, and Procedures
Pluralsight Managing and Responding to Security Events Using Azure Sentinel
Pluralsight