Infrastructure as Code, Automation, and Testing in Detection Engineering

Explore the power of detection engineering in this 33-minute conference talk from NorthSec 2023. Dive into the world of Infrastructure as Code (IaC), automation, and testing to revolutionize your security team's approach to detection management. Learn how to ensure deployed detections match their design, validate detection and prevention controls, and maintain a single source of truth for detection logic. Discover the benefits of detection-as-code and how it enables automation and unit testing across multiple environments. Gain insights into building a robust development and deployment process using Azure DevOps, Microsoft Sentinel, Microsoft Defender suite, Azure Logic-Apps, and Functions. Understand how these tools integrate to create a scalable, effective detection system suitable for enterprises and service providers. Unlock the potential to improve control, quality, and documentation of your detection systems while boosting confidence in your security measures.

NSEC2023 - IaC, Automation, and Testing: The Key to Unlocking the Power of Detection Engineering