Detection engineering requires a unique combination of technical skills, threat research, and scientific method. Done properly, it allows us to better sift through the noise and identify information we can use to save time and manual effort.

In this episode of Wait Just an Infosec, SANS Certified Instructor Mark Orlando welcomes Zack Allen and Scott Foley for a discussion on common challenges in detection engineering, what it takes to get started, and why detection engineering done well can be your blue team “cheat code!”

Wait Just an Infosec is produced by the SANS Institute. You can watch the full, weekly Wait Just an Infosec live stream on the SANS Institute YouTube, LinkedIn, Twitter, and Facebook channels on Tuesdays at 10:00 am ET (2:00 pm UTC). Feature segments from each episode are published in a podcast format on Wednesdays at noon eastern. If you enjoy the Wait Just an Infosec live, weekly show covering the latest cybersecurity trends and news and featuring world-renowned information security experts, be sure and become a member of our community. When you join the SANS Community, you will have access to cutting edge cyber security news, training, and free tools you can't find anywhere else. Learn more about Wait Just an Infosec at sans.org/wjai and become a member of our community at sans.org/join. Connect with SANS on social media and watch the weekly live show: YouTube | LinkedIn | Facebook | Twitter