Detection Opportunities
Podcast Description
Detection Opportunities is a podcast for security professionals who care about building resilient detection and response systems. Each episode explores real-world attacks, breaks down how signals become insights, and dives into the engineering mindset behind effective threat detection, investigation, and defense. Grounded in frontline experience across SIEM development, security operations, incident response, and threat hunting, this show brings a practical, systems-level lens to modern security engineering.
Podcast Insights
Content Themes
The podcast explores a variety of content themes centered on cybersecurity, with specific episodes focusing on real-world attacks, detection strategies, and engineering mindsets. Examples of themes include integrating AI and LLMs into threat detection as discussed in the episode with Dylan Williams, and examining privilege escalation in Microsoft 365 as analyzed by Purav Desai. Episodes dive deep into practical applications of security technologies, such as incident response and threat hunting.
Detection Opportunities is a podcast for security professionals who care about building resilient detection and response systems. Each episode explores real-world attacks, breaks down how signals become insights, and dives into the engineering mindset behind effective threat detection, investigation, and defense. Grounded in frontline experience across SIEM development, security operations, incident response, and threat hunting, this show brings a practical, systems-level lens to modern security engineering.
Detection as Code is one of the most important evolutions in modern security detection, and in this video, we break it down.
I first encountered this concept as a Cloud Threat Detection Engineer at Datadog. Today, I’m joined by Dennis Chow, a Detection Engineering specialist and author of Automating Security Detection Engineering (which I had the honor of technically reviewing).
Together, we explore what Detection as Code really means and walk through two hands-on CI/CD pipeline demos:
🔹 Lab 1: Building SIEM detections with synthetic AI testing using Sumo Logic
🔹 Lab 2: Policy-as-Code integration testing with Cloud Custodian on GCP
You’ll learn how Detection as Code leverages Git, automated testing, reproducibility, collaboration, and CI/CD to make detection engineering more scalable, accountable, and reliable.
_____________
📁RESOURCES:
→ Our podcast episode together
_____________
⚡️JOIN 6,000+ CWX MEMBERS ON DISCORD
📰 SUBSCRIBE TO THE CYBERWOX UNPLUGGED NEWSLETTER
_____________
🧬 CYBERWOX RESOURCES
🔹 Cyberwox Cybersecurity Notion Templates for planning your career
🔹 Cyberwox Best Entry-Level Cybersecurity Resume Template
🔹 Learn AWS Threat Detection with my LinkedIn Learning Course
_____________
📱 LET’S CONNECT
Email: [email protected]
_____________
⚠️DISCLAIMER
This description has some affiliate links, and I may receive a small commission for purchases made through these links. I appreciate your support!
Disclaimer
This podcast’s information is provided for general reference and was obtained from publicly accessible sources. The Podcast Collaborative neither produces nor verifies the content, accuracy, or suitability of this podcast. Views and opinions belong solely to the podcast creators and guests.
For a complete disclaimer, please see our Full Disclaimer on the archive page. The Podcast Collaborative bears no responsibility for the podcast’s themes, language, or overall content. Listener discretion is advised. Read our Terms of Use and Privacy Policy for more details.