Keith
@kwm
The real fun in detection engineering is balancing a bunch of objectives that are fundamentally at odds, like:
⬆️ Detection coverage (lots of leads)
⬇️ Detection timeliness (little time)
I love how Todd defines and operationalizes this: https://redcanary.com/blog/detection-engineering-objectives/
9/24/2020, 7:25:00 AM
Favs: 10
Retweets: 0
link