Join us for Wild West Hackin’ Fest Mile High conference! Register Here

Workshop: SOC Detection Engineering Crash Course with Hayden Covington

Course Authored by .

SOC Detection Engineering Crash Course with Hayden Covington

Detection Engineering can be a minefield of technical and logistical challenges, but in this workshop, you’ll learn the fundamentals within a fully functional SIEM.

Course Length: 4 Hours

Includes a Certificate of Completion



Enroll Now

Next scheduled date: Content is loading, please wait.

Description

Detection Engineering can be a minefield of technical and logistical challenges, but in this workshop, you’ll learn the fundamentals within a fully functional SIEM.

From writing custom threat detections using a structured and scientific process to test-firing them yourself, you’ll gain hands-on experience that bridges the gap between theory and practice. By the end of this workshop, you will not only have a strong foundation in detection engineering knowledge but also the practical skills to build effective and high-fidelity detections from the ground up.

System Requirements
  • Hardware
    • A computer
  • Other
    • Labs will be performed via MetaCTF Cloud Labs
    • An email ready to use to sign up for an Elastic Cloud free trial (you can't have used that email for an Elastic Cloud trial previously)
    • A MetaCTF account

Syllabus

  • Elastic Search Basics

  • SIEM Detection Engineering Basics

  • The Detection Engineering Process

  • Testing Threat Detections

  • Setting Your Analysts Up for Success

FAQ

Who Should Take This Workshop? Prerequisites
SOC engineers, managers, analysts, or those wanting to work in a SOC

Anyone wanting to learn the basic of how to write threat detections
Audience Skill Level
Introductory. A basic level of fundamental knowledge is helpful but is not strictly necessary.

About the Instructor

Pixel splash background
Hayden Covington
Hayden Covington
"Security Engineer, Triathlete, and Analytics Addict"
Bio

Hayden Covington is a Senior Analyst in Black Hills Information Security’s SOC where he specializes in training, quality assurance, detection engineering, and investigative analysis. With a previous background as a SOC analyst for a US naval contractor, Hayden has extensive experience in Digital Forensics and Incident Response (DFIR), Security Orchestration, Automation, and Response (SOAR), and insider threat.

Related products

Shopping Cart

No products in the cart.