Detection Engineering

Definition

Detection engineering is the practice of designing, building, testing, and maintaining threat detection rules and logic within security platforms. Detection engineers create and tune the alerts that SOC analysts investigate.