$
dakanotnice
Security Engineer
~
home
 📋
experience
 🔒
security
 📝
notes
 🔧
tools
 📬
contact
$ exit
☰
←
cd ../security
 
 
╔═══════════════════════════════════════════════╗
║  $ cat security/threat-detection.md           ║
╚═══════════════════════════════════════════════╝

# Threat Detection & Response

SumoLogic correlation, use case engineering, log analysis

> Threat Detection Overview

2025-10-08

Overview

Threat detection combines telemetry quality, correlation logic, and response playbooks.

Essentials

  • Normalized logs and schemas
  • Use case engineering
  • Alert tuning and suppression
Stack:
SumoLogic
Wazuh
Python