How to Train Your Detection Dragon
Geet Pradhan
BSidesSF 2025 — Here Be Dragons · Day 1 · Main
Building a detection and response pipeline from scratch is less a technology problem than a design and communication problem. Geet Pradhan, a security engineer speaking from hard-won experience, walks through a four-phase framework — sources, alerting, notification, and response — and explains the organizational and cultural patterns that separate a pipeline that scales from one that collapses under its own alert volume. ---
AI review
A beginner-friendly pipeline primer that checks the boxes without earning the room. Pradhan's genuine practitioner experience shows, but this is introductory content delivered to a BSidesSF crowd that mostly built their pipelines five years ago. Sigma rules and Wazuh are fine recommendations — not 2025 news.