Detection Engineering Dispatch is a live series of 30 to 45-minute episodes featuring hands-on experiences, open discussions and live case studies with security operations teams at leading companies on what it takes to build a great detection engineering program.
Join your peers to knowledge share, deep dive on technical best practices, and engage in discussions relevant to the detection engineering community.
Days Until The Next Live -Session
Episode 57 | Malware Trends, Credential Soup and Scream Therapy
Alex and Scott Rodgers unpack the F5 breach, Mandiant M-Trends highlights like the fall of BEACON, and the leapfrogging of Stolen Creds over Phishing. Hit play. Stay unhinged. Detect responsibly.
Expect:
- The infostealer industrial complex
- Operation MORPHEUS x BEACON’s quiet exit
- The real meaning of “supply chain blast radius” & tight turnaround time reqs
- Why screaming might actually save your sanity
Past Episodes & Resources
.png)
In this episode of Detection Dispatch, host Alex Hurtado sits down with Kostas, founder of DefendPoint Consulting and creator of the EDR Telemetry Project, to unpack the realities of endpoint detection in 2025. They discuss the evolution of EDR beyond antivirus, Sysmon’s role as a supplement—not a replacement—vendor transparency, pricing myths, and how AI SOCs are reshaping detection engineering.
.png)
September 25, 2025
Modern detection architecture isn’t about choosing SIEM or lake — it’s about interoperability, orchestration, and strategic flow. We cover federation hype and data silo upkeep fatigue and take a brutally honest look at why standalone SIEMs aren’t cutting it, what’s actually driving data lake adoption, and how teams can shift from buying more platforms to building better data flows.
.png)
August 25, 2025
On this Dispatch episode, Amazon detection engineer Day Johnson shares insights on SOC shifts, cloud defense, and staying sharp in a chaotic threat landscape.