Home / Companies / Datadog / Blog / Post Details
Content Deep Dive

Best practices for creating custom detection rules with Datadog Cloud SIEM

Blog post from Datadog

Post Details
Company
Date Published
Author
Dany Kanes, Mallory Mooney
Word Count
1,370
Company Posts That Month
26
Language
English
Hacker News Points
-
Summary

In this article, best practices are discussed for creating efficient detection rules using the Datadog Security Platform. These rules help detect potential threats to applications in real time by querying ingested logs for key activity or changes in an environment. The article covers building queries with sufficient granularity, customizing security signal messages, and fine-tuning signals to reduce noise through suppression lists. It also briefly explains how Datadog's out-of-the-box detection rules work and provides examples of each best practice.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
Real-time 1 2,496 566 185 +13%