This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question
David-French
Staff
Since ‎09-25-2023

My Stats

  • 16 Posts
  • 2 Solutions
  • 33 Likes given
  • 38 Likes received

David-French's Bio

David French is a Detection & Response Engineer and Threat Hunter with many years of experience both working as a defensive cybersecurity practitioner and on the vendor side of life doing threat research and building security solutions to protect organizations from attack. He enjoys sharing knowledge and research with the community via blogging, presenting at conferences such as Black Hat and BSides, and contributing to MITRE ATT&CK.

Badges David-French Earned

View all badges

Recent Activity

Getting Started with Detection-as-Code and Chronicle Security Operations (Part 2 of 2)

02-01-2024
Welcome to part two of this blog series focused on building a CI/CD pipeline to manage detection rules in Chronicle Security Operations. In part one, I provided an overview of the principles and benefits of managing detection rules as code and a typi...

Getting Started with Detection-as-Code and Chronicle Security Operations (Part 1 of 2)

01-30-2024
Many security teams, especially those in larger enterprises are adopting “Detection-as-Code” to automate their Detection Engineering workflows. Detection-as-Code is a set of principles that use code and automation to implement and manage threat detec...

Proactive Monitoring & Detection for Google Workspace with Chronicle Security Operations

01-18-2024
The saying, “prevention is ideal, but detection is a must” has stuck with me ever since I landed my first SOC analyst job many years ago. It emphasizes the importance of a layered approach to security – preventive measures aim to stop security incide...

Detecting Suspicious Domains in Chronicle Using Entity Enrichment Data

12-05-2023
While onboarding with Google, I’ve been learning as much as I can about Chronicle Security Operations. Part of my new role is to help security practitioners use Chronicle to effectively detect, investigate, and respond to threats in their organizatio...