Detection Engineering | SIEM | Wazuh
I work in cybersecurity and security monitoring, focusing on SIEM such as Wazuh. This site documents practical implementations, experiments, and lessons learned from real-world security scenarios.
Architecture overview, deployment strategy, and key operational lessons.
Integrating network detection into SIEM and reducing alert noise.
Exploring automation and external enrichment workflows.
Automation scripts for incident response and alert handling.