Course·CybraryCommunity

Practical Detection Engineering with Sigma Rules

How to author, test, and tune Sigma detections that survive contact with reality. Covers ATT&CK alignment, false-positive triage, and a CI pipeline for detections-as-code.

3 hrSelf-pacedFreeIncident ResponseThreat Intelligence

Open at Cybrary Save Mark complete

Likely qualifies for

Estimated credit values based on the content of this opportunity. Always verify with your certifying body before claiming.

CompTIAHigh confidence

CySA++3 credits

Sigma rule authoring and detection testing directly align with CySA+ threat detection and incident response objectives, particularly in identifying and responding to security events.

CompTIAMedium confidence

Security++3 credits

Detection engineering and ATT&CK alignment support Security+ operations and threat analysis domains, though hands-on detection engineering is more specialized than the foundational cert typically requires.

Credit estimates are RecertHero's best-effort interpretation of the content described. Each certifying body has its own rules — always confirm with the official CPE / CEU policy and keep your own attendance records.