WEBINAR

Inside Splunk’s Detection Engineering Program: Strategies for Success

Every organization faces the same detection engineering challenge: how to build, test, and maintain hundreds of security detections while staying ahead of evolving threats. In this session, Splunk’s Detection Engineers—our internal security team—will pull back the curtain on how we operate our own detection program.

We’ll share the strategies, workflows, and tools that keep our environment secure, providing you with actionable insights you can apply immediately—whether you are building detections in Splunk, another SIEM, or evaluating your program from scratch.

What You’ll Learn:

• AI-Driven Content Generation: Discover how we leverage AI to accelerate detection development, enabling our team to write high-quality content faster while reducing manual toil.
• Risk-Based Alerting (RBA) at Scale: See how we combine multiple signals to surface subtle, multi-step attack patterns and behavioral anomalies that single detections might miss.
• Coverage Mapping: Learn how we map our detection coverage against the MITRE ATT&CK framework to identify critical gaps and prioritize our development roadmap.
• The Full Detection Lifecycle: Walk through our end-to-end process—from developing detections grounded in real threat intelligence to tuning for security context and monitoring health over time.

Register now to get insider knowledge from the experts who keep Splunk secure and elevate your detection engineering capabilities.

Join our other events in this series:

[Tech Talk]
Technical Deep Dive: Building Resilient Detections with Splunk STRT
July 15, 2026 | 10:00 -11:00 AM PT | 6:00 -7:00 PM BST

[Office Hours]
Detection Engineering Office Hours: Real-World Troubleshooting & Q&A
July 29, 2026 | 10:00 -11:00 AM PT | 6:00-7:00 PM BST

Our Speakers