3 docs tagged with "defense-engineering"

Design hardened firewall rulesets with iptables/nftables, implement DMZ segmentation, micro-segmentation, and Zero Trust architecture using NIST SP 800-207.

Build detection pipelines with Sigma rules, YARA, Elastic EQL, and Splunk SPL; automate response with SOAR; validate coverage with ATT&CK and Atomic Red Team.

Apply CIS benchmarks, implement Windows and Linux hardening, map compliance frameworks (NIST CSF, PCI-DSS, ISO 27001), and run Purple Team exercises with Atomic Red Team.