II.
SkillArea overview
Reference · liveskill-area:threat-detection
Threat Detection overview
Identifying malicious activity across infrastructure and applications — SIEM integration, behavioral analytics, IOC correlation, and automated alert triage to accelerate incident detection and response.
Attributes
displayName
Threat Detection
description
Identifying malicious activity across infrastructure and applications —
SIEM integration, behavioral analytics, IOC correlation, and automated
alert triage to accelerate incident detection and response.
domains
expertiseLevels
- intermediate
- expert
Outgoing edges
applies_to1
- domain:cybersecurity·DomainCybersecurity
Incoming edges
contains1
- specialization:fraud-prevention·Specialization
prerequisite_for_learning1
- skill-area:network-security·SkillAreaNetwork Security
requires_expertise2
- role:threat-analyst·RoleThreat Analyst
- role:blue-team-lead·RoleBlue Team Lead
requires_skill_area2
- stack-profile:security-operations·StackProfileSecurity Operations Stack (Trivy, Falco, OPA, Vault, Snyk)
- stack-profile:siem-platform·StackProfileSIEM Platform (Elasticsearch, Python, RabbitMQ, Redis, React, PostgreSQL)
tool_used_by1
- tool:falco·ToolFalco