If you were tasked with building a threat hunting program from scratch for a mid-size organization, how would you structure it? What capabilities, tools, data sources, and processes would you need to establish?

Sample answer preview

Building a threat hunting program from scratch requires a strategic approach that addresses people, processes, technology, and data in a coordinated manner. Here is how I would structure the program for a mid-size organization. The foundation starts with data.