Ted Skinner
Security architect and SOC engineer with a focus on detection engineering, security telemetry, and operationalizing machine learning in security operations.
The Telemetry Forge documents builds done in a real security lab – not cloud demos, not toy datasets. Every post is written at the depth a senior security engineer needs to actually replicate the work, including what broke and why.
Lab Environment
- Splunk Enterprise 10.0 with Enterprise Security
- 4-node NVIDIA Jetson Nano cluster (JetPack 4.6.6)
- Zeek IDS, Suricata, Splunk Stream
- Windows event log collection
- Custom edge AI inference pipeline (DSDL 5.2.3)
Topics Covered
- Detection engineering and SIEM architecture
- Edge AI and machine learning for security operations
- Security telemetry pipeline design
- Threat hunting with Splunk SPL
- SOC automation and workflow engineering