π¨βπ» Gustavo Okamoto
Signal fidelity
Telemetry integrity
Automation boundaries
Degradation modeling
Sustainable SOC operations
My work focuses on one structural principle:
Creator and maintainer of Detection Fidelity Score (DFS) β a structured framework for:
Modeling detection degradation (Loss, Distortion, Drift)
Defining explicit Trust Decision Boundaries
Governing automation eligibility
Making detection debt visible
Aligning engineering rigor with executive accountability
DFS shifts the industry question from:
βDoes it detect?β
to
βIs this signal trustworthy enough to automate?β
https://github.com/gustavo89587/detection-fidelity-score
π¬ Technical Foundation
Governance without engineering depth is theory. My foundation remains deeply technical:
Focused on:
Windows internals & Sysmon telemetry
Behavioral detection engineering
SIEM parsing & normalization reliability
Telemetry pipeline architecture
Signal-to-noise optimization
Automation risk containment
π Open Source Contributions
Contributing to ecosystems used by blue teams in production environments.
Behavioral detection refinement
Context-aware rule logic
False-positive reduction without coverage loss
Windows & Sysmon decoder reliability
Telemetry normalization improvements
Downstream detection viability enhancements
Telemetry structuring for security analytics
Pipeline stability improvements
Bridging observability and detection engineering
Detection is not about generating alerts.
It is about governing which signals deserve:
Human escalation
Automated response
Contextual enrichment
Trust degrades. Automation scales impact.
Without explicit modeling, it scales fragility.