Anton’s Security Blog Quarterly Q1 2024 Lite

Absolutely abysmal image with garbled text by Dall-E :-)

The idiots from Medium have removed the overall stats screen from their sad excuse for UX, and claimed this is “temporary.” Very much the same meaning as “temporary emergency measure” in Soviet history, ha! It has been many, many months without stats (since Aug 2023, if you are curious).

Anyhow, this has disrupted the cadence of my Security Blog Quarterly blog of popular stories. Now I decided to do it anyway based on their stupid “claps” ranking.

So, here is my next one. The posts below are ranked by claps (yuck!). This covers both Anton on Security and my posts from Google Cloud blog (still by views), and our Cloud Security Podcast too (subscribe).

Top 7 posts with the most Medium claps:

1. Security Correlation Then and Now: A Sad Truth About SIEM
2. Beware: Clown-grade SOCs Still Abound
3. Migrate Off That Old SIEM Already! (NEW!)
4. Can We Have “Detection as Code”?
5. Kill SOC Toil, Do SOC Eng
6. A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next
7. Role of Context in Threat Detection

Top 5 Cloud Security Podcast by Google episodes (excluding the oldest 3):

1. EP75 How We Scale Detection and Response at Google: Automation, Metrics, Toil
2. EP47 “Megatrends, Macro-changes, Microservices, Oh My! Changes in 2022 and Beyond in Cloud Security”
3. EP8 Zero Trust: Fast Forward from 2010 to 2021
4. EP103 Security Incident Response and Public Cloud — Exploring with Mandiant
5. EP109 How Google Does Vulnerability Management: The Not So Secret Secrets!

Now, fun posts by topic.

Security operations / detection & response:

• “Security Correlation Then and Now: A Sad Truth About SIEM”
• Migrate Off That Old SIEM Already! (VIDEO!)
• “Can We Have “Detection as Code”?”
• “Revisiting the Visibility Triad for 2020”
• “Beware: Clown-grade SOCs Still Abound”
• “Why is Threat Detection Hard?”
• “A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”
• “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…”
• “Debating SIEM in 2023, Part 1”
• “Debating SIEM in 2023, Part 2”
• “SIEM Content, False Positives and Engineering (Or Not) Security”

Data security:

• “How autonomic data security can help define cloud’s future” [GCP blog]
• “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog]
• “The cloud trust paradox: To trust cloud computing more, you need the ability to trust it less” [GCP Blog]
• “The cloud trust paradox: 3 scenarios where keeping encryption keys off the cloud may be necessary” [GCP Blog]
• “Data Security and Threat Models”
• “Lost in translation: encryption, key management, and real security” [GCP Blog]
• “Musings on Modern Data Security”

Cloud security:

• “Using Cloud Securely — The Config Doom Question”
• “How to Solve the Mystery of Cloud Defense in Depth?”
• “Use Cloud Securely? What Does This Even Mean?!”
• “How CISOs need to adapt their mental models for cloud security” [GCP blog]
• “How to think about threat detection in the cloud” [GCP blog]
• “Who Does What In Cloud Threat Detection?”
• “Cloud Migration Security Woes”
• “Move to Cloud: A Chance to Finally Transform Security?”
• “Is Your Fate In the Cloud?”

AI security:

• No Deep AI Security Secrets In This Post!

Enjoy!

Previous posts in this series:

• Anton’s Security Blog Quarterly Q3 2023
• Anton’s Security Blog Quarterly Q2 2023
• Anton’s Security Blog Quarterly Q1 2023
• Anton’s Security Blog Quarterly Q4 2022
• Anton’s Security Blog Quarterly Q3 2022
• Anton’s Security Blog Quarterly Q2 2022
• Anton’s Security Blog Quarterly Q1 2022
• Anton’s Security Blog Quarterly Q4 2021
• Anton’s Security Blog Quarterly Q3 2021
• Anton’s Security Blog Quarterly Q2 2021
• Anton’s Security Blog Quarterly Q1 2021
• Anton’s Security Blog Quarterly Q3.5 2020