Anton’s Security Blog Quarterly Q2 2024
Published in
3 min readJul 11, 2024
Amazingly, Medium has fixed their stats (so not all is lost) so my blog quarterly is back to life. As before, this covers both Anton on Security and my posts from Google Cloud blog, and our Cloud Security Podcast (subscribe).
Top 7 posts with the most lifetime views (excluding paper announcement blogs):
- Security Correlation Then and Now: A Sad Truth About SIEM
- Can We Have “Detection as Code”?
- Revisiting the Visibility Triad for 2020 (update for 2024 is coming soon BTW!)
- Beware: Clown-grade SOCs Still Abound
- Detection Engineering is Painful — and It Shouldn’t Be (Part 1)
- Why is Threat Detection Hard?
- A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next
Top 3 posts with paper announcements:
- New Paper: “Future of the SOC: SOC People — Skills, Not Tiers”
- New Paper: “Future of the SOC: Forces shaping modern security operations”
- New Paper: “Future Of The SOC: Process Consistency and Creativity: a Delicate Balance” (Paper 3 of 4)
Top 7 Cloud Security Podcast by Google episodes (excluding the oldest 3):
- EP75 How We Scale Detection and Response at Google: Automation, Metrics, Toil
- EP8 Zero Trust: Fast Forward from 2010 to 2021
- EP47 “Megatrends, Macro-changes, Microservices, Oh My! Changes in 2022 and Beyond in Cloud Security”
- EP17 Modern Threat Detection at Google
- EP109 How Google Does Vulnerability Management: The Not So Secret Secrets!
- EP103 Security Incident Response and Public Cloud — Exploring with Mandiant
- EP12 Threat Models and Cloud Security
Now, fun posts by topic.
Security operations / detection & response:
- Security Correlation Then and Now: A Sad Truth About SIEM
- Migrate Off That Old SIEM Already! (VIDEO!)
- Can We Have “Detection as Code”?
- Revisiting the Visibility Triad for 2020
- Beware: Clown-grade SOCs Still Abound
- Why is Threat Detection Hard?
- A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next
- Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…
- Top 10 SIEM Log Sources in Real Life?” (NEWER VERSION)
- Debating SIEM in 2023, Part 1
- Debating SIEM in 2023, Part 2
- How to Make Threat Detection Better?
- SIEM Content, False Positives and Engineering (Or Not) Security
Cloud security:
- Using Cloud Securely — The Config Doom Question
- Use Cloud Securely? What Does This Even Mean?!
- Who Does What In Cloud Threat Detection?
- How to Solve the Mystery of Cloud Defense in Depth?
- Does the World Need Cloud Detection and Response (CDR)?
- How CISOs need to adapt their mental models for cloud security” [GCP blog]
- Cloud Migration Security Woes
- Move to Cloud: A Chance to Finally Transform Security?
AI security:
- Our Security of AI Papers and Blogs Explained [this has a whole lot of fun links that you so want to click!]
- No Deep AI Security Secrets In This Post!
- New Paper: “Securing AI: Similar or Different?“
Enjoy!
Previous posts in this series:
- Anton’s Security Blog Quarterly Q1 2024 Lite
- Anton’s Security Blog Quarterly Q3 2023
- Anton’s Security Blog Quarterly Q2 2023
- Anton’s Security Blog Quarterly Q1 2023
- Anton’s Security Blog Quarterly Q4 2022
- Anton’s Security Blog Quarterly Q3 2022
- Anton’s Security Blog Quarterly Q2 2022
- Anton’s Security Blog Quarterly Q1 2022
- Anton’s Security Blog Quarterly Q4 2021
- Anton’s Security Blog Quarterly Q3 2021
- Anton’s Security Blog Quarterly Q2 2021
- Anton’s Security Blog Quarterly Q1 2021
- Anton’s Security Blog Quarterly Q3.5 2020
