Amazingly, Medium has fixed the stats so my blog/podcast quarterly is back to life. As before, this covers both Anton on Security and my posts from Google Cloud blog, and our Cloud Security Podcast (subscribe).
Top 10 posts with the most lifetime views (excluding paper announcement blogs):
- Security Correlation Then and Now: A Sad Truth About SIEM
- Can We Have “Detection as Code”?
- Detection Engineering is Painful — and It Shouldn’t Be (Part 1)
- Revisiting the Visibility Triad for 2020 (update for 2024 is coming soon BTW!)
- Beware: Clown-grade SOCs Still Abound
- Why is Threat Detection Hard?
- A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next
- Top 10 SIEM Log Sources in Real Life? [updated/modified version]
- How to Think about Threat Detection in the Cloud
- Anton and The Great XDR Debate, Part 1 (2021)
(the above is the same as last quarter)
Top 5 posts with paper announcements:
- New Paper: “Future of the SOC: SOC People — Skills, Not Tiers”
- New Paper: “Future of the SOC: Forces shaping modern security operations”
- New Paper: “Future Of The SOC: Process Consistency and Creativity: a Delicate Balance” (Paper 3 of 4)
- New Paper: “Autonomic Security Operations — 10X Transformation of the Security Operations Center” (the classic 2021 ASO paper!)
- New Paper: “Securing AI: Similar or Different?“
NEW: recent 3 fun posts, must-read:
- Anton’s Alert Fatigue: The Study (long!)
- Get an Untrusted Security Advisor! Have Fun, Reduce Fail! (AI!)
- Not a SOC FAQ! This is SOC FMD! (SOC!)
Top 7 Cloud Security Podcast by Google episodes (excluding the oldest 3!):
- EP75 How We Scale Detection and Response at Google: Automation, Metrics, Toil
- EP8 Zero Trust: Fast Forward from 2010 to 2021
- EP47 “Megatrends, Macro-changes, Microservices, Oh My! Changes in 2022 and Beyond in Cloud Security”
- EP109 How Google Does Vulnerability Management: The Not So Secret Secrets!
- EP103 Security Incident Response and Public Cloud — Exploring with Mandiant
- EP17 Modern Threat Detection at Google
- EP71 Attacking Google to Defend Google: How Google Does Red Team
- EP12 Threat Models and Cloud Security
- EP105 Security Architect View: Cloud Migration Successes, Failures and Lessons
- EP107 How Google Secures It’s Google Cloud Usage at Massive Scale
Now, fun posts by topic.
Security operations / detection & response:
- “Security Correlation Then and Now: A Sad Truth About SIEM”
- “Migrate Off That Old SIEM Already!” (VIDEO!)
- “Can We Have “Detection as Code”?”
- “Revisiting the Visibility Triad for 2020”
- “Beware: Clown-grade SOCs Still Abound”
- “Why is Threat Detection Hard?”
- “A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”
- “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…”
- “Top 10 SIEM Log Sources in Real Life?” (NEWER VERSION)
- “Debating SIEM in 2023, Part 1”
- “Debating SIEM in 2023, Part 2”
- “Log Centralization: The End Is Nigh?”
- “How to Make Threat Detection Better?”
- “SIEM Content, False Positives and Engineering (Or Not) Security”
- “Modern SecOps Masterclass: Now Available on Coursera”
(if you only read one, choose this one!)
Cloud security:
- “Using Cloud Securely — The Config Doom Question”
- “Who Does What In Cloud Threat Detection?”
- “How to Solve the Mystery of Cloud Defense in Depth?”
- “Does the World Need Cloud Detection and Response (CDR)?”
- “Use Cloud Securely? What Does This Even Mean?!”
- “How CISOs need to adapt their mental models for cloud security” [GCP blog]
- “Who Does What In Cloud Threat Detection?”
- “Cloud Migration Security Woes”
- “Move to Cloud: A Chance to Finally Transform Security?”
- “It’s a multicloud jungle out there. Here’s how your security can survive“
(if you only read one, choose this one!)
CISO, culture, FMC, etc
- “New Office of the CISO Paper: Organizing Security for Digital Transformation”
- “10 ways to make cyber-physical systems more resilient”
AI security:
- ”Our Security of AI Papers and Blogs Explained” [this has a whole lot of AI security fun links that you so want to click!]
- “Spotlighting ‘shadow AI’: How to protect against risky AI practices”
- “No Deep AI Security Secrets In This Post!”
- “New Paper: “Securing AI: Similar or Different?“
- “The Prompt: What to think about when you’re thinking about securing AI”
- “Gen AI governance: 10 tips to level up your AI program”
- “To securely build AI on Google Cloud, follow these best practices”
- “Oops! 5 serious gen AI security mistakes to avoid”
(if you only read one, choose this one!)
NEW: fun presentations shared:
- Detection Engineering Maturity — Helping SIEMs Find Their Adulting Skills (2024)
- Future of SOC: More Security, Less Operations (2024)
- SOC Meets Cloud: What Breaks, What Changes, What to Do? (2023)
- Meet the Ghost of SecOps Future (2023)
- The Future of Log Centralization for SIEMs and DFIR — Is the End Nigh? (2023)
- 20 Years of SIEM (2022)
Enjoy!
Previous posts in this series:
- Anton’s Security Blog Quarterly Q3 2024
- Anton’s Security Blog Quarterly Q2 2024
- Anton’s Security Blog Quarterly Q1 2024 Lite
- Anton’s Security Blog Quarterly Q3 2023
- Anton’s Security Blog Quarterly Q2 2023
- Anton’s Security Blog Quarterly Q1 2023
- Anton’s Security Blog Quarterly Q4 2022
- Anton’s Security Blog Quarterly Q3 2022
- Anton’s Security Blog Quarterly Q2 2022
- Anton’s Security Blog Quarterly Q1 2022
- Anton’s Security Blog Quarterly Q4 2021
- Anton’s Security Blog Quarterly Q3 2021
- Anton’s Security Blog Quarterly Q2 2021
- Anton’s Security Blog Quarterly Q1 2021
- Anton’s Security Blog Quarterly Q3.5 2020
Anton’s Security Blog Quarterly Q4 2024 was originally published in Anton on Security on Medium, where people are continuing the conversation by highlighting and responding to this story.
*** This is a Security Bloggers Network syndicated blog from Stories by Anton Chuvakin on Medium authored by Anton Chuvakin. Read the original post at: https://medium.com/anton-on-security/antons-security-blog-quarterly-q4-2024-076ea73bf84b?source=rss-11065c9e943e------2