Anton’s Security Blog Quarterly Q1 2022
Published in
2 min readMar 4, 2022
Great old blog posts are sometimes hard to find (especially on Medium) , so I decided to do a periodic list blog with my favorite posts of the past quarter or so.
Here is the next one. The posts below are ranked by lifetime views. This covers both Anton on Security and my posts from Google Cloud blog, and our Cloud Security Podcast too (subscribe).
Top 5 most popular posts of all times:
- “Security Correlation Then and Now: A Sad Truth About SIEM”
- “Can We Have “Detection as Code”?”
- “New Paper: “Future of the SOC: SOC People — Skills, Not Tiers”
- “Beware: Clown-grade SOCs Still Abound””
- “New Paper: “Future of the SOC: Forces shaping modern security operations”
Top 5 posts with the most Medium fans:
- “Security Correlation Then and Now: A Sad Truth About SIEM”
- “Beware: Clown-grade SOCs Still Abound”
- “Can We Have “Detection as Code”?”
- “Why Is Threat Detection Hard?”
- “A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”
Top 5 Cloud Security Podcast by Google episodes:
- Episode 1“Confidentially Speaking”
- Episode 2 “Data Security in the Cloud”
- Episode 8 “Zero Trust: Fast Forward from 2010 to 2021”
- Episode 27 “The Mysteries of Detection Engineering: Revealed!”
- Episode 17 “Modern Threat Detection at Google”
Random fun new posts:
- “Anton and The Great XDR Debate, Part 3”
- “Left of SIEM? Right of SIEM? Get It Right!”
- “Kill SOC Toil, Do SOC Eng”
Now, top posts by topic.
Security operations / detection & response:
- “Security Correlation Then and Now: A Sad Truth About SIEM”
- “Can We Have “Detection as Code”?”
- “New Paper: “Future of the SOC: SOC People — Skills, Not Tiers””
- “Beware: Clown-grade SOCs Still Abound”
- “Revisiting the Visibility Triad for 2020”
- “Why is Threat Detection Hard?”
- “A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”
- “Achieving Autonomic Security Operations: Reducing toil” [GCP Blog]
- “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…”
- “Top 10 SIEM Log Sources in Real Life?”
- “Today, You Really Want a SaaS SIEM!”
Data security:
- “New whitepaper: Designing and deploying a data security strategy with Google Cloud” [GCP Blog]
- “The cloud trust paradox: To trust cloud computing more, you need the ability to trust it less” [GCP Blog]
- “The cloud trust paradox: 3 scenarios where keeping encryption keys off the cloud may be necessary” [GCP Blog]
- “Data Security and Threat Models”
- “Lost in translation: encryption, key management, and real security” [GCP Blog]
- “Musings on Modern Data Security”
- “Improving security, compliance, and governance with cloud-based DLP data discovery” [GCP Blog]
- “Transform data to secure it: Use Cloud DLP” [GCP Blog]
- “Not just compliance: reimagining DLP for today’s cloud-centric world” [GCP Blog]
Cloud security:
- “Not the Final Answer on NDR in the Cloud …”
- “Move to Cloud: A Chance to Finally Transform Security?”
- “Cloud Migration Security Woes”
- “Is Your Fate In the Cloud?”
Enjoy!
Previous posts in this series: