Syndicated Blog

Stories by Anton Chuvakin on Medium
Stories by Anton Chuvakin on Medium
Anton’s Alert Fatigue: The Study

Anton’s Alert Fatigue: The Study

Mention “alert fatigue” to a SOC analyst. They would immediately recognize what you are talking about. Now, take your time machine to 2002. Find a SOC analyst (much fewer of those around, ...
Get an Untrusted Security Advisor! Have Fun, Reduce Fail!

Get an Untrusted Security Advisor! Have Fun, Reduce Fail!

Many organizations are looking for trusted advisors, and this applies to our beloved domain of cyber/information security. If you look at LinkedIn, many consultants present themselves as trusted advisors to CISOs or ...
Smooth SIEM Surgery: Practical Tips for SIEM Migration Success in 2024

Anton’s Security Blog Quarterly Q3 2024

| | quarterly
Amazingly, Medium has fixed the stats so my blog/podcast quarterly is back to life. As before, this covers both Anton on Security and my posts from Google Cloud blog, and our Cloud ...
New Office of the CISO Paper: Organizing Security for Digital Transformation

New Office of the CISO Paper: Organizing Security for Digital Transformation

So some of you are thinking “ewwww … another security transformation paper” and this is understandable. A lot of people (and now … a lot of robots too) have written vague, hand-wavy “leadership” papers ...
Not a SOC FAQ! This is SOC FMD!

Not a SOC FAQ! This is SOC FMD!

Somebody asked me this profound question that (a) I feel needs an answer and that (b) I’ve never answered in the past:If you run a SOC (or an equivalent D&R team), what things ...
The Great Cloud Security Debate: CSP vs. Third-Party Security Tools

The Great Cloud Security Debate: CSP vs. Third-Party Security Tools

Do I go to my Cloud Service Provider (CSP) for cloud security tooling or to a third party vendor?Who will secure my cloud use, a CSP or a focused specialty vendor?Who is my ...
SOC Meets Cloud: What Breaks, What Changes, What to Do?

Guide your SOC Leaders to More Engineering Wisdom for Detection(Part 9)

This blog series was written jointly with Amine Besson, Principal Cyber Engineer, Behemoth CyberDefence and one more anonymous collaborator.In this blog (#9 in the series), we will cover a few higher level ...
Learn Modern SOC and D&R Practices Using Autonomic Security Operations (ASO) Principles

Learn Modern SOC and D&R Practices Using Autonomic Security Operations (ASO) Principles

Learn Modern SOC and D&R practices for free from Google! Yes, really! That’s the message. Join *hundreds* of others who already signed up!Now, with full details….After some ungodly amount of work, the original ...
Google Cloud Security Threat Horizons Report #10 Is Out!

Google Cloud Security Threat Horizons Report #10 Is Out!

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our next Threat Horizons Report (full version) that we just released (the official blog for ...
Smooth SIEM Surgery: Practical Tips for SIEM Migration Success in 2024

Anton’s Security Blog Quarterly Q2 2024

| | quarterly
Amazingly, Medium has fixed their stats (so not all is lost) so my blog quarterly is back to life. As before, this covers both Anton on Security and my posts from Google ...