Anton on Security

SEPTEMBER 27, 2024

Beware: Clown-grade SOCs Still Abound Detection Engineering is Painful — and It Shouldn’t Be (Part 1) [now a 10 post series, not yet finished…] Why is Threat Detection Hard? Revisiting the Visibility Triad for 2020” “ Beware: Clown-grade SOCs Still Abound ” “Why is Threat Detection Hard?” “A Use Cloud Securely?

Cloud Migration 130

Cloud Migration Threat Detection Digital transformation CISO 130

Security Boulevard

MARCH 24, 2022

So, in recent weeks, I had a few simultaneous conversations with various people that focused on the quality of threat detection. Here I’m talking about the quality of the entire detection capability of an organization. A macro-level detection quality, if you would. In the old days (eh … 2010?)

Threat Detection 52

Threat Detection Data collection 52

Anton on Security

AUGUST 9, 2023

“New Paper: “Future of the SOC: SOC People — Skills, Not Tiers” ” “Revisiting the Visibility Triad for 2020” “A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” “Why is Threat Detection Hard?” Why Is Threat Detection Hard?” What Does This Even Mean?!” “How

Threat Detection 130

Threat Detection Cloud Migration Encryption CISO 130

Security Boulevard

JUNE 21, 2021

Can We Have “Detection as Code”?”. Why Is Threat Detection Hard?”. Security operations / detection & response: “Security Correlation Then and Now: A Sad Truth About SIEM”. “Can Can We Have “Detection as Code”?”. Why is Threat Detection Hard?”. “A Episode 12 “Threat Models and Cloud Security”.

Cloud Migration 105

Cloud Migration Threat Detection Encryption Government 105

Anton on Security

FEBRUARY 10, 2023

Why Is Threat Detection Hard?” Changes in 2022 and Beyond in Cloud Security” EP75 How We Scale Detection and Response at Google: Automation, Metrics, Toil Zero Trust: Fast Forward from 2010 to 2021 Now, fun posts by topic. Who Does What In Cloud Threat Detection?” “A What Does This Even Mean?!” “Who

Threat Detection 100

Threat Detection Cloud Migration Encryption CISO 100

Anton on Security

MAY 25, 2022

Why Is Threat Detection Hard?” “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next” Top 5 Cloud Security Podcast by Google episodes: Episode 1“Confidentially Speaking” Episode 2 “Data Security in the Cloud” Episode 47 “Megatrends, Macro-changes, Microservices, Oh My! “A

Threat Detection 100

Threat Detection Cloud Migration Encryption Engineering 100

Anton on Security

JUNE 21, 2021

Skills, Not Tiers” Top 5 posts with the most Medium fans : “Security Correlation Then and Now: A Sad Truth About SIEM” “Beware: Clown-grade SOCs Still Abound” “Can We Have “Detection as Code”?” “Why Why Is Threat Detection Hard?” “New New Paper: “Future of the SOC: SOC People?—?Skills, Skills, Not Tiers” Now, posts by topic.

Cloud Migration 100

Cloud Migration Threat Detection Encryption Government 100

Security Boulevard

MARCH 3, 2022

“Can We Have “Detection as Code”?”. Why Is Threat Detection Hard?”. “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”. Episode 8 “Zero Trust: Fast Forward from 2010 to 2021”. Episode 27 “The Mysteries of Detection Engineering: Revealed!”. Left of SIEM?

Threat Detection 98

Threat Detection Cloud Migration Encryption Engineering 98

Security Boulevard

APRIL 7, 2022

Zero Trust: Fast Forward from 2010 to 2021“. The Mysteries of Detection Engineering: Revealed! “. Modern Threat Detection at Google“. Threat detection (top 5). The Mysteries of Detection Engineering: Revealed! “. Modern Threat Detection at Google“. Top 5 overall. Zero trust.

Cloud Migration 52

Cloud Migration Threat Detection CISO Engineering 52

Security Boulevard

SEPTEMBER 26, 2024

Beware: Clown-grade SOCs Still Abound Detection Engineering is Painful — and It Shouldn’t Be (Part 1) Why is Threat Detection Hard? Revisiting the Visibility Triad for 2020” “ Beware: Clown-grade SOCs Still Abound ” “Why is Threat Detection Hard?” “A Does the World Need Cloud Detection and Response (CDR)?” “Use

Cloud Migration 59

Cloud Migration Threat Detection CISO Digital transformation 59

SecureWorld News

JUNE 7, 2024

The evolving landscape of cyber warfare Historical precedents, such as the Stuxnet worm , which targeted and sabotaged Iran's nuclear enrichment facilities in 2010, highlight the devastating potential of cyberattacks on national security.

Technology 118

Technology Education Artificial Intelligence Identity Theft 118

Security Boulevard

AUGUST 19, 2022

Role of Context in Threat Detection”. Can We Have “Detection as Code”?”. Why Is Threat Detection Hard?”. “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”. Episode 8 “Zero Trust: Fast Forward from 2010 to 2021”. Random fun new posts: “Detection as Code?

Threat Detection 52

Threat Detection Cloud Migration Encryption CISO 52

Anton on Security

MAY 5, 2023

Ultimately, this is where detection and response money is. A few booths actually had “TDIR” on them which stands for Threat Detection, Investigation and Response. Finally, the agent debate is still on, perhaps not surprisingly (for deeper runtime detection and response, especially in VMs, what else can you do?).

Artificial Intelligence 130

Artificial Intelligence Threat Detection Marketing Cybersecurity 130

eSecurity Planet

MARCH 21, 2025

CrowdStrike consistently earns top rankings in MITRE ATT&CK and MSSP evaluations, validating its effectiveness in real-world threat detection. KnowBe4 Best for security awareness training Headquarters: Clearwater, Florida Founded: 2010 Annual Revenue: $0.2 Visit CrowdStrike 6. Visit Tenable 9.

Cybersecurity 71

Cybersecurity Firewall Marketing Encryption 71

Security Boulevard

SEPTEMBER 16, 2021

“Can We Have “Detection as Code”?”. Why Is Threat Detection Hard?”. “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”. Episode 17 “Modern Threat Detection at Google”. Episode 8 “Zero Trust: Fast Forward from 2010 to 2021”. Can We Have “Detection as Code”?”.

Threat Detection 52

Threat Detection Cloud Migration Encryption Engineering 52

Security Boulevard

FEBRUARY 10, 2023

Why Is Threat Detection Hard?” Changes in 2022 and Beyond in Cloud Security” EP75 How We Scale Detection and Response at Google: Automation, Metrics, Toil Zero Trust: Fast Forward from 2010 to 2021 Now, fun posts by topic. Who Does What In Cloud Threat Detection?” “A What Does This Even Mean?!” “Who

Threat Detection 52

Threat Detection Cloud Migration Encryption CISO 52

Security Boulevard

DECEMBER 20, 2021

“Can We Have “Detection as Code”?”. Why Is Threat Detection Hard?”. “A A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”. Episode 17 “Modern Threat Detection at Google”. Episode 8 “Zero Trust: Fast Forward from 2010 to 2021”. Can We Have “Detection as Code”?”.

Threat Detection 52

Threat Detection Cloud Migration Encryption Engineering 52

eSecurity Planet

JANUARY 26, 2022

Founded in 2010 by veteran SaaS and DevOps industry leaders, Datadog specializes in optimizing the service-oriented architecture, helping organizations monitor user journeys and explore service relationships. In 2022, the Arizona-based vendor specializes in network performance monitoring and threat analysis with its Observer platform.

Marketing 122

Marketing DDOS Threat Detection DNS 122

eSecurity Planet

AUGUST 15, 2022

Exabeam Fusion is the company’s threat detection, investigation, and response (TDIR) solution bringing together automated , next-generation SIEM and XDR capabilities. Beyond centralized log management, Exabeam Fusion includes a stack of security features to aid in an era of advanced threats. Exabeam Fusion.

Software 116

Software Small Business Marketing Firewall 116

eSecurity Planet

JUNE 17, 2021

Other features include auditing, activity monitoring, threat detection, and more. Through acquisitions in the 2000s, SAP launched their database platform, HANA, in 2010. Started in 1995, Trustwave prides itself on their advanced threat detection and managed security service (MSSP) product offerings.

Firewall 122

Firewall Encryption Computers and Electronics Software 122

Security Boulevard

MAY 5, 2023

Ultimately, this is where detection and response money is. A few booths actually had “TDIR” on them which stands for Threat Detection, Investigation and Response. Finally, the agent debate is still on, perhaps not surprisingly (for deeper runtime detection and response, especially in VMs, what else can you do?).

Artificial Intelligence 78

Artificial Intelligence Threat Detection Marketing Cybersecurity 78

eSecurity Planet

AUGUST 4, 2023

Gartner played a big role in the development of cloud security terminology, coining the term “Cloud Workload Protection Platform” in 2010 to describe a tool used for safeguarding virtual machines and containers. The performance of cloud workloads may be impacted by monitoring and real-time threat detection.

Architecture 98

Architecture Risk Data breaches Threat Detection 98

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Beyond Identity Identity management 2020 Private Expel Managed security service 2016 Private Tigera Zero trust for K8s 2016 Private Intrinsic Application security 2016 Acquired: VMware HackerOne Penetration testing 2015 Private Virtru Data encryption 2014 Private Cloudflare Cloud infrastructure 2010 NYSE: NET.

Cybersecurity 130

Cybersecurity Technology Marketing Healthcare 130

eSecurity Planet

AUGUST 13, 2021

Cybersecurity product categories: Next-generation firewall , UEBA, cloud security, endpoint protection, threat detection and prevention , application framework. Founded: 2010. Cybersecurity product categories: AI, threat detection, incident response, IDPS. Headquarters: Santa Clara, California. Founded: 2005.

Cybersecurity 145

Cybersecurity Firewall Marketing Encryption 145

SC Magazine

MAY 1, 2021

He retired as a colonel in 2010. He has 15 years of cybersecurity technical product and program management experience delivering cyber solutions and developing thought leadership across multiple verticals, with a focus on threat detection, threat exposure management, response/remediation and protection.

Computers and Electronics 126

Computers and Electronics Technology Information Security Education 126

eSecurity Planet

SEPTEMBER 1, 2023

As cloud computing upends traditional perimeter models of cybersecurity, new cloud security models have emerged, and CWPP was one of the first to appear back in 2010. Real-time threat detection, workload visibility, and adaptive security policies are further features of Illumio Core.

Encryption 95

Encryption Malware Data breaches DDOS 95

Anton on Security

DECEMBER 10, 2024

Detection Engineering is Painfuland It Shouldnt Be (Part1) Revisiting the Visibility Triad for 2020 (update for 2024 is coming soonBTW!) Beware: Clown-grade SOCs StillAbound Why is Threat Detection Hard? A SOC Tried To Detect Threats in the Cloud You Wont Believe What HappenedNext Top 10 SIEM Log Sources in Real Life?

Cloud Migration 130

Cloud Migration Threat Detection CISO Digital transformation 130

Anton on Security

DECEMBER 3, 2024

for making Tim’s head spin to keep up with him Finally, here are the top 7 episodes of all time by listens, excluding the oldest three: EP75 How We Scale Detection and Response at Google: Automation, Metrics, Toil EP8 Zero Trust: Fast Forward from 2010 to 2021 EP47 “Megatrends, Macro-changes, Microservices, Oh My!

Cloud Migration 130

Cloud Migration Threat Detection 130

Security Boulevard

APRIL 8, 2022

According to Richard Bejtlich’s paper on the topic , ‘the United States Air Force coined the phrase ‘advanced persistent threat’ in 2006 because teams working within the service needed a way to communicate with counterparts in the unclassified public world.’ From then on, APT became a heavily used, marketable term.

Social Engineering 72

Social Engineering Backups Malware Ransomware 72