My Anton’s Security Blog (And Podcast!) Quarterly this covers both Anton on Security and my posts from Google Cloud blog, Google Cloud community blog, and our Cloud Security Podcast (subscribe on Spotify, now with VIDEO).
Top 10 posts with the most lifetime views (excluding paper announcement blogs):
- Anton’s Alert Fatigue: The Study [A.C. — wow, this is still #1 now! Awesome! Perhaps I need more of such deep studies]
- Security Correlation Then and Now: A Sad Truth About SIEM
- Can We Have “Detection as Code”?
- Detection Engineering is Painful — and It Shouldn’t Be (Part 1)
- Revisiting the Visibility Triad for 2020 (update for 2025 is here!)
- Beware: Clown-grade SOCs Still Abound
- Why is Threat Detection Hard?
- Top 10 SIEM Log Sources in Real Life?
- A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next
- SOC Visibility Triad is Now A Quad — SOC Visibility Quad 2025
Top 5 posts with paper announcements:
- New Paper: “Future of the SOC: SOC People — Skills, Not Tiers” (paper 2 of the series)
- New Paper: “Future of the SOC: Evolution or Optimization — Choose Your Path” (Paper 4 of 4.5) (one more paper coming later in 2026 … we are in reviews now!)
- New Paper: “Future of the SOC: Forces shaping modern security operations”
- New Paper: “Future Of The SOC: Process Consistency and Creativity: a Delicate Balance” (Paper 3 of 4)
- New Paper: “Autonomic Security Operations — 10X Transformation of the Security Operations Center” (the classic 2021 ASO paper!)
3 random fun posts, must-read:
- Simple to Ask: Is Your SOC AI Ready? Not Simple to Answer!
- Shadow Agents: A New Era of Shadow AI Risk in the Enterprise
- Anton’s Vibe Coding Experience: A Reflection on Risk Decisions
Top 7 Cloud Security Podcast by Google episodes (excluding the oldest 3!):
- EP75 How We Scale Detection and Response at Google: Automation, Metrics, Toil (our best episode! officially!)
- EP150 Taming the AI Beast: Threat Modeling for Modern AI Systems with Gary McGraw
- EP47 “Megatrends, Macro-changes, Microservices, Oh My! Changes in 2022 and Beyond in Cloud Security”
- EP153 Kevin Mandia on Cloud Breaches: New Threat Actors, Old Mistakes, and Lessons for All
- EP109 How Google Does Vulnerability Management: The Not So Secret Secrets!
- EP17 Modern Threat Detection at Google
- EP156 Living Off the Land and Attacking Critical Infrastructure: Mandiant Incident Deep Dive
(also see our NEW 2025 reflections blog about the show)
Now, fun posts by topic.
Security operations / detection & response:
- “Security Correlation Then and Now: A Sad Truth About SIEM”
- “Migrate Off That Old SIEM Already!” (VIDEO, a 2026 update is coming soon!)
- “Measuring the SOC: What Counts and What Doesn’t in 2025?” (Google Cloud Blog)
- “Can We Have “Detection as Code”?”
- “Revisiting the Visibility Triad for 2020” and “SOC Visibility Triad is Now A Quad — SOC Visibility Quad 2025”
- “Beware: Clown-grade SOCs Still Abound”
- “Why is Threat Detection Hard?”
- “A SOC Tried To Detect Threats in the Cloud … You Won’t Believe What Happened Next”
- “Stop Trying to Take Humans Out of SOC … Except … Wait… Wait… Wait…”
- “Top 10 SIEM Log Sources in Real Life?” (NEWER VERSION)
- “Debating SIEM in 2023, Part 1”
- “Debating SIEM in 2023, Part 2”
- “Log Centralization: The End Is Nigh?”
- “Living with Multiple SIEMs”
- “Decoupled SIEM: Brilliant or Stupid?”
- “How to Make Threat Detection Better?”
- “SIEM Content, False Positives and Engineering (Or Not) Security”
- “Modern SecOps Masterclass: Now Available on Coursera”
(if you only read one, choose this one!)
Cloud security:
- “Secure cloud. Insecure use. (And what you can do about it)”
- “Using Cloud Securely — The Config Doom Question”
- “Who Does What In Cloud Threat Detection?”
- “How to Solve the Mystery of Cloud Defense in Depth?”
- “Does the World Need Cloud Detection and Response (CDR)?”
- “Use Cloud Securely? What Does This Even Mean?!”
- “How CISOs need to adapt their mental models for cloud security” [GCP blog]
- “Who Does What In Cloud Threat Detection?”
- “Cloud Migration Security Woes”
- “Move to Cloud: A Chance to Finally Transform Security?”
(if you only read one, choose this one!)
How Google Does Security (HGD):
- “How Google Does It: Making threat detection high-quality, scalable, and modern” (Google Cloud blog)
- “How Google Does It: How we secure our own cloud” (Google Cloud blog)
- “How Google Does It: Securing production services, servers, and workloads”
- “How Google Does It: Finding, tracking, and fixing vulnerabilities” (Google Cloud blog)
- “How Google Does It: Collecting and analyzing cloud forensics”
- “How Google Does It: Red teaming at scale” (Google Cloud blog)
- “How Google Does It: Security programs at global scale” (Google Cloud blog)
- “How Google Does It: Securing production services, servers, and workloads”
- “How Google Does It: Collecting and analyzing cloud forensics”
- “How Google Does It: Applying SRE to cybersecurity”
- “How Google Does It: Building an effective AI red team”
(if you only read one, choose this one! BTW, we also have a lot of fun HGD podcasts)
AI security:
- “Implementing Secure AI Framework Controls in Google Cloud”
- “Office of the CISO 2025 Year in Review: 3 Key AI Security & Governance Themes”
- “Shadow Agents: A New Era of Shadow AI Risk in the Enterprise”
- ”Our Security of AI Papers and Blogs Explained” (2024)
- “Securing AI Supply Chain: Like Software, Only Not” (Google Cloud blog)
- “Spotlighting ‘shadow AI’: How to protect against risky AI practices” (Google Cloud blog)
- “Shadow AI Strikes Back: Enterprise AI Absent Oversight in the Age of Gen AI”
- “Cloud CISO Perspectives: How Google secures AI Agents”
- “New Paper: “Securing AI: Similar or Different?“
- “The Prompt: What to think about when you’re thinking about securing AI” (Google Cloud blog)
- “Gen AI governance: 10 tips to level up your AI program” (Google Cloud blog)
- “AI Adoption: Learning from the Cloud’s Early Days” (Google Community blog)
- “How Google secures AI Agents” (Google Cloud blog)
- “Demystifying AI Security: New Paper on Real-World SAIF Applications”
- “To securely build AI on Google Cloud, follow these best practices” (Google Cloud blog)
- “Oops! 5 serious gen AI security mistakes to avoid” (Google Cloud blog)
- “3 new ways to use AI as your security sidekick” (Google Cloud blog)
- “Shadow Agents: A New Era of Shadow AI Risk in the Enterprise” (Google Cloud Community blog)
(if you only read one, choose this one!)
Fun presentations shared (nothing much new here ):
- SecureWorld 2025 Keynote Déjà Vu All Over Again: Learning from Cloud’s Early Misadventures to Secure AI (2025)
- Detection Engineering Maturity — Helping SIEMs Find Their Adulting Skills (2024)
- Future of SOC: More Security, Less Operations (2024)
- SOC Meets Cloud: What Breaks, What Changes, What to Do? (2023)
- Meet the Ghost of SecOps Future (2023)
- The Future of Log Centralization for SIEMs and DFIR — Is the End Nigh? (2023)
- 20 Years of SIEM (2022)
Enjoy!
Previous posts in this series:
- Anton’s Security Blog Quarterly Q4 2025
- Anton’s Security Blog Quarterly Q3 2025
- Anton’s Security Blog Quarterly Q2 2025
- Anton’s Security Blog Quarterly Q1 2025
- Anton’s Security Blog Quarterly Q4 2024
- Anton’s Security Blog Quarterly Q3 2024
- Anton’s Security Blog Quarterly Q2 2024
- Anton’s Security Blog Quarterly Q1 2024 Lite
- Anton’s Security Blog Quarterly Q3 2023
- Anton’s Security Blog Quarterly Q2 2023
- Anton’s Security Blog Quarterly Q1 2023
- Anton’s Security Blog Quarterly Q4 2022
- Anton’s Security Blog Quarterly Q3 2022
- Anton’s Security Blog Quarterly Q2 2022
- Anton’s Security Blog Quarterly Q1 2022
- Anton’s Security Blog Quarterly Q4 2021
- Anton’s Security Blog Quarterly Q3 2021
- Anton’s Security Blog Quarterly Q2 2021
- Anton’s Security Blog Quarterly Q1 2021
- Anton’s Security Blog Quarterly Q3.5 2020
Anton’s Security Blog Quarterly Q1 2026 was originally published in Anton on Security on Medium, where people are continuing the conversation by highlighting and responding to this story.
The post Anton’s Security Blog Quarterly Q1 2026 appeared first on Security Boulevard.
Anton Chuvakin
Source: Security Boulevard
Source Link: https://securityboulevard.com/2026/03/antons-security-blog-quarterly-q1-2026/