Skip to main content

I’m excited to announce the open sourced launch of secops-toolkit. 🚀

After months of work, I'm excited to share this new open-source repository designed to accelerate automation for Google SecOps.


What is secops-toolkit?

 

The secops-toolkit is an open-source repository that provides a comprehensive collection of Terraform blueprints, modules, and CICD pipelines designed for Google SecOps, providing modular and scalable automations for the wider customer and partner community.

The GitHub repository includes:

  • Terraform modules: for the automation of Google SecOps configurations, including Data RBAC, Rules, and Reference lists based on new resources from google provider.
  • Blueprints: developed using Terraform and Python scripts for automated bootstrap of Google SecOps, provisioning of new tenants in MSSP-like architecture and comprehensive end-to-end deployment of solutions for BindPlane, SecOps Forwarder as well as a sample Anonymization Pipeline in Google Cloud Platform. This project heavily relies on cloud-foundation-fabric, utilizing its modules and adopting the same philosophy.

  • 𝐒𝐚𝐦𝐩𝐥𝐞 𝐂𝐈𝐂𝐃 𝐩𝐢𝐩𝐞𝐥𝐢𝐧𝐞𝐬: For Detection, Parsers and Response "As Code," designed to manage content in SecOps in a version-controlled, automated, and structured way. Those pipelines leverage Terraform resources and/or Python scripts interacting with the SecOps API via the secops-wrapper SDK.

For further details regarding each blueprint and automation script, please consult the repository's README.md file.


Why secops-toolkit?

 

As part of PSO, we share best practices, code, and automations from our extensive field experience to accelerate the adoption of Google SecOps. The secops-toolkit provides foundational, adaptable frameworks that streamline deployment, resulting in expedited implementations, accelerated time-to-value, and a smoother transition for organizations and Partners integrating Google Security solutions.

Our goal is to create a central hub for Google SecOps automations where clients, partners, and security professionals can collaborate, share knowledge, and establish best practices.

 

A call to action for the Community

 

The launch of the secops-toolkit is just the beginning. We want this to be a living project that grows with the needs of the community. Here's how you can get involved:

🪲 Test: we encourage you to clone the repository and test the automations on your SecOps instance. Your feedback will be invaluable!

🧑‍💻 Contribute: This repository welcomes contributions to enhance its functionality with new use cases, address bugs, and improve documentation.

💬Share: Promote the repository and this article to those who may benefit from these solutions or wish to contribute. Share widely!

A big thank you to everyone who contributed and supported along the way. I can't wait to see what the community builds with it! Your involvement is key, so please share your feedback, ask questions, and help shape its future! 😃

@bruzz Really exciting! Thank you for putting this together for the Community and our users!

Reply


Terms & ConditionsCookie settings
Privacy Policy Terms of Service Gen AI Policy Community Guidelines Cookie Settings

© 2025 Google. All rights reserved.