Community Blog

Welcome to the Google Cloud Security Community blog. We bring you expert perspectives from Googlers and seasoned users, offering the insights you need to effectively utilize and optimize your security tools.

New To Google SecOps: Fade to Grey: Managing Table TTL and Row Expiration

We’ve previously discussed a number of capabilities that data tables provide Google Security Operations (SecOps) including handling large data sets, w...

Forum|Forum|8 hours ago

150

Model Complexity and GxP: Risk based validated path to Healthcare and Lifesciences Innovation

Authors: Bhavana Bhinder, Security, Privacy and Compliance Advisor, Office of the CISORK Neelakandan, Software Quality and Solutions Lead • Engineerin...

Forum|Forum|9 days ago

1640

How Google Cloud Fraud Defense Leverages AI/ML to Protect The Internet

Author: Amitabha Roy, Software Engineer • Engineering - SCC Suite Google Cloud Fraud Defense (formerly reCAPTCHA) has evolved significantly to enter...

Forum|Forum|12 days ago

2030

Blog Articles

Recent Posts

jstonerCommunity Manager

Community Blog

New To Google SecOps: Fade to Grey: Managing Table TTL and Row Expiration

We’ve previously discussed a number of capabilities that data tables provide Google Security Operations (SecOps) including handling large data sets, writing to data tables from rules and searches as well as extending the entity graph for more advance

150

8 hours ago

DigalStaff

Community Blog

The Coming Flood: How to Detect and Alert on Log Ingestion Spikes using Google Security Operations

Co-Author: Omri ShamirA sudden flood of logs isn't just noise, it's a warning. It could be the first sign of a brute-force attack, a misconfigured application spewing errors, or a system about to fail. The challenge is spotting this surge before it b

10243

3 days ago

utsBronze 1

Community Blog

Data Processing Pipeline for Google SecOps: Filtering Events

We recently launched data processing pipelines (in Public Preview) for Google Security Operations, which provides security teams with pre-parsing control for their log ingestion. This new capability gives you granular control over your logs before th

18294

4 days ago

mhmStaff

Community Blog

Building Towards an Agentic SOC: Introducing SecOps Labs

The Agentic SOC isn't a distant goal; it's a journey we are already embarking on with our customers. Building the future of security is a collaborative effort, one that requires a deep partnership with the defenders on the front lines. Our vision for

49135

7 days ago

jstonerCommunity Manager

Community Blog

New to Google SecOps: Matching with Regular Expression Functions

This is the fifth post from Google Cloud Principal Security Strategist John Stoner as part of his deep-dive "New to Google SecOps" series, which helps propel security teams either new to SIEM or replacing their SIEM with Google SecOps. I’ve been hold

17651

7 days ago

bhavanaStaff

Community Blog

Model Complexity and GxP: Risk based validated path to Healthcare and Lifesciences Innovation

Authors: Bhavana Bhinder, Security, Privacy and Compliance Advisor, Office of the CISORK Neelakandan, Software Quality and Solutions Lead • Engineering - HealthOdun Fadahunsi, Senior Security, Risk and Compliance Advisor, Office of the CISO In the r

1640

9 days ago

amroyStaff

Community Blog

How Google Cloud Fraud Defense Leverages AI/ML to Protect The Internet

Author: Amitabha Roy, Software Engineer • Engineering - SCC Suite Google Cloud Fraud Defense (formerly reCAPTCHA) has evolved significantly to enter the AI era. In addition to supporting agents as first class users in the browser we have extensively

2030

12 days ago

EovedBronze 3

Community Blog

Beyond Chat: Building an Autonomous SOC Analyst with Claude and the Google MCP

This blog post was written by guest author, Eliraz Oved. If you spend your days in the trenches of a Security Operations Center, you already know the struggle: pivoting between screens, writing complex queries, and manually clicking through menus to

27685

12 days ago

jstonerCommunity Manager

Community Blog

New to Google SecOps: In Between Days - Spotting the Outlier

A few months ago we discussed calculating Z-scores and median absolute deviations within a multi-stage search. These are some hearty examples that I would encourage you to review as they are good strategies to employ for conducting outlier analysis.

2870

12 days ago

dnehodaStaff

Community Blog

The Universal Phishing Containment Architecture: SecOps & SOAR

Author: David Nehoda, Technical Solutions Consultant What We're SolvingPhishing has historically been an initial access vector for ransomware, business email compromise, and credential theft. Despite billions spent on email gateways and security awar

9203