Cloud Security Podcast by Google

Anton Chuvakin

Cloud Security Podcast by Google focuses on security in the cloud, delivering security from the cloud, and all things at the intersection of security and cloud. Of course, we will also cover what we are doing in Google Cloud to help keep our users' data safe and workloads secure.

We’re going to do our best to avoid security theater, and cut to the heart of real security questions and issues. Expect us to question threat models and ask if something is done for the data subject’s benefit or just for organizational benefit.

We hope you’ll join us if you’re interested in where technology overlaps with process and bumps up against organizational design. We’re hoping to attract listeners who are happy to hear conventional wisdom questioned, and who are curious about what lessons we can and can’t keep as the world moves from on-premises computing to cloud computing.

Episodes

Mentioned books

Sep 22, 2025 • 28min

EP244 The Future of SOAPA: Jon Oltsik on Platform Consolidation vs. Best-of-Breed in the Age of Agentic AI

Jon Oltsik, a security researcher and former ESG analyst, invented the SOAPA concept, which he elaborates on during the discussion. He debates the merits of platform consolidation versus a best-of-breed approach, highlighting how organization size influences these strategies. The talk covers the impact of generative and agentic AI on the Security Operations Center, emphasizing real-world applications and integration challenges. Jon also shares practical insights on leveraging AI for alert triage and security fundamentals in modern threat defense.

Sep 15, 2025 • 29min

EP243 Email Security in the AI Age: An Epic 2025 Arms Race Begins

Cy Khormaee, CEO of Aegis AI, and Ryan Luo, CTO of Aegis AI, discuss the future of email security amid escalating AI threats. They reveal that by 2025, traditional defenses may falter against sophisticated cyber attacks. The conversation emphasizes the importance of adaptive models and the crucial role of good AI in combating bad AI. They share insights from their experiences at Google and stress the need for innovative strategies to counter personalized phishing tactics. Best practices for using large language models are also highlighted.

Sep 8, 2025 • 34min

EP242 The AI SOC: Is This The Automation We've Been Waiting For?

In this engaging discussion, Augusto Barros, a Principal Product Manager at Prophet Security and former Gartner analyst, delves into the transformative power of AI in Security Operations Centers (SOC). He defines AI SOC and explores how it can effectively reduce attacker dwell time while acknowledging challenges around signal fidelity. Barros discusses why previous automation attempts fell short and how to measure the success of AI integration. He also addresses common misconceptions about job loss and highlights the importance of transparency in evolving cybersecurity landscapes.

Sep 1, 2025 • 32min

EP241 From Black Box to Building Blocks: More Modern Detection Engineering Lessons from Google

Rick Correa, Uber TL for Google SecOps and expert in detection engineering, shares his journey of scaling curated detections from a mere 70 to over 4,700 rules. He discusses the pivotal lessons learned and the importance of user-friendly interfaces to alleviate customer friction. The conversation dives into the distinction between 'Detection-as-Code' and advanced software engineering practices, emphasizing the need for unit testing and performance reviews. Correa introduces the 'Goldilocks Zone' for detections and provides practical examples of building blocks for enhancing security against threats like VPN and Tor traffic.

Aug 25, 2025 • 29min

EP240 Cyber Resiliency for the Rest of Us: Making it Happen on a Real-World Budget

Errol Weiss, Chief Security Officer at Health-ISAC, dives deep into the world of cyber resilience in the healthcare sector. He stresses the importance of moving from a focus on 'just cybersecurity' to a broader emphasis on digital resilience. With practical tips, he shares how even under-resourced organizations can enhance their security without breaking the bank. Weiss highlights the need for basic hygiene in cybersecurity and advises on evaluating vendor security to prevent hacks. His insights shine a light on the path to stronger cyber defenses.

Aug 18, 2025 • 25min

EP239 Linux Security: The Detection and Response Disconnect and Where Is My Agentless EDR

Craig H. Rowland, Founder and CEO of Sandfly Security, discusses crucial Linux security insights relevant to diverse environments including cloud and hybrid setups. He addresses significant blind spots for security teams and the misconception that Linux is immune to malware threats. The conversation covers the dangers of SSH key management, operational hurdles in incident response, and the subtle abuse of legitimate Linux utilities in attacks. Rowland also explores the benefits and trade-offs of agentless vs. agent-based monitoring, enhancing security through AI and innovative strategies.

Aug 11, 2025 • 32min

EP238 Google Lessons for Using AI Agents for Securing Our Enterprise

Dominik Swierad, Senior Product Manager for D&R AI and Sec-Gemini, shares his insights on implementing AI agents within Google's security framework. He discusses strategies for building trust among security professionals and identifies key use cases for AI integration. Swierad emphasizes the importance of high-quality data and structured methodologies for evaluating AI performance. He also highlights the evolving roles of security engineers amidst rising automation and raises concerns about how threat actors might exploit similar technologies.

Aug 4, 2025 • 29min

EP237 Making Security Personal at the Speed and Scale of TikTok

Kim Albarella, TikTok's Global Head of Security, shares her expertise in user safety and compliance. She offers essential tips for online security, emphasizing two-step verification and password management. The conversation dives into navigating global compliance challenges, highlighting the balance between local regulations and a unified security approach. Kim also discusses innovative training methods, using TikTok videos to foster a strong internal security culture, making cybersecurity relatable and engaging in today’s digital landscape.

Jul 28, 2025 • 27min

EP236 Accelerated SIEM Journey: A SOC Leader's Playbook for Modernization and AI

Manija Poulatova, Director of Security Engineering and Operations at Lloyd's Banking Group, shares her insights on transforming Security Operations Centers. She reveals her accelerated SIEM migration journey and the challenges faced in balancing people, processes, and technology. The discussion touches on innovative composite alerting techniques and the 'funnel model' for detection. Manija also emphasizes the need for agile methodologies and offers advice for security leaders on successfully integrating AI into their teams. Her experience is a treasure trove for anyone in the cybersecurity field!

Jul 21, 2025 • 34min

EP235 The Autonomous Frontier: Governing AI Agents from Code to Courtroom

Anna Gressel, a Partner at Paul, Weiss and an expert in AI law, dives into the intricate legal landscape of agentic AI. She discusses the unique risks associated with autonomous decision-making in industries like healthcare and defense. The conversation addresses the need for evolving regulatory frameworks to grapple with liability and responsibility in AI systems. Gressel also highlights the importance of transparency and explainability in AI's decision-making processes, emphasizing how these legal considerations can guide safer AI deployment.

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!

App store banner

Play store banner