Recent Posts
Podcast•Feb 23, 2026•29 min
EP264 Measuring Your (Agentic) SOC: Two Security Leaders Walk Into a Podcast
In this episode, Tim Peacock and Anton Chuvakian host Alex Pabst, Deputy CISO at Allianz, and Mike Sinnoh, Director of Detection & Response at Google, to discuss evolving SOC metrics in the age of AI and automation. They critique traditional time‑based metrics like MTTD and MTTR, arguing they can incentivize speed over quality, and propose a layered approach that includes technical, operational, and strategic metrics, as well as quality‑focused measures. The conversation explores how AI‑driven agents are reshaping the SOC maturity model, shifting goalposts from reactive detection to proactive, real‑time intervention, and how organizations can balance automation benefits with human oversight. Key takeaways include the need for evolving metrics, measuring automation impact (e.g., ticket de‑duplication rates), and recognizing constraints such as staffing and regulatory limits.
By Cloud Security Podcast
Podcast•Feb 16, 2026•29 min
EP263 SOC Refurbishing: Why New Tools Won’t Fix Broken Processes (Even With AI)
In this episode, Daniel Lyman, VP of Threat Detection and Response at Fiserv, discusses why simply adding new security tools— even AI‑driven ones—cannot repair broken SOC processes. He explains the concept of "process gravity," showing how entrenched workflows and cultural...
By Cloud Security Podcast
Podcast•Feb 9, 2026•29 min
EP262 Freedom, Responsibility, and the Federated Guardrails: A New Model for Modern Security
In this episode, Global CISO Alex Shulman‑Peleg argues that the traditional, centralized security model is obsolete in the cloud‑native and AI‑driven era, advocating for a federated "freedom and responsibility" approach where engineers own security outcomes. He likens security to code...
By Cloud Security Podcast
Podcast•Feb 2, 2026•29 min
EP261 No More Aspiration: Scaling a Modern SOC with Real AI Agents
In this episode, Dennis Chow, Director of Detection Engineering at UKG, discusses the shift from static LLM chatbots to autonomous AI agents within a modern SOC, outlining a three‑tier model that treats agents as application‑level logic requiring robust identity, authorization,...
By Cloud Security Podcast
Podcast•Jan 19, 2026•29 min
EP259 Why Google Built a Security LLM and How It Beats the Generalists
In EP259, Distinguished Scientist Elie Burstein from Google DeepMind explains why Google built a security‑focused large language model (SecLLM) and how it outperforms generic LLMs for threat detection, code review, and incident response. He details the model’s specialized training data,...
By Cloud Security Podcast
Podcast•Jan 5, 2026•29 min
EP257 Beyond the 'Kaboom': What Actually Breaks When OT Meets the Cloud?
In this episode, Chris Sistrunk explains that the biggest OT risks now stem from routine IT‑style attacks—often “living‑off‑the‑land” exploits on engineering workstations—rather than dramatic malware like Stuxnet, as organizations connect industrial systems to the cloud for telemetry and AI. He...
By Cloud Security Podcast