Learn how our Sec-Gemini research initiative fuels the SecLM platform, delivering cutting-edge, production-safe AI to strengthen your security operations.
Today we look at applying risk scoring into detections and alerts and how these values can be aggregated based on common user values to generate a wider risk detection score for a user. Read on to lea...
Learn how Arctiq transformed its security operations by embracing Detection-as-Code with Google SecOps. Discover how they built a custom, automated pipeline to manage detection rules across multiple c...
You’ve built rules, we’ve built rules. Did you know that composite rules can be built using them together? Read on to learn how curated and custom detections can be leveraged for greater fidelity in G...
Learn how to leverage data tables to build robust, behavior-based detections in Google SecOps.
#AI agents, enabled with supercharged reasoning and execution capabilities, are changing how humans and machines interact. The potential is huge - enabling productivity, innovation, and insights. But,...
Match and outcome variables provide additional context for rules that can be used when building composite rules and detections in Google SecOps
A recent roundtable with Operational and Technology Risk Managers revealed that systems and platform misconfiguration risk is rated the highest (over 50%) among various cloud concerns. High-profile in...
Did you know meta labels and values can also be used to filter and focus composite rules and detections, in addition to context for rules? Read on to learn how!
In today's complex threat landscape, having the right tools is essential. What if you could 'Google' for malware? With Google Threat Intelligence, you practically can! Google Threat Intelligence is a ...
Learn how to automate your security operations workflow using runbooks for Google’s Security Model Context Protocol Servers.
How Google Cloud supports telecom security & compliance in India
Composite rules in Google SecOps unlock additional methods to build detection and hunting rules. In the first of a mini-series on composite rules, let’s tackle the fundamentals of a composite rule tha...
Discover how to write values directly from your YARA-L rules to data tables in Google SecOps to simplify the implementation of your detection and threat hunting use cases.
Malicious .desktop files are a real threat! Discover the latest payloads we found. Our new "Actionable threat hunting" series kicks off with practical tips using Google Threat Intelligence. Let's hunt...
Today we are building our first composite rule in Google SecOps using three lower severity rules that may not be items that need to be alerted on individually, but together should be investigated!
Highlighting the limitations and impact of binary "true positive" and "false positive" classifications in security alerts, and advocating for more nuanced annotations that include context and intent. ...
Learn about LUMMAC.V2 and the detection and threat hunting opportunities you can use within Google Security Operations.
Composite rules in Google SecOps unlock additional methods to build detection and hunting rules. In the first of a mini-series on composite rules, let’s tackle the fundamentals of a composite rule tha...
Introducing the Google SecOps SDK and CLI, your new toolkit for automating security workflows in Google Security Operations. Discover how to programmatically search logs, manage detections, ingest dat...
This blog post discusses the role of a CISO in today's manufacturing landscape, emphasizing that security must be integrated into all business and engineering processes. CISOs should evaluate the impa...
We are thrilled to announce the public preview announcement of Composite Detections in Google SecOps, empowering security teams with a new level of flexibility and sophistication in their threat detec...
Bring AI to your security tools with open-source Model Context Protocol (MCP) servers for SecOps, Google TI and Security Command Center. Learn how to seamlessly connect security tools to LLMs.
Mandiant Threat Defense evolves active threat detection and hunting within Google SecOps, combining AI and frontline intelligence for comprehensive security.
Want to convert that string to a numeric and do some math for your latest search, rule or dashboard? This blog explores how we can take strings and convert them to numeric floats in Google SecOps!
Beyond PQC prep: A CISO's must-read on building a strong crypto foundation through key inventory & management for business continuity. #Security #PQC #googlecloud
Learn how Google Cloud Security Foundation helps you address cloud adoption use cases with built-in platform security controls.
Learn how to create data tables in Google SecOps and leverage them in your detection logic for event filtering.
Detecting IngressNightmare CVE-2025-1974 using Security Command Center’s Container Threat Detection.