Aggregator

You must login to view this content

How Do Non-Human Identities (NHIs) Enhance Data Integrity? Can NHIs play a pivotal role in enhancing data integrity? Where organizations increasingly migrate to cloud environments, the necessity for robust cybersecurity measures becomes paramount. Non-Human Identities, or NHIs, offer a promising solution. But what exactly are NHIs, and how do they contribute to safeguarding our data […]

The post Ensuring Data Integrity: Can NHIs Be the Key? appeared first on Entro.

The post Ensuring Data Integrity: Can NHIs Be the Key? appeared first on Security Boulevard.

How Can Organizations Seamlessly Enhance IAM with NHIs? An important consideration is how organizations can enhance Identity and Access Management (IAM) with Non-Human Identities (NHIs). With businesses accelerate their move to cloud environments, managing NHIs effectively becomes crucial for protecting digital assets and ensuring seamless operations. It is vital to develop a strategic approach to […]

The post Feel Supported: Enhancing IAM with NHIs appeared first on Entro.

The post Feel Supported: Enhancing IAM with NHIs appeared first on Security Boulevard.

How Secure Are Your Cloud-Based Systems With NHI Management? Where data breaches are becoming increasingly common, how secure are your organization’s machine identities? With the rise of Non-Human Identities (NHIs), ensuring airtight security for machine-based communications and transactions has become essential. NHIs, which essentially involve machine identities, are crucial in securing digital interactions, just as […]

The post Building an Impenetrable Cloud with NHI Strategies appeared first on Entro.

The post Building an Impenetrable Cloud with NHI Strategies appeared first on Security Boulevard.

Why Are Non-Human Identities the Key to Smart Secrets Management? Have you considered the role of Non-Human Identities (NHIs) in secrets management? Where digital ecosystems become increasingly complex, protecting these machine identities becomes paramount. NHIs, which comprise encrypted passwords, tokens, or keys—akin to a digital “passport”—play a critical role in risk reduction strategies across multiple […]

The post Smart Secrets Management for Effective Risk Reduction appeared first on Entro.

The post Smart Secrets Management for Effective Risk Reduction appeared first on Security Boulevard.

So this may suck, but I am hoping to at least earn some points for honesty here. I wanted to write something pithy and smart once I realized our Cloud Security Podcast by Google just aired our 250th episode (“EP250 The End of “Collect Everything”? Moving from Centralization to Data Access?”). Yet nothing sufficiently pithy came to my mind …

… so I went around and asked a whole bunch of AIs and agents and such. Then massaged and aggregated the outputs, then ran more AI on the result. And then lightly curated it. Then deleted the bottom 2 stupidest points they made.

So, here it comes … in all its sloppy glory!

1. The Foundational Roots and Unchanging Mission: Our show started with foundational cloud security topics — like Zero Trust, Data Security, and Cloud Migration Security which drew the initial large audiences. The core commitment since Episode 1 has been to question conventional wisdom, avoid “security theater” (EP248) and explore whether security measures truly benefit the user and the organization.
2. The AI Transformation: We had a sizable shift with the last 50 episodes, where AI became a central theme, or at least one of the themes we always come back to (and, yes, this covers our 3 pillars of securing AI, AI for security and countering the AI-armed attacker). The focus has moved past general hype to practical applications, securing AI systems, and asking challenging questions like “Data readiness for AI SOC” (EP249).
3. The Enduring Popularity of Detection & Response (D&R): We highlight that D&R and modernizing the SOC continue to be extremely popular with the audience (EP236 is epic). Trace the evolution of this topic from foundational engineering (like the very popular EP75 on scaling D&R at Google) to the architectural questions in EP250.
4. “How Google Does Security” Sells the Tickets: We love the episodes offering a candid look behind Google’s security curtain on topics like internal red teaming, detection scaling, and Cloud IR tabletops. They consistently remain perennial audience favorites (the latest in this series is EP238 on how we use AI agents for security).
5. The Centrality of People and Process: We emphasize the recurring lessons that the most challenging aspects of large-scale cloud (and now AI) security transformations are often the “people” and “process” elements, not the technical “tech” itself. EP237 is an epic example of this.
6. The Call for Intentionality: We reinforce the importance of having a clear purpose for every security activity and following an engineering-led approach (EP117). The “magical” advice from EP236 is: to ask of every security element, “what is it in service of?”
7. The Persistence of Old Problems: We often lament with a touch of humor on the industry’s tendency to repeat fundamental security mistakes (the SIEM Paradox in EP234 for instance or EP223 in general), underscoring the ongoing need to cover “boring” basics. We will absolutely continue this (a new episode on vulnerability management “stale” problems is coming soon)
8. Community and Format Growth: We continue to “sorta-kinda” (human wrote this, eh?) the development of the podcast beyond a purely audio medium, including the launch of live video sessions and a Community site to foster more dialogue and feedback.
9. The Unique Culture and Authenticity of the Show Stays: We remain obsessed about selecting high-energy, vocal, and knowledgeable guests and fun topics. We will keep on with our “inside jokes” like not allowing guests to recommend Anton’s blog as an episode resource and pokes about firewall appliances in the cloud (they are there).
10. A Glimpse at 300: We want to tease future topics that will define the next 50+ episodes, such as deeper dives into Agentic AI, challenges of cross-cloud incident response and forensics, or the geopolitical aspects of cloud security. Give us ideas, will ya? Otherwise, you will get to hear about AI and D&R much of the time…

Top 5 popular episodes (excluding the oldest 3)

1. EP75 How We Scale Detection and Response at Google: Automation, Metrics, Toil
2. EP153 Kevin Mandia on Cloud Breaches: New Threat Actors, Old Mistakes, and Lessons for All
3. EP47 Megatrends, Macro-changes, Microservices, Oh My! Changes in 2022 and Beyond in Cloud Security
4. EP8 Zero Trust: Fast Forward from 2010 to 2021
5. EP17 Modern Threat Detection at Google

Enjoy the show!

• Subscribe at Spotify
• Subscribe at Apple Podcasts
• Subscribe at YouTube

250 Episodes of Cloud Security Podcast by Google: From Confidential Computing to AI-Ready SOC was originally published in Anton on Security on Medium, where people are continuing the conversation by highlighting and responding to this story.

The post 250 Episodes of Cloud Security Podcast by Google: From Confidential Computing to AI-Ready SOC appeared first on Security Boulevard.