Cloud Security Podcast by Google
Cloud Security Podcast by Google focuses on security in the cloud, delivering security from the cloud, and all things at the intersection of security and cloud. Of course, we will also cover what we are doing in Google Cloud to help keep our users' data safe and workloads secure. We're going to do our best to avoid security theater, and cut to the heart of real security questions and issues. Expect us to question threat models and ask if something is done for the data subject's benefit or just for organizational benefit. We hope you'll join us if you're interested in where technology overlaps with process and bumps up against organizational design. We're hoping to attract listeners who are happy to hear conventional wisdom questioned, and who are curious about what lessons we can and can't keep as the world moves from on-premises computing to cloud computing.
Episodes
Guest:
- Elie Burstein, Distinguished Scientist, Google Deepmind
Topics:
- What is Sec-Gemini, why are we building it?
- How does DeepMind decide when to create something like Sec-Gemini?
- What motivates a decision to focus on something like this vs anything else we might b...
Guest:
- Royal Hansen, VP of Engineering at Google, former CISO of Alphabet
Topics:
- The "God-Like Designer" Fallacy: You've argued that we need to move away from the "God-like designer" model of security—where we pre-calculate every risk like building a bridge—and towards a biological model. Can you explain why that old engin...
Guest:
- Chris Sistrunk, Technical Leader, OT Consulting, Mandiant
Topics:
- When we hear "attacks on Operational Technology (OT)" some think of Stuxnet targeting PLCs or even backdoored pipeline control software plot in the 1980s. Is this space always so spectacular or are there less "kaboom" style attacks we are more concerned about in practice?
Guest:
Topics:
- Do you believe that AI is going to end up being a net improvement for defenders or attackers? Is short term vs long term different?
- We're excited about the new book you have coming out with your co-author Nathan Sanders "Rewiring Democracy". We want to ask th...
Guest:
- Heather Adkins, VP of Security Engineering, Google
Topic:
- The term "AI Hacking Singularity" sounds like pure sci-fi, yet you and some other very credible folks are using it to describe an imminent threat. How much of this is hyperbole to shock the complacent, and how much is based on actual, observed capabilities to...
Guest:
- Caleb Hoch, Consulting Manager on Security Transformation Team, Mandiant, Google Cloud
Topics:
- How has vulnerability management (VM) evolved beyond basic scanning and reporting, and what are the biggest gaps between modern practices and what organizations are actually doing?
- Why are so many organizations stuck with 1990s VM practices?
- Why mitigation ...
Guests:
- Sivanesh Ashok, bug bounty hunter
- Sreeram KL, bug bounty hunter
Topics:
- We hear from the Cloud VRP team that you write excellent bugbounty reports - is there any advice you'd give to other researchers when they write reports?
- You are one of Cloud VRP's top resea...
Guests:
- Alexander Pabst, Deputy Group CISO, Allianz
- Lars Koenig, Global Head of D&R, Allianz
Topics:
- Moving from traditional SIEM to an agentic SOC model, especially in a heavily regulated insurer, is a massive undertaking. What did the collaboration model with your vendor look like?
Guest:
- Ari Herbert-Voss, CEO at RunSybil
Topics:
- The market already has Breach and Attack Simulation (BAS), for testing known TTPs. You're calling this 'AI-powered' red teaming. Is this just a fancy LLM stringing together known attacks, or is there a genuine agent here that can discover a truly novel attack path that a huma...
Guest:
- Balazs Scheidler, CEO at Axoflow, original founder of syslog-ng
Topics:
- Are we really coming to "access to security data" and away from "centralizing the data"?
- How to detect without the same storage for all logs?
- Is data pipeline a part of SIEM or ...
Guest:
- Monzy Merza, co-founder and CEO at Crogl
Topics:
- We often hear about the aspirational idea of an "IronMan suit" for the SOC—a system that empowers analysts to be faster and more effective. What does this ideal future of security operations look like from your perspective, and what are the primary obstacles preventing SOCs from ac...
Guest:
- Jibran Ilyas, Director for Incident Response at Google Cloud
Topics:
- What is this tabletop thing, please tell us about running a good security incident tabletop?
- Why are tabletops for incident response preparedness so amazingly effective yet rarely done well?
- Read more
Guest:
- David Gee, Board Risk Advisor, Non-Executive Director & Author, former CISO
Topics:
- Drawing from the "Aspiring CIO and CISO" book's focus on continuous improvement, how have you seen the necessary skills, knowledge, experience, and behaviors for a CISO evolve, especially when guiding an organization through a trans...
Guest:
- Sumedh Thakar, President and CEO, Qualys
Topics:
- How did vulnerability management (VM) change since Qualys was founded in 1999? What is different about VM today?
- Can we actually remediate vulnerabilities automatically at scale? Why did this work for you even though many expected it w...
Guest:
- Rick Caccia, CEO and Co-Founder, Witness AI
Topics:
- In what ways is the current wave of enterprise AI adoption different from previous technology shifts? If we say "but it is different this time", then why?
- What is your take on "consumer grade AI for business" vs enterprise AI?
Guest:
- Jon Oltsik, security researcher, ex-ESG analyst
Topics:
- You invented the concept of SOAPA – Security Operations & Analytics Platform Architecture. As we look towards SOAPA 2025, how do you see the ongoing debate between consolidating security around a single platform versus a more disaggregated, best-of-breed approa...
Guest:
- Cy Khormaee, CEO, AegisAI
- Ryan Luo, CTO, AegisAI
Topics:
- What is the state of email security in 2025?
- Why start an email security company now?
- Is it true that there are new and accelerating AI threats to email?
Guest:
-
Augusto Barros, Principal Product Manager, Prophet Security, ex-Gartner analyst
Topics:
- What is your definition of "AI SOC"?
- What will AI change in a SOC? What will the post-AI SOC look like?
- What are the primary mechan...
Guest:
- Rick Correa,Uber TL Google SecOps, Google Cloud
Topics:
- On the 3rd anniversary of Curated Detections, you've grown from 70 rules to over 4700. Can you walk us through that journey? What were some of the key inflec...
Guest:
- Errol Weiss, Chief Security Officer (CSO) at Health-ISAC
Topics:
- How adding digital resilience is crucial for enterprises? How to make the leaders shift from "just cybersecurity" to "digital resilience"?
- How to be the most resilient you can be given the resources? How to be the most...
Popular Podcasts
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations. Follow now to get the latest episodes of Dateline NBC completely free, or subscribe to Dateline Premium for ad-free listening and exclusive bonus content: DatelinePremium.com
I’m Jay Shetty host of On Purpose the worlds #1 Mental Health podcast and I’m so grateful you found us. I started this podcast 5 years ago to invite you into conversations and workshops that are designed to help make you happier, healthier and more healed. I believe that when you (yes you) feel seen, heard and understood you’re able to deal with relationship struggles, work challenges and life’s ups and downs with more ease and grace. I interview experts, celebrities, thought leaders and athletes so that we can grow our mindset, build better habits and uncover a side of them we’ve never seen before. New episodes every Monday and Friday. Your support means the world to me and I don’t take it for granted — click the follow button and leave a review to help us spread the love with On Purpose. I can’t wait for you to listen to your first or 500th episode!
The World's Most Dangerous Morning Show, The Breakfast Club, With DJ Envy, Jess Hilarious, And Charlamagne Tha God!
"SmartLess" with Jason Bateman, Sean Hayes, & Will Arnett is a podcast that connects and unites people from all walks of life to learn about shared experiences through thoughtful dialogue and organic hilarity. A nice surprise: in each episode of SmartLess, one of the hosts reveals his mystery guest to the other two. What ensues is a genuinely improvised and authentic conversation filled with laughter and newfound knowledge to feed the SmartLess mind. Subscribe to SiriusXM Podcasts+ to listen to new episodes of SmartLess ad-free and a whole week early. Start a free trial now on Apple Podcasts or by visiting siriusxm.com/podcastsplus.