Dr. Anton ChuvakinVerified account

@anton_chuvakin

Information security - , , ... formerly VPDA at Gartner! Now doing security product strategy - host now!

San Jose, CA
chuvakin.org
Joined January 2008
223 Photos and videos Photos and videos

Tweets

You blocked @anton_chuvakin

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @anton_chuvakin

  1. Pinned Tweet
    22 Sep 2021

    Cloud Security Podcast by Google Website: Google Podcasts: Apple Podcasts / iTunes: Spotify: Twitter:

    6 retweets 29 likes
    Undo
  2. Retweeted
    Apr 8

    Google Cloud Security Summit, happening May 17, has practitioners covered with a slew of sessions devoted to the SOC. Reserve your virtual front-row seat and walk away with knowledge that will be immediately applicable at your job:

    2 retweets 17 likes
    Undo
  3. Retweeted
    Apr 8

    Passwordless Login - When you can never remember your password, so you just use the reset password feature every time you need to log in.

    64 replies 332 retweets 2,241 likes
    Undo
  4. Apr 8

    "Cloud Security Podcast by Google — Popular Episodes by Topic" <- categorized episodes from our

    Undo
  5. Retweeted
    Apr 7

    If you want a mini-catalog of our popular episodes by topic, here it is:

    2 retweets 4 likes
    Undo
  6. Retweeted
    Apr 7
    Replying to

    Another paper to help :

    2 retweets 3 likes
    Undo
  7. Retweeted
    Apr 7
    Replying to

    That was my thinking a while ago. I like the synthesis with Resilience Engineering that Mario has been doing more recently:

    Replying to @anton_chuvakin
    I like to look at Resilience Engineering definitions, not without its challenges 🙂
    2 retweets 4 likes
    Undo
  8. Retweeted
    Apr 7

    🧵 1/ Two days ago I shared this image to demonstrate how many unique paths exist for a single behavior. At the time I didn't know how to use it, but today I realized it shows why red teams, MITRE evals, & vendor tests can't answer Technique coverage questions without change.

    14 replies 236 retweets 648 likes
    Show this thread
    Show this thread
    Undo
  9. Retweeted
    Apr 7

    Today we announced our strategic partnership with , which brings the power of CrowdStrike’s Falcon platform to Mandiant’s industry-leading services helping to protect customers from . Learn more. ⬇️

    7 replies 66 retweets 193 likes
    Undo
  10. Retweeted
    Apr 7
    Replying to and

    I’m going to make a Nike style T shirt with ‘just zero trust’ ;) Indeed if it’s easy you aren’t doing it right… in terms of change/improvement (probably subject to context) 🦾

    1 reply 3 retweets 4 likes
    Undo
  11. Apr 7

    For example, NIST goes for a very broad definition

    1 reply 2 retweets 4 likes
    Show this thread
    Show this thread
    Undo
  12. Apr 7

    Or is resilience the same as survivability?

    7 replies 2 likes
    Show this thread
    Show this thread
    Undo
  13. Apr 7

    Is resilience only about recovery?

    2 replies 2 likes
    Show this thread
    Show this thread
    Undo
  14. Apr 7

    What is the useful definition of *resilience* (in our domain)?

    27 replies 3 retweets 13 likes
    Show this thread
    Show this thread
    Undo
  15. Retweeted
    Apr 6

    Was told today at work that I had reached peak surfer poseur. Success or failure?

    14 replies 2 retweets 52 likes
    Undo
  16. Retweeted
    Apr 6

    Today I learned that there are "Security Consultants" that sell Azure cloud security reviews for ISO, PCI etc, where it turns out all they do is export the Azure Policy Security Benchmark findings to pdf and say "Here, that's $15,000 please." The amount of charlatans is amazing.

    104 replies 238 retweets 1,844 likes
    Undo
  17. Retweeted
    Apr 6

    Dr. Anton has to go and ruin my entire evening. I'm sitting here trying hard to conceive something to make myself feel better. It isn't working, and I don't know what I do anymore.

    Can anybody share a sane definition for DATA SECURITY?
    Show this thread
    1 reply 2 retweets 3 likes
    Undo
  18. Apr 6

    BTW, somebody suggested "data security = data discovery + data governance framework + [data-aware] access controls" Do you like it? Y/N

    6 replies 4 likes
    Show this thread
    Show this thread
    Undo
  19. Retweeted
    Apr 6

    I pay about the same tax rate in California as I did in the UK, but instead of healthcare I get the opportunity to pay an insurance company $300/month for an NFT of some healthcare.

    56 replies 239 retweets 2,298 likes
    Undo
  20. Retweeted
    Apr 4

    Check out the latest podcast from CISO Tradecraft on

    5 retweets 4 likes
    Undo
  21. Retweeted
    Apr 6

    The latest Wave on EDR from which plays a vital role in the other two "_DRs" M and X! Check out the blog here! Announcing the Forrester EDR Wave™: Advanced Features are Left Behind in the Rush to XDR via

    1 reply 4 retweets 13 likes
    Undo

@anton_chuvakin hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·