Google Cloud Security

When a major threat hits, your SOC team needs immediate answers to two critical questions: "Are we impacted?" and "Are we prepared?" In part two of our M-Trends 2026 virtual series, Mandiant (part of Google Cloud)'s Douglas Foss and Pascal Issa explore why today's threat landscape demands a fundamental shift in security operations. We are moving beyond the basics to look at how you can facilitate a true cyber defense transformation, avoiding common pitfalls and leveraging breakthrough strategies that define success. Join us on June 24, 2026, at 11AM EST, 8AM PST, to learn how to: • Evolve your cyber defense functions and empower security teams to move faster • Operationalize threat intelligence at scale • Proactively hunt and contextualize risk • Stay ahead of the emerging threats identified in this year's report 🗓️ Save your spot: https://goo.gle/4e0pHNh

AI-driven attacks require an autonomous response. Today at Security Talks 2026, hear from security experts on how organizations are moving from reactive reactive posture to a proactive, machine-speed defense. We'll be diving deep into Google AI Threat Defense, frontline dark web intelligence, and new Google SecOps AI agents. Join us here—the Americas session begins at 11:00 AM PDT: https://goo.gle/4dYFGLI

The remediation gap is growing as AI accelerates attacks. To outpace automated adversaries, you need an automated defense. Google Security Operations works in concert with Google AI Threat Defense to monitor, detect, and contain threats at machine speed. 🛡️ Security Operations is built on a three-step approach: • Continuous and autonomous coverage analysis and detection generation • Autonomous investigation, containment, and response • Retroactive threat hunting Together with AI Threat Defense, we’re able to provide the autonomous platform you need to stay ahead of AI-driven attacks. Jon R. Ramsey and Payal Chakravarty share the details: https://goo.gle/4xhRq3z

Real-world attacks don’t come with a playbook. Join the ThreatSpace Live Fire Series in Toronto, led by Ryan Hendricks, Principal Range Engineer at Google Cloud, for a hands-on workshop built around real attack scenarios. Rehearse and refine your incident response capabilities in a consequence-free environment and gain practical experience you can apply immediately. Register by June 22: https://goo.gle/4etGw3c

Heading to Identiverse in Vegas? 🎰 Escape the conference floor and join Transmit Security in partnership with Google Cloud for an exclusive executive dinner at Lago, overlooking the Bellagio Fountains. As traditional identity models evolve to encompass autonomous agents and shifting digital landscapes, this intimate dinner offers security and identity leaders the perfect setting to unwind, connect with peers, and discuss what it takes to secure every identity, every agent, and every moment. Request your invite ⬇️ https://goo.gle/4uql9EW

Are we on your 🗓️ for June 10? At Google Cloud Security Talks, we’ll dive into Google AI Threat Defense: an always-on, autonomous security architecture built to outpace AI-driven attacks. You’ll also learn how to anticipate malicious activity with frontline dark web intelligence and empower your SOC with new Google SecOps AI agents, moving from reactive to proactive, machine-speed defense. RSVP today: https://goo.gle/4fz4viv

🔍 Threat hunting isn't just about staring at logs until something looks suspicious. It is a structured, proactive discipline, and to do it well you need to learn from the people who do it every day. Our Practical Threat Hunting course—in-person at the Google Dublin Office from July 28–30, 2026—is a cutting-edge training experience built by frontline consultants and delivered by instructors with decades of professional expertise in tracking advanced threats. Learn how to: • Build a repeatable hunt methodology • Apply cyber threat intelligence to find adversary activity • Leverage endpoint data to establish true measures of effectiveness for your hunt program We are heavily focused on hands-on application. You will develop hypotheses and execute hunt missions against scenarios like nation-state actors, social engineering, and network compromise. If you are an incident responder, threat hunter, or security researcher ready to operationalize your skills and build a comprehensive Threat Hunt Library, this is exactly where you need to be: https://goo.gle/4vxx8Bj

How can you tell if a new behavior in your environment unexpected yet okay, or actually malicious? To answer that question, we explored how to apply Bayesian probability to Google SecOps to detect potentially hijacked Chrome extensions. Because Chrome extensions are incredibly chatty, running heavy detection rules continuously on every telemetry event can create significant computational overhead. The goal was to find a smarter way to surface anomalies without unnecessary cost or noise. The solution? A custom architecture that calculates a "Bayesian Surprise" score to flag improbable behavior before triggering deeper analysis. Want to see the math, the YARA-L rules, and the Python scripts behind it? Dive into the full architectural breakdown and source code on the Community blog: https://goo.gle/4uOJiWy

🤖 AI agents are changing the game, but they are also expanding the attack surface. Prompt injection and model tampering can now pivot from a simple chatbot interaction directly into your cloud infrastructure—and most organizations have zero visibility when it happens. If you are building or securing LLM applications, you need a playbook for this. On June 10, David Nehoda, technical solutions consultant, will walk you through the entire AI attack chain and show you how to build a detection framework you can deploy right away. ✍️ Save your spot and get the working rules you need to secure your cloud environment: https://goo.gle/4uiYaeA

AI is rapidly changing the threat landscape and defenses need to keep up. Join our Google Cloud Security Talks to learn how Google AI Threat Defense is designed to help you outpace AI-driven attacks, and how Google SecOps AI agents can help empower your SOC. Register today: https://goo.gle/43W927q