Detection at Scale | Jack Naglieri | Substack

Building Threat Models with MCP and AI Agents

A practitioner's guide to using AI agents and MCP to analyze your environment, map threats to attack paths, and identify detection coverage gaps

READ THE LATEST

Most Popular

MCP: Building Your SecOps AI Ecosystem

Apr 2, 2025 • Jack Naglieri

The Agentic SIEM

Jan 21, 2025 • Jack Naglieri

The Transition from Monolithic SIEMs to Data Lakes for Security Monitoring

Oct 23, 2023 • Jack Naglieri

The Anatomy of a High Quality SIEM Rule

Aug 26, 2024 • Jack Naglieri

Recent posts

D@S #72 - Trustpilot's Gary Hunter on Structuring Security Knowledge for AI Success

How to scale security operations by automating alert triage, treating AI agents like interns, and creating space for preventative work that actually…

Dec 30, 2025 • Jack Naglieri

37:43

2025 Wrapped: Essential Reading on AI in Security Operations

The posts that shaped the conversation on AI-first security operations, from vendor landscapes to implementation risks

Dec 22, 2025 • Jack Naglieri

D@S #71 - CoreWeave's Slava Klimovs on Threat-Model-Driven Security and the AI-First Future

Bootstrapping security at hyperscale, the AIUC-1 standard for agents, and the shift to AI-first detection engineering.

Dec 15, 2025 • Jack Naglieri

35:51

The State of AI in Security Operations: 5 Patterns That Defined 2025

From cautious experiments to production deployments—what worked, what didn't, and where we're headed.

Dec 10, 2025 • Jack Naglieri

D@S #70 - GreenSky's Ken Bowles on Protecting Crown Jewels First and AI's Real Role in the SOC

Ken Bowles on navigating AI hype in the SOC, prioritizing crown jewels over comprehensive coverage, and why human judgment remains irreplaceable

Nov 26, 2025 • Jack Naglieri

38:10

Detection at Scale

Detection at Scale

How AI is reshaping security operations from intelligent agents and detection to the data infrastructure underneath. A weekly newsletter by Jack Naglieri, founder & CTO of Panther.

Recommendations

Detection Engineering Weekly

Detection Engineering Weekly

Zack Allen

Resilient Cyber

Resilient Cyber

Chris Hughes

What's Hot 🔥 in Enterprise IT/VC

What's Hot 🔥 in Enterprise IT/VC

Ed Sim

Cyberwox Unplugged

Cyberwox Unplugged

Day Johnson

Venture in Security

Venture in Security

Ross Haleliuk

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts