Building Threat Models with MCP and AI Agents

A practitioner's guide to using AI agents and MCP to analyze your environment, map threats to attack paths, and identify detection coverage gaps

Jan 5 • Jack Naglieri

7

1

1

December 2025

D@S #72 - Trustpilot's Gary Hunter on Structuring Security Knowledge for AI Success

How to scale security operations by automating alert triage, treating AI agents like interns, and creating space for preventative work that actually…

Dec 30, 2025 • Jack Naglieri

37:43

2025 Wrapped: Essential Reading on AI in Security Operations

The posts that shaped the conversation on AI-first security operations, from vendor landscapes to implementation risks

Dec 22, 2025 • Jack Naglieri

4

2

2

D@S #71 - CoreWeave's Slava Klimovs on Threat-Model-Driven Security and the AI-First Future

Bootstrapping security at hyperscale, the AIUC-1 standard for agents, and the shift to AI-first detection engineering.

Dec 15, 2025 • Jack Naglieri

2

35:51

The State of AI in Security Operations: 5 Patterns That Defined 2025

From cautious experiments to production deployments—what worked, what didn't, and where we're headed.

Dec 10, 2025 • Jack Naglieri

4

2

2

November 2025

D@S #70 - GreenSky's Ken Bowles on Protecting Crown Jewels First and AI's Real Role in the SOC

Ken Bowles on navigating AI hype in the SOC, prioritizing crown jewels over comprehensive coverage, and why human judgment remains irreplaceable

Nov 26, 2025 • Jack Naglieri

1

2

38:10

D@S #69 - FanDuel's All-Engineer SOC: From Phishing to IR with Custom Agents

Tyler Martin on eliminating tier 1-3 analyst work, automating incident response from Slack, and why security teams need to think about "context rot".

Nov 18, 2025 • Jack Naglieri

1

42:50

Building Custom AI SOC Agents with MCP

How security teams are orchestrating vendor capabilities with internal tooling through conversational bots, workflow automation, and enhanced developer…

Nov 17, 2025 • Jack Naglieri

2

2

How AI Agent Tools Work: A Practical Guide for SOC Analysts

How tool calling turns natural language questions into actionable security investigations.

Nov 10, 2025 • Jack Naglieri

6

October 2025

D@S #68 - Building Production-Ready AI Agents in Security Operations

George Warbacher on navigating AI hype, building specialized agents from scratch, and why the SOAR market is facing disruption

Oct 30, 2025 • Jack Naglieri

34:28

September 2025

From SIEM to AI SOC: The Agent-Driven Future

How AI agents will transform security operations from alert-driven chaos to intelligent, autonomous analysis that finally scales to fit our needs.

Sep 29, 2025 • Jack Naglieri

5

1

3

D@S #67: The Crawl, Walk, Run of Agentic Security Operations with Stephen Gubenia

Steven Gubenia (from Cisco Meraki) shares his framework and lessons learned for implementing AI agents in security operations.

Sep 24, 2025 • Jack Naglieri

37:48