Google Security Operations MCP
Official Google Cloud suite of 5 MCP servers: Chronicle SIEM, SecOps SOAR (case management and playbooks), Google Threat Intelligence, Security Command Center, and a managed remote enterprise option.
- Search your security logs for suspicious login attempts
- Get a summary of active security alerts across your cloud environment
- Investigate a potential data breach using threat intelligence
Five specialized servers covering the full security operations stack — from threat hunting to SOC automation — officially maintained by Google Cloud. Apache-2.0 license.
Security-focused consulting engagements on GCP where the client uses Chronicle, SecOps, or needs cloud security posture management.
https://github.com/google/mcp-security
By Google Cloud
How to Get It
Trust Signals Automated Scan
Data & Access
Community Pulse Active
Discussed on Hacker News, Reddit
- Gemini CLI is awesome! But only when you make Claude Code use it as its bitch. — Reddit · 1201 pts
- 30 Days of an LLM Honeypot — Reddit · 822 pts
- MCP Security is still Broken — Reddit · 345 pts
27 mentions across 2 sources
Reviewer notes
Automated Scan review. These are observations, not a security certification.
Google Application Default Credentials. Apache-2.0. Five specialized servers.
How to evaluate tools before deploying →
Data shown here comes from public APIs and automated scanning. Reviewer notes reflect one person's experience. This is not a security certification or legal recommendation. Always evaluate tools according to your own organization's policies.