POPULARITY
11 episodes with cnapp
14 episodes with cnapp
8 episodes with cnapp
3 episodes with cnapp
2 episodes with cnapp
3 episodes with cnapp
2 episodes with cnapp
2 episodes with cnapp
2 episodes with cnapp
All links and images can be found on CISO Series We know human-paced security controls can't be applied to autonomous AI agents. So what needs to change with CNAPP and cloud security? Check out this post for the discussion that is the basis of our conversation on this week's episode co-hosted by David Spark, the producer of CISO Series, and Steve Zalewski. Joining us is our sponsored guest, Dan Benjamin, vp product - data, identity, and AI security, Palo Alto Networks. In this episode: The detection ceiling A category gap, not a feature gap Resilience by design An insider threat with no face A huge thanks to our sponsor, Palo Alto Networks Cortex Cloud unifies code, cloud, and SOC on a single data, risk, and control plane — giving teams the context, workflows, and agentic intelligence to turn risk into resolution. Native AI agents investigate and act within enterprise guardrails, delivering real-time protection from workload to network edge. Cloud security that outpaces machine-speed threats. Visit Palo Alto Networks and search cortex cloud.
Guests: Gal Ordo, Co-founder & CPO @ Native Topics: In Episode 186, we debated 'Native vs. Third-Party' as a binary choice. Native seems to be a third-party vendor whose entire existence depends on the belief that cloud-native controls are superior. Does your platform validate the 'Cloud Provider' side of the debate (that their controls are enough), or does the fact that you exist prove the 'Third-Party' side (that native interfaces aren't enough)? A key argument against native controls is an AWS WAF and a Google Cloud Armor don't behave the same way. If your tool manages native controls across multi-cloud, how do you handle the 'lowest common denominator' problem? Do you dumb down the policy to fit all clouds, or do you expose the unique complexity of each one? GuardDuty and SCC produce similar but meaningfully different results. How do you abstract across that so an analyst or IR team isn't having to dig into the exact meaning of the different JSON fields in their output? We often say native tools are 'good enough' for 80% of use cases but lack the depth of specialized third-party vendors (like a dedicated CNAPP or DLP). By betting your company on orchestrating native controls, are you effectively betting that 'good enough' is the future of the market? What happens when a customer needs a feature that the CSP hasn't built yet? What fraction of your users are taking this from a "I'm 80% this one cloud, I need great coverage there and good enough elsewhere" vs "I'm truly multi-cloud" or even scarier "I have a workload that is active spanning clouds"? Do your customers push you towards helping with the kinds of SaaS platforms that SSPM vendors cover? If AWS and Google Cloud suddenly decided to make their native security UIs perfect and unified tomorrow, would your company cease to exist? Or is the complexity of the cloud strictly increasing, guaranteeing you job security forever? Related: Video version EP186 Cloud Security Tools: Trust the Cloud Provider or Go Third-Party? An Epic Debate, Anton vs Tim EP160 Don't Cloud Your Judgement: Security and Cloud Migration, Again! The Great Cloud Security Debate: CSP vs. Third-Party Security Tools native.security blog
Cloudbase株式会社は5月19日、国産CNAPP「Cloudbase」に Cloudbase Sensorを用いたオンプレミス・プライベートクラウド環境のネットワーク機器に対する脆弱性検出機能のリリースを発表した。
Take a Network Break! Our Red Alert covers a trio of vulnerabilities in Cisco ISE. On the news front, Cloudflare announces a private network offering for AI agents and a partnership with CNAPP specialist Wiz for AI visibility. AWS rolls out Interconnect to streamline provisioning of WAN and last-mile connectivity, and Linux 7.0 includes network... Read more »
Take a Network Break! Our Red Alert covers a trio of vulnerabilities in Cisco ISE. On the news front, Cloudflare announces a private network offering for AI agents and a partnership with CNAPP specialist Wiz for AI visibility. AWS rolls out Interconnect to streamline provisioning of WAN and last-mile connectivity, and Linux 7.0 includes network... Read more »
Take a Network Break! Our Red Alert covers a trio of vulnerabilities in Cisco ISE. On the news front, Cloudflare announces a private network offering for AI agents and a partnership with CNAPP specialist Wiz for AI visibility. AWS rolls out Interconnect to streamline provisioning of WAN and last-mile connectivity, and Linux 7.0 includes network... Read more »
The 12th season of Crucial Tech begins today after a month off. But we haven't been napping. The 2026 RSAC Conference consumed my time and I came back with some definition of the cybersecurity industry. Mostly I learned just how bad the industry is explaining itself to its customers.One area I've been meaning to investigate is the Cloud-native application protection platforms (CNAPP) sector simply because it is so very basic to stopping security breaches. It is also very crowded by established players and newcomers. In this interview we talk with one of the first companies to enter the space, Orca Security and their CEO Gil Geron about what makes them useful and why few people have heard of them.
Roi Karo, chief strategy officer at Check Point Check Point Software has been on an acquisition tear. Under new CEO Nadav Zafrir, the company has picked up five startups since early 2025, with three announced simultaneously in February: Cyclops, Cyata, and Rotate. But these aren’t opportunistic bolt-ons. They map directly to a four-pillar strategy that Check Point says defines the future of its security platform: Hybrid Mesh Network Security, Workspace Security, Exposure Management, and AI Security. In this episode, we sit down with Roi Karo, Check Point’s Chief Strategy Officer, and Angelo Valentini, head of channel sales for Canada, to dig into the thinking behind the acquisitions and what they mean for the channel. Roi brings an unusual perspective to the table, shaped by 25 years in Israeli defense intelligence and a stint as Chief Risk and Strategy Officer at blockchain infrastructure company Fireblocks before joining Check Point. Angelo Valentini, head of channel sales for Canada at Check Point The conversation covers how each acquisition fits into the broader strategy: Rotate brings MSP-native expertise to the Workspace Security pillar, where Check Point is consolidating endpoint, email, browser, and mobile security under a single management layer. Cyclops completes a full Continuous Threat Exposure Management cycle by adding internal asset scanning alongside CyberInt’s external scanning and Veriti’s automated remediation. And Cyata addresses the emerging challenge of governing autonomous AI agents operating on user endpoints, a category that barely existed a year ago but is evolving fast. We also explore what Check Point means by an “open garden” platform, including how its tools integrate with and remediate across competitors’ products, and how that philosophy plays out in practice for MSPs managing multi-vendor security stacks. Angelo adds a Canadian lens, touching on the opportunity in Canada’s SMB-dominant market and the compliance implications of Bill C-26. Check Point’s MSSP Partner Program offers consumption-based pricing and multi-tenant management for solution providers looking to explore the opportunity. Roi closes with a pointed message for partners: the assumption that there’s still time to learn and prepare is “terribly wrong.” The threat landscape is accelerating, and the window to adapt is narrower than most people think. Read Full Transcript Robert Dutt: Hello and welcome to In The Channel from ChannelBuzz.ca, bringing news and information to the Canadian IT channel for the last 16 years. I’m Robert Dutt, editor of ChannelBuzz.ca, and as always your host for the show. Check Point Software has been making some big moves. Under new CEO Nadav Zafrir, the company has acquired five companies since early 2025, including three announced simultaneously in February: Cyclops, Cyata, and Rotate. And these aren’t random bolt-ons. They map to a deliberate four-pillar strategy that Check Point says defines the future of the platform. Those four pillars are: Hybrid Mesh Network Security, covering data centers, cloud, SASE, and SD-WAN. Workspace Security, protecting endpoints, email, browsers, and SaaS applications. Exposure Management, giving organizations visibility into their full attack surface. And AI Security, governing the new wave of autonomous AI agents operating inside enterprise environments. For solution providers, the most interesting piece here might be the Rotate acquisition. It’s an acqui-hire that brings in a team with deep roots in the MSP ecosystem, including veterans of Datto and Kaseya. Cyclops adds a data lake with over 150 integrations for attack surface management. And Cyata tackles a category that barely existed a year ago: identity management for AI agents. To unpack the strategy and what it means for the channel, I sat down with Roi Karo, Check Point’s chief strategy officer, and Angelo Valentini, who leads Check Point’s Canadian partner business. Roi brings an unusual perspective – 25 years in Israeli defense intelligence and a stint as chief risk and strategy officer at blockchain infrastructure company Fireblocks before joining Check Point. Here’s our conversation. Gentlemen, thank you for taking the time. I appreciate it. Roi Karo: Thank you very much. Angelo Valentini: Thanks for having us. Robert Dutt: Roi, before we dive into strategy itself, you come to Check Point from Fireblocks, and before that, 25 years in the IDF and on that side of the world. Pretty unique lens. I’m just curious, how does that shape how you think about security strategy versus someone who’s grown up and spent that kind of time inside the cybersecurity vendor world? Roi Karo: Yeah, that’s interesting. I think it gives a unique perspective, being part of the Israeli intelligence security, and it gives, I think, a wide view of how things are shaping. And it’s part of what we’re trying to answer today. The biggest hurdle I’m trying to uncover is what is going on. What’s going on in the world, what is going on in the market, and of course, how should we react as a security company. And I think my background gives an interesting perspective for that. And stating what is obvious, in Israel, many people in the cybersecurity industry are veterans of the Israeli defense forces. So it’s an interesting background and a very useful background to be part of the security ecosystem in Israel. Robert Dutt: You guys announced three acquisitions simultaneously, and that’s following last year, which saw Lakera and Veriti. That’s an aggressive pace. I guess, what do you see as the strategic urgency driving the acquisitions? Is it about AI creating new categories of risk, or is it about the competitive landscape forcing your hand? Is it a little bit of both? What’s driving this? Roi Karo: Yeah, I think both and maybe some more. Stating the obvious, things are changing faster than before. Everybody’s talking about how AI is changing the world. Something that everybody says in their first sentence: everything is faster. Things that before took years now take weeks and even days. So we can’t just wait. We need to move fast, faster than we moved before. So acquisition is a great way to move faster. When we find a very strong team that has a very good product that can help our portfolio and give us good products that we can suggest or offer to our customers, this is something that we’re very interested in. And I think, as you mentioned, the competitive landscape – competitors are also moving faster. So we need to keep pace. And the last thing I would add, Check Point as a large company offers a wide variety of solutions. We’re very known for our firewalls and network security, but if we’ll have more time, we can talk about the other pillars. And actually all three new acquisitions are supporting and accelerating our other product pillars. So offering a consolidated solution to our customers is one of our biggest strategic moves, and all of those acquisitions are helping us to get faster through this target. Robert Dutt: You kind of presage where I was going next, which is, in your blog post, you frame four pillars of where Check Point is going, what you want to be locking down. And as you rightly point out, Check Point has that history, that strength in network security. The newer bets, especially both exposure management and AI security, which is obviously nascent – it seems like they require different muscles, different skill sets, different approaches from Check Point and from partners alike. Where are the real capability gaps that needed filling? Roi Karo: Yeah, so I think when talking about gaps, there are different types of gaps. One type of gap is mostly on the AI front. Everything is new. So to be very honest, I think that the security industry is still learning how to secure AI. So we have gaps. Everybody has gaps because it’s so new. We’re inventing new things. We’re building new kinds of security solutions. And that’s one type of a gap. A different type of a gap is that we have products for many years and we want to have better solutions, acquiring features or products that can help us accelerate closing those types of gaps. But I think the first type is more interesting because those are purpose-built solutions that did not exist before. This is where the true innovation is happening. And without that, nobody will be able to secure the new types of attacks that we’re seeing in the wild. Angelo Valentini: Robert, if I could just add – on the partner side, I think some of the gaps and concerns are really about visibility, governance, and also about operational efficiency. I think that’s one of the things that we’re trying to help partners with in terms of what their concerns are relative to AI, relative to exposure management, all these areas. Robert Dutt: You describe this whole scenario as an open garden platform, which is a nice framing versus the walled garden approach. For MSPs who are running multi-vendor security stacks and representing multiple security vendors, which, let’s be honest, is the vast majority – what does that open garden mean in practice for them? Roi Karo: Yeah, so I think a couple of things. Our philosophy is openness. We’re not trying to create any kind of vendor lock. We play with all vendors. You mentioned the acquisition from last year of Veriti. That’s a great example because what Veriti offers is the ability to patch or virtually patch all of your security vendors. If you have a threat that you discovered, now you want to make sure that you’re actually being defended against it. So what Veriti does is go over all of those exposures and close them. And when they say close them, they close it using a Check Point security product, but also all other vendors. So we have integration even with our competitors, other types of vendors. So that’s one example of how we try to build our solutions in a way that supports all the other players, because we acknowledge what you said. Most vendors and even most companies, they don’t want vendor lock. They want to use several vendors. They want all of them to play together. So we design our solutions in an open way. It can be used with APIs, it can call to other types of solutions and help MSPs or customers, other types of customers, to build their full stack of solutions. Robert Dutt: That kind of maps, I think, with things that I’ve been hearing more and more from partners. Back in the day, you’d hear a lot of, “I want to work with fewer security vendors.” Still, no one’s saying, “Hey, I want to sign up 400 security vendors and try to understand the nuance of what all of them are doing.” That’s operationally impossible. What I hear more, I think, is the idea of, “I want to have a few strategic security vendors and I want them, where possible, to play nicely together in my environment.” Roi Karo: Absolutely, I can’t agree more. I think consolidation is important. Nobody wants 400. Nobody wants even 40 vendors. It’s hard. But nobody wants one vendor. I think that in a way, we’re trying to figure out this balancing, this sweet spot between having hundreds of vendors and having one vendor. And what we do is – the reason we picked those four pillars is because we truly believe that we’re leaders in each one of them and we have the best solution in each one of them. And anywhere that we don’t have a solution, we partner. So a good example is CNAPP. We have a strategic partnership with and other CNAPP vendors. So we don’t have our own CNAPP solution. We integrate it with another vendor. And everywhere we don’t have the best solution, we’ll integrate with the best vendors that are out there. Robert Dutt: Okay, let’s talk a little bit about the acquisitions that were made that start to build out this platform, or continue to build out this platform. And I wanted to start with Rotate specifically, because I think it’s really interesting for this audience. You acquired them, it seems, primarily for the team. And that team includes key people who come from a background in Datto, in Kaseya – companies that really built up the foundations of the MSP ecosystem of today. What does that signal about how you guys are looking at the MSP market and the MSP opportunity for Check Point? Roi Karo: Yeah, so I will zoom out a bit and then focus specifically. When we announced the workspace pillar, we realized among other things that companies want to manage the whole end user security through one vendor, through one unified management, and not point solutions. So we took our endpoint solution, our email solution, browser, mobile – all the solutions we have around the end user – bundled them together, and are offering a way to manage all of them from a unified management. That is something that is unique and I think is very compelling to all types of customers and mostly MSPs, for obvious reasons. They want to manage all of this end user security from one vendor, from one management. And doubling down on MSPs, we understand their needs. We have many MSPs as customers and we want to provide an easy way to manage all their tenants, all their end users in one single pane of glass. And that’s what we’re building, and this is what we want to accelerate with the team of experts coming from Rotate. Angelo Valentini: So Robert, in Canada, as you know, 90% of the businesses are SMB. So this is a huge opportunity for partners as we go and develop this and enhance that solution for our partners. It’s a huge opportunity. Robert Dutt: And speaking of huge opportunity, the email security business that’s already – I think I saw 160 million is the figure for Check Point’s revenue line there – as well as being one of the most foundational tools that MSPs bring to market and have fueled that business. I’m curious to get your thoughts on how you build from that beachhead that you’ve got established in email security and into that broader workspace security story that Rotate is facilitating. Roi Karo: I think email security, as you said, it’s so fundamental. And when we try to explain to people how AI is changing the hackers, this is the easiest example because it’s most common and easy to explain and imagine. Phishing attacks look different now with AI-based attacks. We all did this training that you need to find spelling mistakes and grammar mistakes to identify phishing. As you can imagine, there are no spelling and grammar mistakes anymore when phishing emails are being built or crafted with AI. So email security is being changed and being reinvented. And we are building new types of email security to make sure that we’re securing also for the most advanced AI-based phishing attacks. Our email security is something that we take a lot of pride in and we can prove that it is better than many others. So that’s, as you said, a great beach entry through many of what we’re doing with our customers. And adding the other capabilities on top of the email is super important. Because again, using a very simple example: someone got a link, they pressed it because it wasn’t blocked. And now they have malware on their computer. You want that endpoint security to be connected to the email security and have one platform that can see everything and can actually prevent attacks before they happen. So we integrated our endpoint solution, our browser extension, our mobile solution, and the email together into one threat intelligence layer that provides data to all of those solutions. Robert Dutt: Cyata is about governing AI agents, which as well as being the buzzword of the day is also a category that didn’t exist a few years ago, because AI agents themselves did not exist a few years ago. For an MSP today, is security around AI agents something that their customers are asking about? Or is this one of those things that’s in a “be ready for this now so you can sell it tomorrow” kind of space? Roi Karo: Yeah, I think that this will grow very fast because, as I’ve mentioned, AI is moving faster than we imagined. When we say agents, I think there are two separate use cases, and one of them is very relevant to the MSP. One that is less relevant is building AI applications that use agents. This is for bigger organizations and more sophisticated organizations that have engineers and are building their own software. But all of us are using agents. ChatGPT and Claude today, you just press a button and you’re running an agent from your endpoint. That is something that is happening. It’s the more advanced user today, but tomorrow it will be all of us using agents running on their endpoints. And one of the things that Cyata built, and we’re now adding to our products, is a capability running on the laptop of the end user, identifying agents that are running there on behalf of the users. It can identify and, first of all, give visibility into all the agents that are running from the end user’s computer, but also provide governance and policy that make sure that they’re doing only things that they’re allowed, that they’re using the right identities, that they have access only to things that they are supposed to have access to. And this is something that I believe will be very relevant to MSPs in the near future, sooner rather than later, because it’s related to all the end users, all the people that are using AI. Angelo Valentini: Robert, this also plays nicely with some of the government compliance developments with the Canadian government. So Bill C-26, for example, is all about governance and compliance. This is a great way in which this acquisition plays right into the government legislation. Insurance is another big thing where we’re seeing a lot of compliance requirements, and also financial institutions. So this is just another way that this plays into that compliance as well. Robert Dutt: Last but not least on the acquisitions, can you give me a bit of a feel for how Cyclops fits in, what they bring to the table, and the opportunity you see there for your partners? Roi Karo: Yeah, absolutely. And again, zooming out and zooming back into Cyclops. We just announced our Exposure Management pillar. We acquired, I think almost two years ago, CyberInt. They’re doing external risk management – they’re scanning the organization from the outside and providing all the data you can achieve from looking at the organization, the company, from the outside. Dark web and the organization itself. Six months ago, we acquired Veriti, that takes all of the data, all of the exposures, all of the threats, and mitigates them automatically. So you have automatic remediation. And now with Cyclops, we completed the full cycle, because they are scanning the organization internally. This is an asset management capability that actually connects to hundreds of vendors that provide data. And then you have the full picture of what’s going on inside your organization. So CyberInt’s capabilities are scanning from the outside, Cyclops’ capabilities are scanning from the inside, and Veriti’s capabilities take all of this intelligence – and all the intelligence we acquired in decades of building our capabilities – and make sure that all of this is being remediated. In this way, we accomplished the full cycle of what Gartner calls CTEM, Continuous Threat Exposure Management, and provide a very unique value proposition to our customers of having the full cycle of understanding what is happening across your attack surface, identifying the threats, and remediating the threats. Cyclops provided a very important piece of the puzzle that we were missing, and we’ll integrate them very quickly into our value proposition and offer a full cycle of CTEM. Robert Dutt: How quickly do these acquisitions – you mentioned the plan for Cyclops there – but how quickly do these become native Check Point experiences rather than adjacent tools that are also on the Check Point line card? Roi Karo: Very quickly in those three cases, because they’re part of a wider value proposition. It’s not a standalone – all of them started as a startup with a standalone capability, but the real magic and the real value will come when we integrate them. That will happen very quickly because all of those solutions are very modern in design, which makes it easier. And part of the due diligence we did around all of them is how quickly we can integrate. So this will be integrated very quickly. And of course, now – as I say, everything is happening faster – we are using AI to build products and integrate products. So that will happen very fast, and this will be offered to our customers immediately. Robert Dutt: Zooming back out to the strategy level, if I’m a Canadian MSP with managed seats numbered in the hundreds – typical SMB-focused MSP – today I’m running Check Point email security, maybe firewalls. When I look at this strategy, what is this going to change about what I sell and how I operate over the next 12 months? Roi Karo: I think CTEM and exposure management becomes even more important than before. Maybe we need to take one step back with your permission. I think that the threat landscape is changing, and that’s something that we all need to acknowledge. Just imagining how the attackers are using AI in order to accelerate their attacks – things that before took attackers months or years to build, to find new vulnerabilities, we’re seeing right now happening much faster. The scale, the sophistication of attacks is changing. And we all need to prepare. Vendors, MSPs, and other types of organizations need to make sure that they are prepared for a new wave of attacks. And for that, you need to have everything that can help you understand. We talked about my background – intelligence is super important to understand what is going on. And exposure management is exactly that: understanding what is going on. Are you attacked? Where are you exposed? Who is attacking you? You can’t fly blind. So the first thing I would add to my portfolio if I’m an MSP is offering threat intelligence, offering exposure management, scanning all of my customers and making sure that they’re not exposed, finding servers they have that are exposed, finding PII that is related to them on the dark web, and making sure that I’m warning them. Many kinds of solutions we have as part of our exposure management value proposition I think will be very interesting for MSPs. So that’s one thing I would explore with Check Point. The second thing is AI, of course. We talked about agents, but even the basic LLM use of end users, that’s something that needs to be governed. Angelo mentioned compliance, it will become part of it. Even if you’re a small law firm and you want to make sure that your lawyers are obeying the rules that you decided – can they use ChatGPT in order to write a legal document? If it’s a small medical company, can they consult ChatGPT on medical issues? What is the PII guidance you give them? Can they put PII in ChatGPT or not? All of this needs to be governed, and our products enable that. They run on the endpoints, they make sure that you’re aware of what all of your employees, all of the people in the company are doing with AI, and they can enforce governance on what you want to allow and what you want to block. Do you allow DeepSeek in your organization? Do you allow other types of LLMs or GPTs? All of this, as part of AI security, is something that MSPs will need to adopt and educate themselves on, and educate their end users very quickly. And what we’re building is a full suite of AI security. We’ll have offerings for small companies, offerings for large enterprises, and everything in between. Angelo Valentini: You touch on AI governance, we talked about exposure management. These are ideas that sound consultative and complex, which is great because channel 101: where there’s mystery, there’s margin, and there is ample mystery here. But again, through the lens of that SMB-focused MSP, how do I get to it? So I guess what I’m getting at is, how are you helping partners productize those conversations they need to have without requiring them to go super deep themselves as AI specialists? I think that’s the bread and butter of partners today, is the service offering. When they see acquisitions like this, we play in all their wheelhouse in terms of all the areas: visibility, governance, and also operational efficiency. So that’s the number one thing. It’s our job to enable our partners as well as part of it. Me in the partner community, we go and enable our partners to understand the technology and understand the opportunity. And there are consulting opportunities here, there’s increased revenue opportunity here. That’s one of the things that we focus on, is really to get awareness to the partners so they understand: hey, there’s an opportunity here for incremental revenue, for increased opportunity in consulting and implementation. And then from there, there’s ancillary AI solution revenue that follows. So it’s up to the partner to decide, but it’s really something that they should consider. Robert Dutt: Just to wrap things up before we go, do you have time to do two quick lightning round questions, quick answers? First of all, what’s one assumption about cybersecurity that you think partners need to stop making right now, or at least over the course of this year? Roi Karo: I think that the basic assumption is that we have time, that sophisticated attacks are not here yet, and we have time to learn, we have time to adjust, and everything will be okay. I think that’s terribly wrong. I think that the attackers, they don’t have the governance and legal obligations that we have as companies. So they’re running very fast. It’s happening now. So I think a wrong assumption that many people have, MSPs included, is: okay, it’s still early, we can learn, we can take our time. I think we need to move fast and we need to move faster than we’re moving. Robert Dutt: And taking that similar lens but turning it inside this time, what’s the hardest internal debate that you’re having at Check Point right now about AI and security, and why isn’t it settled yet? Roi Karo: We understand that we need to offer AI as a part of – we talked about many angles of AI, one that we did not mention, and I will use your question to address it – is using AI for security. We talked about AI for the attackers, we talked about AI that everybody’s using and we need to secure. Part of what we’re building in a very innovative way is autonomous security – AI agents that are running security. And this of course is the biggest promise. And many people feel that we need to move much faster on this front. It’s not easy. And we’re building it in many parallel lanes, because it’s hard to predict what will win. But we understand that the future of security – you need to fight AI with AI, you need to adopt AI. And this is maybe the biggest promise of our industry, when the industry will be able to adopt AI and leverage the power of AI in order to provide better security. And in many ways, in bigger organizations, the department that needs to adopt AI the fastest is the security department. Because for all the other departments, this is a force multiplier, it changes everything, but in a way it’s a nice to have. For security, because the attackers are using AI, if security people won’t adopt AI for themselves and use AI to secure their organization, they will lose. So we’re trying to do our best in offering our customers AI-based security. We have today in all of our pillars co-pilots and MCP servers and agentic capabilities. But we aspire much higher. We want to build real autonomous security, real AI employees – AI security employees that will be part of the team. We have very exciting, innovative teams that are building those kinds of things. And answering your question, the debate is: can we, or how can we, move faster on this front, offering our customers fully autonomous, fully AI-based security. Robert Dutt: That’s a pretty good overview and view of the strategy and of where you think things are at. Good luck with the acquisitions and rolling them in and continuing to broaden out the strategy. And thank you very much for taking the time for this conversation. Roi Karo: Thank you for hosting us. It was a pleasure. We’ll be in touch. Angelo Valentini: Great to be here. Robert Dutt: There you have it, a look at Check Point’s push to reshape its platform around AI security, exposure management, and the MSP workspace, with Roi Karo and Angelo Valentini. The takeaway I keep coming back to: Check Point isn’t just buying technology here. They’re making a deliberate bet on the MSP market, and hiring a team from Datto and Kaseya to build it out is the strongest signal of that intent. Whether you’re already in the Check Point ecosystem or not, the open garden approach they’re describing is worth paying attention to. And Roi’s point about urgency is one that I’d take seriously. The window to learn and prepare is shorter than a lot of people think. Thanks to Roi and Angelo for a great conversation. And thank you as always for listening. Also this week on ChannelBuzz.ca: on Wednesday, ESET’s Tony Anscombe joins me to walk through the security trends and threats solution providers should be watching this year. On Thursday, I sit down with Nutanix SVP Lee Caswell to dig into their latest Enterprise Cloud Index research, including what the data says about shadow AI, data sovereignty, and where infrastructure decisions are heading. And on Friday, a bonus episode – AWS Canada’s Eric Gales joins me for a look back at 20 years of AWS and what it means for partners going forward. If you’re enjoying the show, please take a moment to subscribe or follow in your podcast app of choice. And if you’re feeling generous, a rating or review goes a long way to helping other solution providers find us. Until next time, I’m Robert Dutt for ChannelBuzz.ca, and I’ll see you in the channel.
Cloudbase株式会社は2月16日、国産CNAPP「Cloudbase」でオンプレミス等のネットワーク内に存在する未知の資産を可視化する機能の提供を2月5日から開始したと発表した。
Shadow IT has evolved. Now it’s Shadow SaaS. Shadow AI. And it’s everywhere. In this week's episode of the KuppingerCole Analyst Chat, Matthias welcomes Matthew Gardiner for his first appearance to unpack one of the fastest-growing security domains: SaaS Security Posture Management (SSPM) and why that name may already be too narrow. Today’s organizations run on hundreds of SaaS applications. Many are sanctioned. Many aren’t. Some are connected via OAuth. Others are quietly leaking data through AI tools. And most security teams don’t have full visibility. In this conversation, we explore:✅ What SSPM actually means (and why the “PM” might be limiting)✅ How Shadow IT evolved into Shadow SaaS and Shadow AI✅ The intersection of identity and cybersecurity in SaaS environments✅ Misconfiguration risks, MFA bypass, OAuth sprawl & SaaS drift✅ Why continuous monitoring beats periodic audits✅ CASB vs SSPM vs CNAPP — where the lines blur✅ The growing governance challenge in AI-powered SaaS✅ Why SaaS security can’t be ignored anymore If your organization uses SaaS (spoiler: it does), this discussion is not optional.
Shadow IT has evolved. Now it’s Shadow SaaS. Shadow AI. And it’s everywhere. In this week's episode of the KuppingerCole Analyst Chat, Matthias welcomes Matthew Gardiner for his first appearance to unpack one of the fastest-growing security domains: SaaS Security Posture Management (SSPM) and why that name may already be too narrow. Today’s organizations run on hundreds of SaaS applications. Many are sanctioned. Many aren’t. Some are connected via OAuth. Others are quietly leaking data through AI tools. And most security teams don’t have full visibility. In this conversation, we explore:✅ What SSPM actually means (and why the “PM” might be limiting)✅ How Shadow IT evolved into Shadow SaaS and Shadow AI✅ The intersection of identity and cybersecurity in SaaS environments✅ Misconfiguration risks, MFA bypass, OAuth sprawl & SaaS drift✅ Why continuous monitoring beats periodic audits✅ CASB vs SSPM vs CNAPP — where the lines blur✅ The growing governance challenge in AI-powered SaaS✅ Why SaaS security can’t be ignored anymore If your organization uses SaaS (spoiler: it does), this discussion is not optional.
In this episode, we dive into three key Cloud Workload Protection Platform (CWPP) offerings within Microsoft Defender for Cloud: Defender for Resource Manager, Defender for Key Vault, and Defender for APIs. Our Q&A format explores how these tools safeguard Azure environments against sophisticated threats, from management layer exploits to API vulnerabilities. Key Takeaways: Defender for Resource Manager monitors and protects against suspicious operations in Azure's management layer. Defender for Key Vault adds native threat protection to detect anomalous access to secrets and credentials. Defender for APIs provides full lifecycle security for APIs in Azure API Management, including inventory, posture recommendations, and runtime threat detection. These plans integrate seamlessly into Defender for Cloud's broader CNAPP framework for multi-cloud and hybrid protection. What did you think of this episode? Give us some feedback via our contact form, Or leave us a voice message in the bottom right corner of our site.Read transcript
Se você acha que segurança em nuvem é só ligar um CSPM e ser feliz, neste episódio a gente mostra que a história é bem mais cabeluda e divertida. Recebemos o Leandro Venâncio para destrinchar desde responsabilidade compartilhada e Zero Trust até o que realmente funciona no dia a dia de clusters Kubernetes sob fogo cruzado. Falamos de cultura, automação e das ciladas que a gente só aprende depois de tomar uns tombos.Partimos do básico bem-feito (identidade, redes e criptografia) e avançamos para governança com políticas (Kyverno/Gatekeeper), esteira com SAST/DAST/SCA, SBOM decente e segredos administrados em KMS/External Secrets. Amarramos com observabilidade, resposta a incidentes e como priorizar risco sem virar refém de dashboards. Spoiler: custo, compliance e performance entram no mesmo bolo e não dá pra fingir que não existem.Entre as pautas, destacamos: como aplicar Zero Trust em workloads efêmeros; por que "shift left" sem operações maduras mais atrapalha que ajuda; e onde CNAPP, CSPM e admission controllers se encontram. E claro, casos reais — porque a teoria é linda, mas a produção é quem manda.#Links Importantes:- Leandro Venâncio - https://www.linkedin.com/in/leandro-venancio/- LowOps cast com Rafael Ferreira - https://www.youtube.com/live/SC6a11HClX4- João Brito - https://www.linkedin.com/in/juniorjbn/- Assista ao FilmeTEArapia - https://youtu.be/M4QFmW_HZh0?si=HIXBDWZJ8yPbpflMO Kubicast é uma produção da Getup, empresa especialista em Kubernetes e projetos open source para Kubernetes. Os episódios do podcast estão nas principais plataformas de áudio digital e no YouTube.com/@getupcloud.
This interview was recorded for the GOTO Book Club.http://gotopia.tech/bookclubRead the full transcription of the interview hereRuss Miles - Engineering Manager, Chaos Engineering Practitioner & Co-Author of "Cloud Native Application Protection Platforms"James Lewis - Software Architect & Director at ThoughtworksRESOURCESRusshttps://bsky.app/profile/russmiles.bsky.socialhttps://github.com/russmileshttps://www.linkedin.com/in/russmilesJameshttps://bsky.app/profile/boicy.bovon.orghttps://twitter.com/boicyhttps://linkedin.com/in/james-lewis-microserviceshttps://github.com/boicyhttps://www.bovon.orgDESCRIPTIONIn this episode of GOTO Book Club, James Lewis and Russ Miles discuss Cloud Native Application Protection Platforms (CNAPPs), focusing on how they promote collaboration across security and development teams.Russ shares insights from his book, emphasizing the importance of OODA loops, balancing innovation with safety in platform design, and the benefits of off-the-shelf versus custom CNAPP solutions. Looking ahead, he predicts platform engineering will evolve into a commercial strategy like AWS and that AI will augment human decision-making, enhancing creativity and collaboration in the engineering field.RECOMMENDED BOOKSMiles, Giguere & Smith • Cloud Native Application Protection PlatformsMina, Warda, Marins & Miles • Digitalization of Financial Services in the Age of CloudRuss Miles • Learning Chaos EngineeringDan Pilone & Russ Miles Digital Disruption with Geoff Nielson Discover how technology is reshaping our lives and livelihoods.Listen on: Apple Podcasts Spotify Inspiring Tech Leaders - The Technology PodcastInterviews with Tech Leaders and insights on the latest emerging technology trends.Listen on: Apple Podcasts SpotifyBlueskyTwitterInstagramLinkedInFacebookCHANNEL MEMBERSHIP BONUSJoin this channel to get early access to videos & other perks:https://www.youtube.com/channel/UCs_tLP3AiwYKwdUHpltJPuA/joinLooking for a unique learning experience?Attend the next GOTO conference near you! Get your ticket: gotopia.techSUBSCRIBE TO OUR YOUTUBE CHANNEL - new videos posted daily!
Podcast with Chris McHenry, VP at Aviatrix, and Doug Green, Publisher of Technology Reseller News “Wiz detects. We react and enforce.” — Chris McHenry, Aviatrix In this timely conversation, Doug Green of Technology Reseller News sits down with Chris McHenry, Vice President at Aviatrix, to explore the company's groundbreaking partnership with Wiz—and how the two are working together to solve one of the most urgent problems in enterprise IT: cloud security. Aviatrix is focused on reinventing network security for the cloud era, helping enterprises regain the controls they've lost in the transition from traditional data centers to cloud-native architectures. “CISOs consistently tell us their cloud environments feel less secure than their data centers,” McHenry notes. That's where Aviatrix steps in—by delivering Zero Trust security at the network layer, with cloud-native tools that provide perimeter protection, lateral movement control, and runtime enforcement. The conversation zeroes in on the company's recent integration with Wiz, the cloud-native application protection platform (CNAPP) that recently made headlines with its massive $30 billion acquisition by Google. According to McHenry, the partnership is more than strategic—it's foundational. “They detect attacks, we stop them,” he says, describing a “closed-loop” response system where Wiz identifies high-risk incidents and Aviatrix's Cloud Native Security Fabric automatically reacts in real time, quarantining threats and blocking malicious activity. As AI rapidly redefines the modern enterprise, McHenry explains how Aviatrix is evolving to meet the dual challenge: using AI to both secure cloud environments and enhance the performance of security operations. From custom AI-powered risk analysis to integrations with Microsoft Copilot for Security, the company is pushing innovation at both ends of the spectrum. And for the reseller community, there's even more upside. Aviatrix is proudly channel-first. “We sell almost entirely through the channel,” says McHenry, inviting partners—especially those already working with Wiz—to expand their practices with Aviatrix's complementary offerings. “This is a big opportunity to help your customers modernize cloud security without lifting and shifting legacy firewalls.” The stakes are rising, and this partnership is gaining attention for good reason. “Google's acquisition of Wiz validates just how critical cloud security is,” says McHenry. “And our integration gives organizations an immediate path to both detect and respond to threats—at scale.” This podcast is the first of a two-part series. Stay tuned for part two, where Aviatrix CEO Doug Merritt will dive deeper into the strategic vision shaping the next decade of secure cloud infrastructure. Learn more at: www.aviatrix.com
In this episode of Talking Cloud, I speak with Adi Golan, Vice President of Skyhawk Security, discussing the evolution of cloud security, the challenges faced in the industry, and the innovative solutions being developed to enhance security measures. We explore the role of AI and machine learning in cybersecurity, the complexities of CNAPP, and the importance of observability and incident response in preventing breaches. The conversation highlights the rapid changes in the cybersecurity landscape and the need for collaboration between security and cloud teams. We delve into the complexities of cloud security, the evolving threats posed by AI and social engineering, and the importance of predictive technology in cybersecurity. We also discuss the role of adversarial AI in simulating attacks, the necessity of automated remediation, and the challenges of prioritizing vulnerabilities in a dynamic cloud environment. The conversation highlighted the risks associated with third-party vendors and the need for integration and interoperability in security solutions, culminating in a discussion about the future of cybersecurity. I hope you enjoy it!
The world of cloud security is evolving at breakneck speed. Are traditional tools and strategies enough to combat the sophisticated threats of tomorrow? In this episode, we're joined by Elad Koren, Vice President of Product Management from Palo Alto Networks, to explore the dynamic journey of cloud security.Elad shares his insights on how the landscape has shifted, moving beyond the era of CSPM and CNAPP as standalone solutions. We delve into why a cloud-aware Security Operations Center (SOC) is no longer a luxury but a necessity, and what "runtime security" truly means in today's complex, multi-cloud environments.The conversation also tackles the double-edged sword of Artificial Intelligence, how it's empowering both attackers with new capabilities and defenders with advanced tools. Elad discusses the critical considerations for organizations undergoing digital transformation, the importance of AI governance, and provides actionable advice for companies at all stages of their cloud adoption journey, from securing code from day one to building holistic visibility across their entire infrastructure.Guest Socials - Elad's Linkedin Podcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter - Cloud Security BootCampIf you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity PodcastQuestions asked:(00:00) Introduction(01:38) How has Cloud Security Evolved?(04:21) Why CNAPP is not enough anymore?(07:13) What is runtime security?(07:54) Impact of AI on Cloud Security(11:41) What to include in your cybersecurity program in 2025?(16:47) The Fun SectionThank you to this episode's sponsor - PaloAlto Networks Resources discussed during the episode:PaloAlto Networks RSAC Announcement 1PaloAlto Networks RSAC Announcement 2
Send us a textGet up to speed with everything that mattered in cybersecurity this month. In this episode of The Cyberman Show, we break down March 2025's top cyber incidents, threat actor tactics, security product launches, and vulnerabilities actively exploited in the wild.Here's what we cover:
In this episode of the mnemonic security podcast, Robby speaks with Knut Elde Johansen and Øyvind Bergerud from Storebrand about their transformation from early cloud challenges to established cloud maturity.They discuss how Storebrand shifted from outsourced IT to building a modern, in-house cloud infrastructure, and how security evolved alongside it. From implementing policy as code to enabling developers through threat modelling, purple teaming, and CNAPP, Knut and Øyvind share hard-earned lessons from building a secure, cloud-native environment. They also explore the changing threat landscape and how Storebrand prepares for attackers who are becoming just as cloud-savvy as defenders.Send us a text
Take a Network Break! This week we cover Google’s $32 billion acquisition of CNAPP provider Wiz, Cloudflare offerings for AI security and support for post-quantum encryption, and NVIDIA’s pledge to open a quantum research center in Boston. NVIDIA has also announced new switch platforms with co-packaged optics for greater efficiency, Cisco shares details on its... Read more »
Take a Network Break! This week we cover Google’s $32 billion acquisition of CNAPP provider Wiz, Cloudflare offerings for AI security and support for post-quantum encryption, and NVIDIA’s pledge to open a quantum research center in Boston. NVIDIA has also announced new switch platforms with co-packaged optics for greater efficiency, Cisco shares details on its... Read more »
Take a Network Break! This week we cover Google’s $32 billion acquisition of CNAPP provider Wiz, Cloudflare offerings for AI security and support for post-quantum encryption, and NVIDIA’s pledge to open a quantum research center in Boston. NVIDIA has also announced new switch platforms with co-packaged optics for greater efficiency, Cisco shares details on its... Read more »
Guest: James Campbell, CEO, Cado Security Chris Doman, CTO, Cado Security Topics: Cloud Detection and Response (CDR) vs Cloud Investigation and Response Automation(CIRA) ... what's the story here? There is an “R” in CDR, right? Can't my (modern) SIEM/SOAR do that? What about this becoming a part of modern SIEM/SOAR in the future? What gets better when you deploy a CIRA (a) and your CIRA in particular (b)? Ephemerality and security, what are the fun overlaps? Does “E” help “S” or hurts it? What about compliance? Ephemeral compliance sounds iffy… Cloud investigations, what is special about them? How does CSPM intersect with this? Is CIRA part of CNAPP? A secret question, need to listen for it! Resources: EP157 Decoding CDR & CIRA: What Happens When SecOps Meets Cloud EP67 Cyber Defense Matrix and Does Cloud Security Have to DIE to Win? EP158 Ghostbusters for the Cloud: Who You Gonna Call for Cloud Forensics Cloud security incidents (Rami McCarthy) Cado resources
Send us a textIn this episode of Relating to DevSecOps, Ken Toler and Mike McCabe dive deep into Google's blockbuster acquisition of Wiz.io for a reported $32 billion. They explore the implications for cloud security, the consolidation of the DevSecOps tooling landscape, and how this move compares to Google's previous acquisitions like Mandiant and Chronicle. The duo debates the future of multi-cloud strategies, platform fatigue, and whether Wiz will remain the darling of the security community—or get lost in the labyrinth of Google Cloud products. With sharp insights and a dash of hot takes, they paint a picture of a cloud security ecosystem at a pivotal turning point
Penetration tests are probably the most common and recognized cybersecurity consulting services. Nearly every business above a certain size has had at least one pentest by an external firm. Here's the thing, though - the average ransomware attack looks an awful lot like the bog standard pentest we've all been purchasing or delivering for years. Yet thousands of orgs every year fall victim to these attacks. What's going on here? Why are we so bad at stopping the very thing we've been training against for so long? This Interview with Phillip Wylie will provide some insight into this! Spoiler: a lot of the issues we had 10, even 15 years ago remain today. Segment resources: Phillip's talk, Optimal Offensive Security Programs from Dia de los Hackers last fall It takes months to get approvals and remediate cloud issues. It can take months to fix even critical vulnerabilities! How could this be? I thought the cloud was the birthplace of agile/DevOps, and everything speedy and scalable in IT? How could cloud security be struggling so much? In this interview we chat with Marina Segal, the founder and CEO of Tamnoon - a company she founded specifically to address these problems. Segment Resources: Gartner prediction: By 2025, 75% of new CSPM purchases will be part of an integrated CNAPP offering. This highlights the growing importance of CNAPP solutions. https://www.wiz.io/academy/cnapp-vs-cspm Cloud security skills gap: Even well-intentioned teams may inadvertently leave their systems vulnerable due to the cybersecurity skills shortage. https://eviden.com/publications/digital-security-magazine/cybersecurity-predictions-2025/top-cloud-security-trends/ CNAPP market growth: The CNAPP market is expected to grow from $10.74 billion in 2025 to $59.88 billion by 2034, indicating a significant increase in demand for these solutions. https://eviden.com/publications/digital-security-magazine/cybersecurity-predictions-2025/top-cloud-security-trends/ Challenges in Kubernetes security: CSPMs and CNAPPs may have gaps in addressing Kubernetes-specific security issues, which could be relevant to the skills gap discussion. https://www.armosec.io/blog/kubernetes-security-gap-cspm-cnapp/ Addressing the skills gap: Investing in training to bridge the cybersecurity skills gap and leveraging CNAPP platforms that combine advanced tools are recommended strategies. https://www.fortinet.com/blog/business-and-technology/navigating-todays-cloud-security-challenges Tamnoon's State of Remediation 2025 report In this week's enterprise security news, Knostic raises funding The real barriers to AI adoption for security folks What AI is really getting used for in the wild Early stage startup code bases are almost entirely AI generated Hacking your employer never seems to go well should the CISO be the chief resiliency officer? proof we still need more women in tech All that and more, on this episode of Enterprise Security Weekly. Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-398
Penetration tests are probably the most common and recognized cybersecurity consulting services. Nearly every business above a certain size has had at least one pentest by an external firm. Here's the thing, though - the average ransomware attack looks an awful lot like the bog standard pentest we've all been purchasing or delivering for years. Yet thousands of orgs every year fall victim to these attacks. What's going on here? Why are we so bad at stopping the very thing we've been training against for so long? This Interview with Phillip Wylie will provide some insight into this! Spoiler: a lot of the issues we had 10, even 15 years ago remain today. Segment resources: Phillip's talk, Optimal Offensive Security Programs from Dia de los Hackers last fall It takes months to get approvals and remediate cloud issues. It can take months to fix even critical vulnerabilities! How could this be? I thought the cloud was the birthplace of agile/DevOps, and everything speedy and scalable in IT? How could cloud security be struggling so much? In this interview we chat with Marina Segal, the founder and CEO of Tamnoon - a company she founded specifically to address these problems. Segment Resources: Gartner prediction: By 2025, 75% of new CSPM purchases will be part of an integrated CNAPP offering. This highlights the growing importance of CNAPP solutions. https://www.wiz.io/academy/cnapp-vs-cspm Cloud security skills gap: Even well-intentioned teams may inadvertently leave their systems vulnerable due to the cybersecurity skills shortage. https://eviden.com/publications/digital-security-magazine/cybersecurity-predictions-2025/top-cloud-security-trends/ CNAPP market growth: The CNAPP market is expected to grow from $10.74 billion in 2025 to $59.88 billion by 2034, indicating a significant increase in demand for these solutions. https://eviden.com/publications/digital-security-magazine/cybersecurity-predictions-2025/top-cloud-security-trends/ Challenges in Kubernetes security: CSPMs and CNAPPs may have gaps in addressing Kubernetes-specific security issues, which could be relevant to the skills gap discussion. https://www.armosec.io/blog/kubernetes-security-gap-cspm-cnapp/ Addressing the skills gap: Investing in training to bridge the cybersecurity skills gap and leveraging CNAPP platforms that combine advanced tools are recommended strategies. https://www.fortinet.com/blog/business-and-technology/navigating-todays-cloud-security-challenges Tamnoon's State of Remediation 2025 report In this week's enterprise security news, Knostic raises funding The real barriers to AI adoption for security folks What AI is really getting used for in the wild Early stage startup code bases are almost entirely AI generated Hacking your employer never seems to go well should the CISO be the chief resiliency officer? proof we still need more women in tech All that and more, on this episode of Enterprise Security Weekly. Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-398
It takes months to get approvals and remediate cloud issues. It can take months to fix even critical vulnerabilities! How could this be? I thought the cloud was the birthplace of agile/DevOps, and everything speedy and scalable in IT? How could cloud security be struggling so much? In this interview we chat with Marina Segal, the founder and CEO of Tamnoon - a company she founded specifically to address these problems. Segment Resources: Gartner prediction: By 2025, 75% of new CSPM purchases will be part of an integrated CNAPP offering. This highlights the growing importance of CNAPP solutions. https://www.wiz.io/academy/cnapp-vs-cspm Cloud security skills gap: Even well-intentioned teams may inadvertently leave their systems vulnerable due to the cybersecurity skills shortage. https://eviden.com/publications/digital-security-magazine/cybersecurity-predictions-2025/top-cloud-security-trends/ CNAPP market growth: The CNAPP market is expected to grow from $10.74 billion in 2025 to $59.88 billion by 2034, indicating a significant increase in demand for these solutions. https://eviden.com/publications/digital-security-magazine/cybersecurity-predictions-2025/top-cloud-security-trends/ Challenges in Kubernetes security: CSPMs and CNAPPs may have gaps in addressing Kubernetes-specific security issues, which could be relevant to the skills gap discussion. https://www.armosec.io/blog/kubernetes-security-gap-cspm-cnapp/ Addressing the skills gap: Investing in training to bridge the cybersecurity skills gap and leveraging CNAPP platforms that combine advanced tools are recommended strategies. https://www.fortinet.com/blog/business-and-technology/navigating-todays-cloud-security-challenges Tamnoon's State of Remediation 2025 report Show Notes: https://securityweekly.com/esw-398
It takes months to get approvals and remediate cloud issues. It can take months to fix even critical vulnerabilities! How could this be? I thought the cloud was the birthplace of agile/DevOps, and everything speedy and scalable in IT? How could cloud security be struggling so much? In this interview we chat with Marina Segal, the founder and CEO of Tamnoon - a company she founded specifically to address these problems. Segment Resources: Gartner prediction: By 2025, 75% of new CSPM purchases will be part of an integrated CNAPP offering. This highlights the growing importance of CNAPP solutions. https://www.wiz.io/academy/cnapp-vs-cspm Cloud security skills gap: Even well-intentioned teams may inadvertently leave their systems vulnerable due to the cybersecurity skills shortage. https://eviden.com/publications/digital-security-magazine/cybersecurity-predictions-2025/top-cloud-security-trends/ CNAPP market growth: The CNAPP market is expected to grow from $10.74 billion in 2025 to $59.88 billion by 2034, indicating a significant increase in demand for these solutions. https://eviden.com/publications/digital-security-magazine/cybersecurity-predictions-2025/top-cloud-security-trends/ Challenges in Kubernetes security: CSPMs and CNAPPs may have gaps in addressing Kubernetes-specific security issues, which could be relevant to the skills gap discussion. https://www.armosec.io/blog/kubernetes-security-gap-cspm-cnapp/ Addressing the skills gap: Investing in training to bridge the cybersecurity skills gap and leveraging CNAPP platforms that combine advanced tools are recommended strategies. https://www.fortinet.com/blog/business-and-technology/navigating-todays-cloud-security-challenges Tamnoon's State of Remediation 2025 report Show Notes: https://securityweekly.com/esw-398
All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week's episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Howard Holton, CTO, GigaOm. Joining us is Francis Odum, founder, Software Analyst Cybersecurity Research. In this episode: Rebalancing the SOC The case for consolidation It comes down to data Concentric cycles Thanks to our podcast sponsor, Palo Alto Networks Cortex Cloud, the next generation of Prisma Cloud, merges best-in-class CDR with industry-leading CNAPP for real-time cloud security. Harness the power of AI and automation to prioritize risks with runtime context, enable remediation at scale, and stop attacks as they occur. Bring together your cloud and SOC on the unified Cortex platform to transform end-to-end operations. Experience the future of real-time cloud security at https://www.paloaltonetworks.com/cortex/cloud.
All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week's episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Lee Parrish, CISO, Newell Brands. Joining us is David Tyburski, vp of information security and CISO, Wynn Resorts. In this episode: CISOs need to stick around Culture forward CISOs need support This isn't always about budget Thanks to our podcast sponsor, Palo Alto Networks! Cortex Cloud, the next generation of Prisma Cloud, merges best-in-class CDR with industry-leading CNAPP for real-time cloud security. Harness the power of AI and automation to prioritize risks with runtime context, enable remediation at scale, and stop attacks as they occur. Bring together your cloud and SOC on the unified Cortex platform to transform end-to-end operations. Experience the future of real-time cloud security at https://www.paloaltonetworks.com/cortex/cloud.
All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week's episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap). Joining us is Elad Koren, vp, product management, Cortex Cloud, Palo Alto Networks. In this episode: Context drives the decision A full-spectrum understanding Think practical The long play Thanks to our podcast sponsor, Palo Alto Networks Cortex Cloud, the next generation of Prisma Cloud, merges best-in-class CDR with industry-leading CNAPP for real-time cloud security. Harness the power of AI and automation to prioritize risks with runtime context, enable remediation at scale, and stop attacks as they occur. Bring together your cloud and SOC on the unified Cortex platform to transform end-to-end operations. Experience the future of real-time cloud security at https://www.paloaltonetworks.com/cortex/cloud.
CNAPP, or Cloud Native Application Protection Platform, is an integrated suite of tools for cloud-native apps that aims to help organizations manage cloud app risks and identify and respond to threats. Today on the Tech Bytes podcast we talk with sponsor Fortinet about its Lacework FortiCNAPP offering and how it integrates CNAPP for unified security... Read more »
CNAPP, or Cloud Native Application Protection Platform, is an integrated suite of tools for cloud-native apps that aims to help organizations manage cloud app risks and identify and respond to threats. Today on the Tech Bytes podcast we talk with sponsor Fortinet about its Lacework FortiCNAPP offering and how it integrates CNAPP for unified security... Read more »
In this episode we're joined by Francis Odum, founder and lead research analyst at Software Analyst Cyber Research. Drawing from his extensive research and conversations with CISOs, security operators, and vendors, Francis shares his insights on the state of identity security and the rise of non-human identities (NHI) in the cloud, why solving the data problem is critical to reducing false positives, improving SOC efficiency, and cutting costs, the early but growing landscape of AI and LLM security and its intersection with DSPM and data governance and predictions for 2025 trends, including what should be ditched and what the cybersecurity industry should prioritize. Guest Socials: Francis's Linkedin Podcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels: - Cloud Security Podcast- Youtube - Cloud Security Newsletter - Cloud Security BootCamp If you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity Podcast Questions asked: (00:00) Introduction (01:56) A bit about Francis (03:45) What is CNAPP in 2025? (06:55) The Identity space in 2025 (10:34) The state of SOC in 2025 (19:23) The AI Security Ecosystem (24:44) DSPM vs DLP (29:48) What should we ditch in 2025? (33:01) What should we see a lot more in 2025? (41:39) A bit about Cloud Security Bootcamp (42:58) The Fun Section Resources spoken about during the episode: Software Analyst Cyber Research
Episode 65 features Marina Segal, a friend, former colleague, and now co-founder and CEO of her VC-backed start-up, Tamnoon (www.tamnoon.io). I first met and worked with Marina Segal at Dome9 and, subsequently, Check Point Software. Marina is a shrewd and highly experienced executive with a strong background in Security Governance, Risk, and Compliance. In this age of AI, automation, and BOTs, she and her team have created an interesting value proposition with a human touch. I hope you enjoy the discussion. *PLEASW NOTE*Correction* Midway through the broadcast I refer to CNAPP as a 'horizontal vertical' solution and I meant to say CSPM, not CNAPP. My bad. Thanks!
In this episode of the Cloud Security Podcast, host Ashish Rajan speaks to James Berthoty, founder of Latio.Tech and an engineer-driven analyst, for a discussion on cloud security tools. In this episode James breaks down CNAPP and what it really means for engineers, if kubernetes secuity is the new baseline for cloud security and runtime security vs vulnerability management. Guest Socials: James's Linkedin Podcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels: - Cloud Security Podcast- Youtube - Cloud Security Newsletter - Cloud Security BootCamp If you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity Podcast Questions asked: (00:00) Introduction (02:26) A bit about James (03:20) What in Cloud Security in 2025? (04:51) What is CNAPP? (07:01) Differentiating a vulnerability from misconfiguration (11:51) Vulnerability Management in Cloud (15:38) Is Kubernetes becoming the default? (21:50) Is there a good way to do platformization? (24:16) Should CNAPP include Kubernetes? (28:07) What is AI Security in 2025? (35:06) Tool Acronyms for 2025 (37:27) Fun Questions
In this episode of the mnemonic security podcast, Robby is joined by Scott Piper from Wiz and Håkon Sørum from O3 Cyber to talk cloud security. They cover the evolution of cloud security products since Amazon's release of S3 and EC2 in 2006 and how the market has matured into the CNAPP we know today. They chime in on most of the buzzwords associated with CNAPP, including Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP), Cloud Infrastructure Entitlement Management (CIEM), and Cloud Detection and Response (CDR), as well as other key areas of CNAPP such as vulnerability scanning, "shift-left" security, cloud data security, and compliance. They explain the definition and challenges of "cloud-native attacks" and misconfigurations and discuss whether third-party SOCs can add context and enhance detection capabilities.
Integrity360, one of the leading pan-European cyber security specialists, has announced the launch of its Managed Cloud Native Application Protection Platform (CNAPP) Service, designed to deliver automated cloud workload protection, unparalleled visibility into cloud environments, proactive threat and exposure detection, and compliance alignment. The service addresses the growing complexity of securing multi-cloud environments and protecting cloud-native applications against evolving risks. Cloud environments are increasingly the target of cyberattacks, with 82% of breaches occurring in the cloud and 39% spanning multiple environments, according to the IBM Cost of a Data Breach Report 2023. Integrity360's Managed CNAPP Service directly addresses these risks, providing organisations with advanced tools and services to strengthen their cloud security posture and protect their cloud environments with greater efficiency. Integrity360's Managed CNAPP Service combines agent and agentless methodologies to deliver visibility into threats and exposures across cloud environments. This dual approach enables organisations to monitor and protect every layer of their cloud infrastructure, from workloads and configurations to APIs and sensitive data. Granular insights into misconfigurations and potential vulnerabilities also allow organisations to identify and address risks proactively, reducing the likelihood of breaches. Integrity360's Managed CNAPP Service offers 24/7 real-time threat detection, leveraging AI-driven insights to identify active threats and prioritise risk findings. By distinguishing between two critical categories, exposures and threats, the service focuses security operations, improving the speed and accuracy of threat management and alleviating the burden on internal security teams. The service integrates seamlessly across multi-cloud setups and provides 24/7/365 protection through Integrity360's Security Operations Centre (SOC). It is backed by robust SLAs, ensuring that critical threats are acknowledged within 15 minutes, triaged within one hour, and investigated within two hours. This rapid response capability enables businesses to contain threats quickly and minimise potential damage. The service also addresses common vulnerabilities in cloud environments, such as misconfigured assets and excessive permissions, which have been at the centre of recent breaches. For instance, the high-profile Microsoft Midnight Blizzard attack, in which attackers exploited a non-production cloud tenant lacking MFA to gain access to production systems, highlights the critical need for proactive security measures. "Traditional cloud security tools often operate in silos, leaving blind spots in organisations' defences," said Ahmed Aburahal, Technical Product Manager at Integrity360. "The need for advanced, unified security solutions is critical, particularly as Gartner predicts that 95% of cloud breaches will stem from user misconfigurations by 2025. Our Managed CNAPP Service bridges these gaps, providing a unified platform that ensures continuous monitoring, streamlined risk management, and robust threat protection." Integrity360's Managed CNAPP Service offers tailored solutions to prevent such incidents, including continuous configuration monitoring and enforcement of security best practices. The flexible options empower businesses to select the level of protection that best aligns with their cloud strategy, whether securing a single public cloud or managing complex multi-cloud infrastructures. Ongoing optimisation enables organisations to adapt to evolving threats and maintain an agile, resilient cloud environment and while the service leverages advanced automation and AI-driven tools, its human-centred approach is critical to its success. Integrity360's SOC team provide expert configuration and change management support, ensuring that each customer's CNAPP deployment is aligned with their unique security and compliance needs. Month...
In this episode of CISO Tradecraft, hosted by G Mark Hardy, you'll learn about four crucial tools in cloud security: CNAPP, CASB, CSPM, and CWPP. These tools serve various functions like protecting cloud-native applications, managing access security, maintaining cloud posture, and securing cloud workloads. The discussion covers their roles, benefits, key success metrics, and best practices for CISOs. As the cloud security landscape evolves, understanding and integrating these tools is vital for keeping your organization safe against cyber threats. Transcripts: https://docs.google.com/document/d/1Mx9qr30RuWrDUw1TLNkUDQ8xo4xvQdP_ Chapters 00:00 Introduction to Cloud Security Tools 02:24 Understanding CNAPP: The Comprehensive Cyber Defense 08:13 Exploring CASB: The Cloud Access Gatekeeper 11:12 Diving into CSPM: Ensuring Cloud Compliance 13:40 CWPP: Protecting Cloud Workloads 15:08 Best Practices for Cloud Security 15:54 Conclusion and Final Thoughts
In this episode of CISO Tradecraft, hosted by G Mark Hardy, you'll learn about four crucial tools in cloud security: CNAPP, CASB, CSPM, and CWPP. These tools serve various functions like protecting cloud-native applications, managing access security, maintaining cloud posture, and securing cloud workloads. The discussion covers their roles, benefits, key success metrics, and best practices for CISOs. As the cloud security landscape evolves, understanding and integrating these tools is vital for keeping your organization safe against cyber threats. Transcripts: https://docs.google.com/document/d/1Mx9qr30RuWrDUw1TLNkUDQ8xo4xvQdP_ Chapters 00:00 Introduction to Cloud Security Tools 02:24 Understanding CNAPP: The Comprehensive Cyber Defense 08:13 Exploring CASB: The Cloud Access Gatekeeper 11:12 Diving into CSPM: Ensuring Cloud Compliance 13:40 CWPP: Protecting Cloud Workloads 15:08 Best Practices for Cloud Security 15:54 Conclusion and Final Thoughts
As cloud-based infrastructure becomes a larger part of enterprise portfolios, there's greater focus on securing it effectively. Analyst Mark Ehr joins host Eric Hanselman to wade into the acronym-rich world of cloud native application security. Like other aspects of cloud and cloud native, security is a matter of dealing with speed and scale. There's more telemetry that's available, but workloads are more ephemeral and extending the same methods used in on-premises security risks overwhelming security teams and ballooning costs. Decomposing CNAPP into infrastructure and application development patterns creates an explosion of subsegments – Cloud Security Posture Management (CSPM), Cloud Workload Protection (CWP), Cloud Infrastructure Entitlement Management (CIEM) and many more. Security vendors are bundling the various pieces together into platforms, but buyers aren't fully buying in. Efforts to move security earlier into the application development process, the “shift left” movement, has added the need to secure the infrastructure provisioning process that's taking place in cloudy environments. Cloud security has become the leading pain point for security teams, according to 451 Research's Voice of the Enterprise study data, and cloud native skills are one of their leading skills gaps. At the same time, most organizations use multiple cloud providers, increasing complexity. Operational scale is necessitating a move beyond the siloed approaches that have been the norm for security. To provide effective security, data has to be shared across infrastructure. It also happens to be an area where cloud-based security tooling is taking a greater role. More S&P Global Content: The Open Cybersecurity Schema Framework Security for cloud-native applications SentinelOne continues its aggressive growth strategy with new CNAPP offering Orca Security continues its CNAPP momentum Credits: Host/Author: Eric Hanselman Guests: Mark Ehr Producer/Editor: Donovan Menard Published With Assistance From: Sophie Carr, Feranmi Adeoshun, Kyra Smith
How to secure AWS cloud using AWS Lambda? We spoke to Lily Chau from Roku at BSidesSF about her experience and innovative approach to tackling security issues in AWS environments. From deploying IAM roles to creating impactful playbooks with AWS Lambda, Lily shared her take on automating remediation processes. We spoke about the challenges of managing cloud security with tools like CSPM and CNAPP, and how Lily and her team took a different approach that goes beyond traditional methods to achieve real-time remediation. Guest Socials: Lily Twitter Podcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels: - Cloud Security Podcast- Youtube - Cloud Security Newsletter - Cloud Security BootCamp Questions asked: (00:00) Introduction (01:56) A bit about Lily (02:27) What is Auto Remediation? (03:56) Example of Auto Remediation (05:19) CSPMs and Auto Remediation (06:58) Make Auto Remediation in Cloud work for you (09:49) Where to get started with Auto Remediation? (11:52) What defines a High Impact Playbook? (12:58) Auto Remediation for Lateral Movement (14:35) What is running in the background? (16:41) What skillset is required? (19:08) The Fun Section Resources for the episode: Lily's talk at BsidesSF
Send us a Text Message.This month, we welcome Eric Gagnon, Team Lead of Adversary Simulation, Purple Teaming, and Tradecraft Development at Desjardins. The conversation covers a wide range of topics related to cybersecurity, including purple teaming, red teaming, blue teaming, and Eric's journey in cybersecurity. Eric shares insights on certifications, threat hunting, cloud security, and the importance of knowledge exchange between red and blue teams. He also discusses the use of AI in cybersecurity and the need to stay sharp in the field.TakeawaysPurple teaming involves collaborative operations to exchange ideas, evaluate security controls, and test out tactics, techniques, and procedures (TTPs) real threat actors use.Certifications in cybersecurity, such as Offensive Security Certified Professional (OSCP) and Offensive Security Certified Expert (OSCE), provide valuable knowledge and an edge in the field.Threat hunting involves looking for a granular activity that may indicate a compromise, filtering out the noise, and focusing on the suspicious behavior of threat actors.Cloud security requires automation, cyber hygiene, and visibility, focusing on prioritizing techniques and testing them against the enterprise's environment.Knowledge exchange between red and blue teams during a purple team engagement is essential and should include a common language, centralized documentation, and reporting against the MITRE ATT&CK framework.Staying sharp in cybersecurity involves continuous learning, participation in CTFs, engaging with passionate individuals, and challenging oneself through talks, podcasts, and specialized training.Chapters00:00Introduction to Purple Teaming and Cybersecurity Journey08:09Certifications and Insights in Cybersecurity15:08Threat Hunting and Granular Activity Detection35:02Knowledge Exchange in Purple Teaming: Red and Blue Collaboration39:57Staying Sharp in Cybersecurity: Continuous Learning and EngagementSecure applications from code to cloud.Prisma Cloud, the most complete cloud-native application protection platform (CNAPP).Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
Send us a Text Message.This month, we welcome Swathi Joshi, VP of SaaS Cloud Security at Oracle, to discuss key moments and decisions that shaped her career path, including rejections from Google and Twitter. She emphasizes the importance of learning from rejection and seeking feedback to improve. Swathi also shares insights on the role of mentors and advises on finding and working with mentors. In the second part of the conversation, she discusses building a SaaS security program as an enterprise consumer of SaaS. She highlights the importance of addressing misconfigurations, ensuring visibility and access control, and meeting compliance needs. Swathi also suggests asking about backup and exploring risk scoring for vendors. In this conversation, Swathi discusses best practices for managing vendor risk, vulnerability management through third parties, and incident response in SaaS applications. She also shares insights on privacy operations and critical privacy controls in SaaS. Swathi emphasizes the importance of collaboration, robust incident response plans, and data lifecycle management. She also highlights the need for identity and access control and the challenges of normalizing incident response across different SaaS platforms. Swathi's leadership philosophy is collaborative and pace-setting, and she emphasizes the importance of stress management.TakeawaysLearn from rejection and seek feedback to improveBuild long-term relationships with mentors and create a personal advisory boardWhen building a SaaS security program, focus on addressing misconfigurations, ensuring visibility and access control, and meeting compliance needsAsk about backup and explore risk scoring for vendors. Managing vendor risk requires close collaboration with privacy, legal, and contract partners.Incident response in SaaS applications shares foundational principles with traditional on-prem software, but there are differences in data snapshotting and managing dependencies.Privacy operations can be operationalized by focusing on identity, access control, and data lifecycle management.Leadership should be collaborative, open to ideas, and adaptable to different situations.Stress management is crucial for effective leadership and should be acknowledged and actively managed.LinksPrivacy Operations TemplateSwathi's LI ProfileChapters00:00 Navigating Career Challenges and Learning from Rejection08:13 The Role of Mentors in Career Growth15:26 Building a Strong SaaS Security Program21:20 Meeting Compliance Needs in a SaaS Environment21:56 Backup and Risk Scoring for SaaS Vendors22:38 Managing Vendor Risk26:12 Improving Vulnerability Management through Third Parties26:35 Navigating Incident Response in SaaS Applications34:03 Operationalizing Privacy Operations in SaaS40:50 The Importance of Collaboration in Leadership43:04 Managing Stress for Effective LeadershipSecure applications from code to cloud.Prisma Cloud, the most complete cloud-native application protection platform (CNAPP).Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
Have you rolled out Microsoft Defender for Cloud? Richard chats with Yuri Diogenes about the bundle of tools under the Defender for Cloud moniker. Yuri describes Defender for Cloud as a Cloud-Native Application Protection Platform (CNAPP). This Gartner term covers the various elements that go into a cloud-native application, including APIs, servers, containers, storage, resource manager, and more! Defender for Cloud integrates with Microsoft Purview to understand data sensitivity, and Microsoft Sentinel helps detect breaches or data misuse. It also offers attack path analysis and remediation so you can get ahead of the attackers to close off potential breach risks before they happen! Check the links in the show notes for great resources, including an ebook on CNAPP strategy!LinksDefender for CloudOWASP Top 10 API Security RisksDefender for APIsMicrosoft SentinelData Security DashboardAttack PathsMicrosoft PurviewCloud Security Posture ManagementMicrosoft Copilot for SecuritySecurity Remediation with GovernanceDefender for Cloud ServiceNow IntegrationCNAPP Strategy EbookRecorded May 13, 2024
Send us a Text Message.Episode SummaryCorey Elinburg, a cybersecurity leader, discusses the importance of approaching cybersecurity as a transformational force and empowering the business. He emphasizes the need to avoid draconian controls and adopt a mentality of finding solutions rather than saying no. Corey also shares insights on hiring security leaders and building relationships with vendors. He highlights the value of cloud-based security services in rapidly aligning IT with the business and shares examples from his experience. Corey emphasizes the importance of digital trust in healthcare and the need to prioritize patient safety. He also discusses personal growth and staying up to date in cybersecurity.TakeawaysApproach cybersecurity as a transformational force that empowers the business.Avoid draconian controls and focus on finding solutions rather than saying no.Embrace innovation and set the terms of adoption to drive business transformation.Build trust and empower your team to enable scalability and focus on strategic initiatives.Cloud-based security services offer agility, scalability, and rapid alignment with the business.Build relationships with vendors by understanding their value proposition and engaging in problem-solving.Chapters· [02:10] Kind words about Corey.· [03:13] Transforming business through IT.· [05:20] Where security programs go wrong.· [06:35] Corey's hiring persona.· [07:50] Embracing innovation.· [14:26] Principles to accomplish your vision.· [17:20] Cloud-based security models.· [23:55] Bringing value to businesses.· [28:09] From practitioner to leader.· [33:41] Unifying security and developers in purpose and practice.· [38:15] Implementing digital trust.· [41:28] Corey's growth formula.· [42:53] Corey's parting words. Notable Quotes· “It's not just controls. It's empowering the business to operate in a resilient way.”· “Too often in cyber, we forget that we're selling in every interaction.”· “When you engage trying to solve a problem rather than engage trying to sell a product, you're immediately on a better footing.” Relevant LinksWebsite: www.commonspirit.orgLinkedIn: Corey ElinburgSecure applications from code to cloud.Prisma Cloud, the most complete cloud-native application protection platform (CNAPP).Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
In this episode Mike and Ken dive into the wild world of SaaS products in DevSecOps. From vendors to security tooling hygiene they cover an often overlooked ecosystem of cloud and software services that may be rotting in the sky of your workloads. Join up for a listen on SaaS Security!
In this episode of CyberWire-X, N2K's CSO, Chief Analyst, and Senior Fellow, Rick Howard, is joined by Tim Miller, Technical Marketing Engineer for Panoptica, Cisco's Cloud Application Security solution, (Panoptica is the result of Cisco's incubation engine (Outshift) for new products and markets), and Kevin Ford, Esri's CISO. They discuss the complexity reduction need that Cloud-Native Application Protection Platforms (CNAPPs) provide. Outshift by Cisco is our CyberWire-X episode sponsor. To learn more about Cloud-Native Application Protection Platforms, check out Panoptica's website at https://panoptica.app and consider attending the Cisco Live EMEA in Amsterdam, February 5-8, 2024. Learn more about your ad choices. Visit megaphone.fm/adchoices
In this episode of CyberWire-X, N2K's CSO, Chief Analyst, and Senior Fellow, Rick Howard, is joined by Tim Miller, Technical Marketing Engineer for Panoptica, Cisco's Cloud Application Security solution, (Panoptica is the result of Cisco's incubation engine (Outshift) for new products and markets), and Kevin Ford, Esri's CISO. They discuss the complexity reduction need that Cloud-Native Application Protection Platforms (CNAPPs) provide. Outshift by Cisco is our CyberWire-X episode sponsor. To learn more about Cloud-Native Application Protection Platforms, check out Panoptica's website at https://panoptica.app and consider attending the Cisco Live EMEA in Amsterdam, February 5-8, 2024. Learn more about your ad choices. Visit megaphone.fm/adchoices
Kubernetes security cannot just be Kubernetes but it is like security of a datacenter within another datacenter. In this episode with Tim Miller we spoke about CNAPP, how to approach kubernetes security. Thank you to our episode sponsor Outshift by Cisco Guest Socials: Tim's Linkedin (@timothyemiller) Podcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels: - Cloud Security Newsletter - Cloud Security BootCamp Questions asked: (00:00) Introduction (02:42) A bit about Tim Miller (03:35) What is CNAPP? (04:30) Traditional Kubernetes Security (05:18) Where to put a CNAPP? (06:20) CSPM vs CNAPP (09:00) Attack Path Analysis (11:05) Kubernetes Attack Path (12:43) The team you need (14:06) Resources to learn more (16:24) Fun Question
© 2020-2026 Ivy Podcast Discovery LLC
