Crying Out Cloud Live Talk: Security Minds from Google Cloud, AWS & Wiz
Dec 8, 2025
Join John Miller, Director of Operations at Google Threat Intelligence Group, and Ryan Nolet, AWS’s vulnerability disclosure expert, as they dive into how AI is reshaping the threat landscape. They discuss the swift adoption of AI by attackers, leading to new challenges like AI-generated slop reports. John emphasizes the increasing importance of identity and visibility in security, while Ryan warns about the risks of supply-chain vulnerabilities and code reuse. Together, they outline a proactive approach for cloud defenders in 2025.
AI Snips
Chapters
Transcript
Episode notes
AI Raises Attack Variability And Speed
- AI is accelerating how threat actors operate by increasing variability and speed of attacks.
- Defenders must focus on preventing classes of threats, not individual instances, to keep up.
Validate AI-Polished Reports Before Trusting Them
- Treat every AI-polished vulnerability report as unverified until you validate it.
- Prioritize human review based on severity and keep humans in critical parts of the AI workflow.
Map AI To Clear Security Workflows
- Apply AI where it maps to visibility, processing, or interpretation to avoid chasing every shiny use case.
- Keep humans especially in interpretation where security decisions are made.