Cloud Security Podcast

The Truth About CNAPP and Kubernetes Security

Jan 14, 2025

James Berthoty, founder of Latio.Tech, shares his expertise on cloud security tools. He clarifies the concept of CNAPP and discusses whether Kubernetes security is becoming the new standard. The chat dives into the distinction between runtime security and vulnerability management, emphasizing the need for clear approaches in cloud-native security. James also addresses the evolving challenges security engineers face in integrating security within development processes, alongside the pressing necessity for user-centric security tool consolidation.

40:08

Creator website

Episode guests

James Berthoty

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The podcast emphasizes that securing containers is essential for cloud security as organizations increasingly adopt cloud-native architectures.

There is a growing concern over the complexity of CNAPP as all-in-one solutions fail to meet specific user needs effectively.

Deep dives

Cloud Security is Container Security

Cloud security is fundamentally centered around container security, which has often been misunderstood due to the complexities surrounding cloud infrastructure learning. The podcast underscores that as organizations increasingly adopt mid-market cloud-native architectures, the essence of cloud security boils down to effectively securing containers. While many tend to separate traditional cloud security concerns from container security, the reality is that a significant portion of enterprise application infrastructure relies on containerization. This aligned perception leads to a clearer understanding of security needs and priorities in cloud environments.

Intro

2min

Navigating Cloud Security Challenges

22min

Navigating Kubernetes within Cloud Native Security Frameworks

2min

Navigating Security Challenges in AI and Enterprise

9min

Navigating Acronyms: The Future of Cloud Security Terminology

2min

A Dive into Personal Interests and Culinary Favorites

3min

In this episode of the Cloud Security Podcast, host Ashish Rajan speaks to James Berthoty, founder of Latio.Tech and an engineer-driven analyst, for a discussion on cloud security tools. In this episode James breaks down CNAPP and what it really means for engineers, if kubernetes secuity is the new baseline for cloud security and runtime security vs vulnerability management.

Guest Socials: ⁠⁠⁠James's Linkedin

If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Podcast- Youtube⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Newsletter ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security BootCamp⁠

If you are interested in AI Cybersecurity, you can check out our sister podcast -⁠ AI Cybersecurity Podcast

Questions asked:

(00:00) Introduction

(02:26) A bit about James

(03:20) What in Cloud Security in 2025?

(04:51) What is CNAPP?

(07:01) Differentiating a vulnerability from misconfiguration

(11:51) Vulnerability Management in Cloud

(15:38) Is Kubernetes becoming the default?

(21:50) Is there a good way to do platformization?

(24:16) Should CNAPP include Kubernetes?

(28:07) What is AI Security in 2025?

(35:06) Tool Acronyms for 2025

(37:27) Fun Questions

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Cloud Security Podcast

The Truth About CNAPP and Kubernetes Security

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Cloud Security is Container Security

Challenges with CNAP and Acronyms

The Misunderstanding of SOC Responsibilities

Anticipating the Future of AI Security

Remember Everything You Learn from Podcasts