Cloud Security Podcast

Cloud Security Podcast Team
undefined
34 snips
Oct 3, 2025 • 46min

The Truth About AI in the SOC: From Alert Fatigue to Detection Engineering

Allie Mellen, a Principal Analyst at Forrester specializing in security analytics and generative AI, digs into the evolving landscape of Security Operations. She explains the ongoing "massive reset" in SOCs driven by generative AI and better data management. Allie advocates for the shift from traditional SOC models to Detection Engineering. She discusses practical AI applications, the importance of explainability, and how companies are leveraging AI for triage. Tune in for insights into the future of AI and its role in enhancing security operations.
undefined
Sep 23, 2025 • 55min

The Security Gaps in AWS Bedrock & Azure AI You Need to Know

In this insightful discussion, Kyler Middleton, a Principal Developer specializing in AI solutions, and Sai Gunaranjan, a Lead Cloud Architect for Azure, dive into the security pitfalls of AWS Bedrock and Azure AI. They highlight Azure's alarming data routing defaults that pose compliance risks and AWS’s struggle with logging and resource security. Both experts emphasize the crucial skills needed for transitioning from cloud to AI security and recommend starting with secure defaults and small-scale projects like chatbots to ensure safety in AI deployments.
undefined
18 snips
Sep 16, 2025 • 30min

The Evolution of Email Security: From Pre-Breach to Post-Breach Protection

In this conversation, Rajan Kapoor, Field CISO at Material Security and former Director of Security at Dropbox, dives into the outdated pre-breach mindset of email security. He emphasizes the critical need for post-breach protection to safeguard sensitive data inside mailboxes. Rajan discusses the interconnectedness of productivity suites like Google Workspace and Microsoft 365, which have transformed the inbox into a security risk. He also addresses the emerging threats posed by AI co-pilots that could expose over-shared information, urging for a shift to comprehensive workspace security.
undefined
11 snips
Sep 9, 2025 • 49min

Using AI to Fix Your Cloud Security Backlog beyond Visibility

Snir Ben Shimol, CEO of Zest Security, challenges the traditional views on vulnerability awareness, arguing that knowledge alone doesn't enhance security. He suggests that AI can tackle cloud security backlogs effectively by identifying critical changes that can significantly reduce vulnerabilities in one go. Their conversation also touches on the evolution of cloud security from mere visibility to proactive measures. Plus, the duo lightens the mood with a fun discussion about their favorite healthy cuisines, especially Thai food!
undefined
20 snips
Aug 27, 2025 • 47min

Your SecOps Team Can't Save Your Cloud: A New Blueprint for Security.

Gil Geron, CEO of Orca Security and an expert in cybersecurity, discusses the evolution of cloud security and the limitations of traditional SecOps models. He emphasizes the need for a proactive approach, integrating security as an end-to-end workflow. The role of AI is pivotal in reducing alert fatigue, as Geron shares a case study on prioritizing vulnerabilities effectively. He also highlights the importance of collaboration between security and engineering teams to strengthen overall security in cloud environments.
undefined
Aug 22, 2025 • 50min

New Identity Blueprint for a Future with Cloud & AI

Join Jasson Casey, CEO and co-founder of Beyond Identity, as he dives into the future of identity management. He reveals that traditional authentication methods, including MFA, are outdated and vulnerable to attack. Jasson advocates for device-bound identities using hardware-backed secure enclaves, making credentials un-phishable. He also addresses the rising threats posed by AI, like deepfakes and social engineering, highlighting the need for a robust shift in security practices. Plus, he shares his passion for cooking, connecting culinary arts with cybersecurity!
undefined
18 snips
Aug 8, 2025 • 53min

AI for SOC Automation: A Blueprint for the New world of Incident Response

In this engaging discussion, Kyle Polley, who leads the AI security team at Perplexity, shares his insights on transforming Security Operations Centers (SOCs) for modern cybersecurity challenges. He emphasizes the need to shift from outdated SIEM systems to advanced data lake architectures that leverage AI agents for efficient incident response. Kyle also addresses misconceptions about compliance in AI security and highlights the importance of detecting true threats while minimizing analyst burnout. Light-hearted moments reveal his passion for Tex-Mex cuisine and personal hobbies.
undefined
10 snips
Aug 7, 2025 • 53min

The Truth About Agentic AI in the SOC: Reality vs. Hype

Edward Wu, the innovative founder and CEO of Dropzone AI, shares insights on the practical integration of AI in Security Operations Centers (SOCs). He discusses how AI acts as a supportive tool for analysts rather than a replacement, debunking myths of full automation. The conversation covers AI's role in swiftly investigating alerts, the importance of transparency, and the challenges of AI hallucinations. Wu also predicts an evolution in SOC roles as AI takes on repetitive tasks, encouraging a balanced approach to technology in cybersecurity.
undefined
Jul 22, 2025 • 45min

Understanding a $10B Fraud Vector in Cloud-Native Workflows

Frank Teruel, COO at Arkose Labs, specializes in digital identity and fraud prevention. He discusses the alarming rise of SMS toll fraud, a $10 billion issue where bots exploit cloud workflows, causing unexpected operational costs. Teruel shares a striking story of a cloud container hijack that resulted in half a million dollars lost to crypto mining. The conversation emphasizes the need for enhanced security measures within digital environments and the critical role organizations play in combating this sophisticated fraud.
undefined
Jul 17, 2025 • 20min

How BT Tackled 180 Years of Legacy to Build a Passwordless Future

Christian Schwarz, Security Director for Network Services at BT Group, shares insights from his role in modernizing security at a 180-year-old telecom giant. He discusses the challenges of managing legacy systems and discovering hundreds of thousands of hidden credentials. Transitioning to a passwordless future, he emphasizes reducing friction while enhancing security design. Intrigued by fostering a proactive security culture, he also dives into his personal passions like cycling and culinary delights, blending insights on innovation and work-life balance.

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!
App store bannerPlay store banner
Get the app