Learn Cloud Security in Public Cloud the unbiased way from CyberSecurity Experts solving challenges at Cloud Scale. We can be honest because we are not owned by...
In this episode, we dive deep into Azure security, incident response, and the evolving cloud threat landscape with Katie Knowles, Security Researcher and former Azure Incident Responder. We spoke about common Azure incident response scenarios you need to prepare for, how identity and privilege escalation work in Azure, how Active Directory and Entra ID expose new risks and what security teams need to know about Azure networking and logging.Guest Socials: Katie's LinkedinPodcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter - Cloud Security BootCampIf you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity PodcastQuestions asked:(00:00) Introduction(02:27) A bit about Katie(03:17) Domain Admin in Azure(07:03) Common causes of incidents in Azure(08:53) Identities in Azure(11:44) Third Party Identities in Azure(17:34) Azure Networking and Incident Response(22:35) Common Incidents in Azure(26:53) AI specific incidents in Azure(28:45) Privilege escalation in Azure(39:37) Where to start with Azure Research?(48:20) The Fun Questions
--------
54:15
AWS Multi-Account Security: What Netflix Learned
🚀 How do you secure thousands of AWS accounts without slowing down developers? Netflix’s cloud security experts Patrick Sanders & Joseph Kjar join us to break down their identity-first security model and share lessons from scaling security across a massive AWS multi-account environment.In this episode, we cover:Why identity, not network, is the best security boundaryThe challenges of least privilege and right-sized accessHow Netflix migrates IAM roles while minimizing disruptionsThe impact of multi-account AWS security strategiesGuest Socials: Patrick's Linkedin +Joseph's LinkedinPodcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter - Cloud Security BootCampIf you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity PodcastQuestions asked:(00:00) Introduction(02:05) A bit about Joseph(02:32) A bit about Patrick(02:38) Scaling security across multiple accounts(03:29) Least Privilege is hard(06:44) Why go down the identity path?(08:49) Identity based approach for least privilege(15:43) Security at scale for Multi Account in AWS(23:54) Lessons from the project(27:02) What would be classified as an easy migration?(30:55) How the project has progressed?(35:01) Automation Pieces that enabled the project(37:54) Where to start with scaling security across Multi Accounts?(39:21) Resource Access Manager and how it fits into migrationResources discussed in this interview:Accelerate insights using AWS SDK instrumentation TalkPatrick and Joseph’s Talk - Netflix's massive multi-account journey: Year twoJoseph and Patrick's previous interview on Cloud Security Podcast
--------
50:33
Cloud Security Detection & Response Strategies That Actually Work
We spoke to Will Bengtson (VP of Security Operations at HashiCorp) bout the realities of cloud incident response and detection. From root credentials to event-based threats, this conversation dives deep into:
Why cloud security is NOT like on-prem – and how that affects incident response
How attackers exploit APIs in seconds (yes, seconds—not hours!)
The secret to building a cloud detection program that actually works
The biggest detection blind spots in AWS, Azure, and multi-cloud environments
What most SOC teams get WRONG about cloud security
Guest Socials: Will's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
- Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
If you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity Podcast
Questions asked:
(00:00) Introduction
(00:38) A bit about Will Bengtson
(05:41) Is there more awareness of Incident Response in Cloud
(07:05) Native Solutions for Incident Response in Cloud
(08:40) Incident Response and Threat Detection in the Cloud
(11:53) Getting started with Incident Response in Cloud
(20:45) Maturity in Incident Response in Cloud
(24:38) When to start doing Threat Hunting?
(27:44) Threat hunting and detection in MultiCloud
(31:09) Will talk about his BlackHat training with Rich Mogull
(39:19) Secret Detection for Detection Capability
(43:13) Building a career in Cloud Detection and Response
(51:27) The Fun Section
--------
57:58
CISO Challenges Across Industries
In this episode, we sit down with Sunil Rane, an experienced cybersecurity leader with over 20 years in cybersecurity across industries like healthcare, education, media, and consulting. Sunil shares unique insights into the diverse challenges faced by CISOs, from managing data sensitivity in healthcare to the lack of standardized frameworks in media, how to balance data availability and security without compromising operational efficiency, the complexities of being a custodian of data in consulting and how to manage cross-industry compliance and why communication and collaboration are critical for CISOs, from internal stakeholders to public sector regulators.
Guest Socials: Sunil's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
- Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
If you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity Podcast
Questions asked:
(00:00) Introduction
(02:13) A bit about Sunil Rane
(03:25) Cybersecurity in education and healthcare
(09:12) Cybersecurity and consulting
(15:49) Cybersecurity challenges in public and private sector
(18:35) Cybersecurity in the media industry
(25:48) Skillset for becoming a CISO
(29:36) The Fun Section
--------
31:38
Why Solving the Data Problem is Key to Cloud Security?
In this episode we’re joined by Francis Odum, founder and lead research analyst at Software Analyst Cyber Research. Drawing from his extensive research and conversations with CISOs, security operators, and vendors, Francis shares his insights on the state of identity security and the rise of non-human identities (NHI) in the cloud, why solving the data problem is critical to reducing false positives, improving SOC efficiency, and cutting costs, the early but growing landscape of AI and LLM security and its intersection with DSPM and data governance and predictions for 2025 trends, including what should be ditched and what the cybersecurity industry should prioritize.
Guest Socials: Francis's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
- Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
If you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity Podcast
Questions asked:
(00:00) Introduction
(01:56) A bit about Francis
(03:45) What is CNAPP in 2025?
(06:55) The Identity space in 2025
(10:34) The state of SOC in 2025
(19:23) The AI Security Ecosystem
(24:44) DSPM vs DLP
(29:48) What should we ditch in 2025?
(33:01) What should we see a lot more in 2025?
(41:39) A bit about Cloud Security Bootcamp
(42:58) The Fun Section
Resources spoken about during the episode:
Software Analyst Cyber Research
Learn Cloud Security in Public Cloud the unbiased way from CyberSecurity Experts solving challenges at Cloud Scale. We can be honest because we are not owned by Cloud Service Provider like AWS, Azure or Google Cloud.
We aim to make the community learn Cloud Security through community stories from small - Large organisations solving multi-cloud challenges to diving into specific topics of Cloud Security.
We LIVE STREAM interviews on Cloud Security Topics every weekend on Linkedin, YouTube, Facebook and Twitter with over 150 people watching and asking questions and interacting with the Guest.
Netherlands