Guests:

• Michele Chubirka, Staff Cloud Security Advocate, Google Cloud
• Sita Lakshmi Sangameswaran, Senior Developer Relations Engineer, Google Cloud

Topics:

• What is your reaction to “in the cloud you are one IAM mistake away from a breach”? Do you like it or do you hate it? Or do you "it depends" it? :-)
• Everyone's talking about how "identity is the new perimeter" in the cloud. Can you break that down in simple terms?
• A lot of people say “in the cloud, you must do IAM ‘right’”. What do you think that means? What is the first or the main idea that comes to your mind when you hear it?
• What’s this stuff about least-privilege and separation-of-duties being less relevant? Why do they matter in the cloud that changes rapidly?
• What are your IAM Top Pet Peeves?

Resources:

• Video (LinkedIn, YouTube)
• EP127 Is IAM Really Fun and How to Stay Ahead of the Curve in Cloud IAM?
• EP162 IAM in the Cloud: What it Means to Do It 'Right' with Kat Traxler
• IAM: There and back again using resource hierarchies
• IAM so lost: A guide to identity in Google Cloud
• I Hate IAM: but I need it desperately
• EP33 Cloud Migrations: Security Perspectives from The Field
• EP176 Google on Google Cloud: How Google Secures Its Own Cloud Use
• EP177 Cloud Incident Confessions: Top 5 Mistakes Leading to Breaches from Mandiant
• EP188 Beyond the Buzzwords: Identity's True Role in Cloud and SaaS Security
• “Identity Crisis: The Biggest Prize in Security” paper
• “Learn to love IAM: The most important step in securing your cloud infrastructure“ Next presentation

Guests:

• Ante Gojsalic, Co-Founder & CTO at SplxAI

Topics:

• What are some of the unique challenges in securing GenAI applications compared to traditional apps?
• What current attack surfaces are most concerning for GenAI apps, and how do you see these evolving in the future?
• Do you have your very own list of top 5 GenAI threats? Everybody seem to!
• What are the most common security mistakes you see clients make with GenAI?
• Can you explain the main goals when trying to add automation to pentesting for next-gen GenAI apps?
• What are your AI testing lessons from clients so far?

Resources:

• EP171 GenAI in the Wrong Hands: Unmasking the Threat of Malicious AI and Defending Against the Dark Side
• EP135 AI and Security: The Good, the Bad, and the Magical
• EP185 SAIF-powered Collaboration to Secure AI: CoSAI and Why It Matters to You
• SAIF.google
• Next SAIF presentation with top 5 AI security issues
• Our Security of AI Papers and Blogs Explained

Guest:

• Travis Lanham, Uber Tech Lead (UTL) for Security Operations Engineering, Google Cloud

Topics:

• There’s been a ton of discussion in the wake of the three SIEM week about the future of SIEM-like products. We saw a lot of takes on how this augurs the future of disassembled or decoupled SIEMs. Can you explain what these disassembled SIEMs are all about?
• What are the expected upsides of detaching your SIEM interface and security capabilities from your data backend?
• Tell us about the early days of SecOps (nee Chronicle) and why we didn’t go with this approach?
• What are the upsides of a tightly coupled datastore + security experience for a SIEM?
• Are there more risks or negatives of the decoupled/decentralized approach? Complexity and the need to assemble “at home” are on the list, right?
• One of the 50 things Google knew to be true back in the day was that product innovation comes from technical innovation, what’s the technical innovation driving decoupled SIEMs?
• So what about those security data lakes? Any insights?

Resources:

• EP139 What is Chronicle? Beyond XDR and into the Next Generation of Security Operations
• EP190 Unraveling the Security Data Fabric: Need, Benefits, and Futures
• EP184 One Week SIEM Migration: Fact or Fiction?
• Hacking Google video series
• Decoupled SIEM: Brilliant or …. Not :-)
• UNC5537 Targets Snowflake Customer Instances for Data Theft and Extortion
• So, Why Did I Join Chronicle Security? (2019)