Stay up to date with the latest on SANS cloud security, DevSecOps, and application security.
Joined May 2009
- Tweets 9,445
- Following 421
- Followers 14,954
- Likes 344
6,951 Photos and videos
Agentic AI can use tools, follow instructions, and carry work across sessions. This webinar shows how those capabilities map to cloud security workflows through GitHub Copilot CLI primitives: skills, agents, sessions, and instructions.
π buff.ly/VTvTurM
1
105
Observability is not just about uptime.
Jun 18, see how Kubernetes telemetry supports alerting and incident response using OpenTelemetry, Grafana, and Kong.
π buff.ly/HcnGCUa
#CloudSecurity #DevSecOps #Grafana
117
Secure the Cloud. Secure AI.
The SANS Cloud Security Exchange comes to the Summit stage in San Francisco this August ft. speakers from AWS, Google, Microsoft, Anthropic, SANS & more.
Agentic AI. Zero Trust. AI governance.
β¬οΈ go.sans.org/UCQIRz
#CloudSecurity #AISecurity
2
97
β οΈ Stolen tokens and abused OAuth consent donβt trigger standard alerts. That is the problem SEC559 is built to solve.
Detection and response across the full identity lifecycle. Real telemetry, real techniques.
Beta. Las Vegas. Sept 21β25.
π buff.ly/uJeYSfb
1
88
Your API gateway already sees the traffic.
Jun 18, learn how Kong Gateway telemetry and OpenTelemetry help detect attacks against Kubernetes microservices.
π buff.ly/HcnGCUa
#Kubernetes #APIsecurity #DevSecOps
1
111
πΊ Now OnDemand.
Watch how SPIFFE and SPIRE can replace static NHI secrets with workload identity and short-lived tokens.
π buff.ly/qYSubqf
#OnDemand #NHI #IdentitySecurity
1
2
86
π¨ LIVE in 1 hour!
Static secrets do not scale for agents and ephemeral workloads.
See how SPIFFE and SPIRE enable short-lived credentials and runtime authorization.
π buff.ly/qYSubqf
#NHI #IdentitySecurity
89
Tomorrow: static NHI secrets meet runtime identity.
See how SPIFFE and SPIRE issue short-lived workload credentials for agents and ephemeral cloud workloads.
π
Jun 8 | 11AM ET
π buff.ly/qYSubqf
#NHI #IdentitySecurity #CloudSecurity
1
1
164
AI-enabled microservices create risks you cannot manage without telemetry.
Jun 18, see how OpenTelemetry, Grafana, and Kong Gateway expose Kubernetes traffic patterns and attack signals.
π buff.ly/HcnGCUa
#DevSecOps #Kubernetes #OpenTelemetry
149
Agent identity should not work like human identity.
Jun 8, learn how runtime authorization and short-lived tokens can replace static secrets for NHIs.
π buff.ly/qYSubqf
#NHI #IdentitySecurity #CloudSecurity
2
212
Secure the Cloud. Secure AI.
The SANS Cloud Security Exchange comes to the Summit stage in San Francisco this August ft. speakers from AWS, Google, Microsoft, Anthropic, SANS & more.
Agentic AI. Zero Trust. AI governance.
β¬οΈ go.sans.org/UCQIRz
#CloudSecurity #AISecurity
1
1
123
Every agent and workload does not need another static secret.
Jun 8, see how SPIFFE JWTs can be exchanged for access tokens without long-lived NHI credentials.
π buff.ly/qYSubqf
#NHI #CloudSecurity
1
95
π’ Now OnDemand!
Investigate cloud breach timelines and attacker activity using CLI tools and real telemetry. A detective-style workshop led by Ryan Nicholson.
πΊ Watch now: π buff.ly/N58RV9B
#OnDemand #CloudSecurity #SEC541 #ThreatDetection
1
164
67% of incidents are now identity-related (Sophos, 2026).
SEC559 covers detection and response for the attacks that look like normal access. Entra ID, hybrid AD, real telemetry.
Beta. Las Vegas. Sept 21β25.
π buff.ly/uJeYSfb
1
152
π¨ LIVE in 1 hour!
Join Ryan Nicholson for a hands-on cloud investigation lab. Analyze attacker traces, build breach timelines, and level up your detection skills.
π buff.ly/N58RV9B
#CloudSecurity #SEC541 #ThreatHunting
152
π΅οΈββοΈ Tomorrow: Put your cloud sleuthing skills to the test.
Join the Baker221b challenge to investigate real cloud breach scenarios using CLI tools & telemetry.
π buff.ly/N58RV9B
#ThreatDetection #CloudSecurity #SEC541
1
175
Solve a hands-on cloud breach mystery using command-line tools, real telemetry & your detective instincts.
ποΈ Ryan Nicholson
π buff.ly/N58RV9B
#SEC541 #CloudSecurity
2
223
Non-human identities already outnumber humans by an estimated 82:1.
Static secrets will not scale with agentic and ephemeral workloads.
Learn how SPIFFE and SPIRE change the model.
π buff.ly/qYSubqf
#IdentitySecurity #CloudSecurity #NHI
1
129
πΊ Now OnDemand.
This session shows how agentic code review integrates with version control systems and changes how teams evaluate code before deployment.
It provides a clear view of how automated analysis fits into modern pipelines.
π buff.ly/QNb6Fvm
9
387
π’ Now OnDemand!
Investigate cloud breach timelines and attacker activity using CLI tools and real telemetry. A detective-style workshop led by Ryan Nicholson.
πΊ Watch now: π buff.ly/LAw6Rwu
#OnDemand #CloudSecurity #SEC541 #ThreatDetection
135