Jeff Moncrief discusses Sonrai Security's Cloud Permissions Firewall, and the best practices for using AI-powered summaries and orchestration to ensure security at all points.
Topics Include:
- Jeff Moncrief introduces Sonrai Security and Cloud Permissions Firewall
- Focus on achieving least privilege access in AWS quickly
- Lightweight orchestration layer secures IAM from inside out
- Eliminates need to write hundreds of individual policies
- Customers struggle with identity risk in CNAP/CSPM tools
- Generative AI adoption driving top security use cases
- Bedrock and AI agents mentioned daily by customers
- Product managers should consider underlying platform security risks
- AI models have control over infrastructure they run on
- Identity is fundamental infrastructure enabling AWS AI models
- Sonrai uses Bedrock capability inside Cloud Permissions Firewall
- Just-in-time access provides temporary, time-boxed AWS access
- Bedrock generates session summaries from audit logs automatically
- Plain English insights show what happened during sessions
- Session summaries improve audit compliance and incident response
- Customer with 1000 accounts manually deployed service controls
- Friday afternoon deployment caused very bad weekend disaster
- Policy inheritance issues broke child accounts and OUs
- Planning and orchestration essential for scaling AI security
- Sonrai platform built 100% cloud-native on AWS
- Coordinates service control policies and resource control policies
- Just-in-time access relies on IAM Identity Center
- Participates in ISV Accelerate and AWS Marketplace
- Security best practices start with identity as foundation
- "Hackers don't hack, they just log in" philosophy
- Eliminate standing privileges with just-in-time access patterns
- Restrict AI services by user, location, and account
- Review over-permissioned or inactive third-party vendor access
- Actionable insights through useful logging and AI summarization
- Future focus on protecting new services and permissions
Participants:
- Jeff Moncrief – Field CTO & Director of Sales Engineering, Sonrai Security
Links:
See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/
Popular Podcasts
On Purpose with Jay Shetty
I’m Jay Shetty host of On Purpose the worlds #1 Mental Health podcast and I’m so grateful you found us. I started this podcast 5 years ago to invite you into conversations and workshops that are designed to help make you happier, healthier and more healed. I believe that when you (yes you) feel seen, heard and understood you’re able to deal with relationship struggles, work challenges and life’s ups and downs with more ease and grace. I interview experts, celebrities, thought leaders and athletes so that we can grow our mindset, build better habits and uncover a side of them we’ve never seen before. New episodes every Monday and Friday. Your support means the world to me and I don’t take it for granted — click the follow button and leave a review to help us spread the love with On Purpose. I can’t wait for you to listen to your first or 500th episode!
Crime Junkie
Does hearing about a true crime case always leave you scouring the internet for the truth behind the story? Dive into your next mystery with Crime Junkie. Every Monday, join your host Ashley Flowers as she unravels all the details of infamous and underreported true crime cases with her best friend Brit Prawat. From cold cases to missing persons and heroes in our community who seek justice, Crime Junkie is your destination for theories and stories you won’t hear anywhere else. Whether you're a seasoned true crime enthusiast or new to the genre, you'll find yourself on the edge of your seat awaiting a new episode every Monday. If you can never get enough true crime... Congratulations, you’ve found your people. Follow to join a community of Crime Junkies! Crime Junkie is presented by audiochuck Media Company.
Ridiculous History
History is beautiful, brutal and, often, ridiculous. Join Ben Bowlin and Noel Brown as they dive into some of the weirdest stories from across the span of human civilization in Ridiculous History, a podcast by iHeartRadio.