Name: Securing Your Cloud and AI Usage in 2025
Start: 2025-03-12T18:00:00Z
End: 2025-03-12T18:00:27.000Z
Location: BrightTALK
Rating: 5

Palo Alto Networks is the next-generation security company, leading a new era in cybersecurity by safely enabling applications and preventing cyber breaches for tens of thousands of organizations worldwide. Built with an innovative approach and highly differentiated cyberthreat prevention capabilities, our game-changing security platform delivers security far superior to legacy or point products, safely enables daily business operations, and protects an organization's most valuable assets. Find out more at www.paloaltonetworks.com or call us at 1-877-524-1031.

AI agents powered by the Model Context Protocol (MCP) are reshaping how enterprises work — coordinating tasks, integrating with tools and making autonomous decisions at scale. But the very power that makes MCP so transformative also makes it dangerous. Attackers don’t need to break your infrastructure; they just need to trick your AI. From prompt injections and impersonated services to excessive privilege and compromised “trusted” tools, MCP introduces a new class of vulnerabilities that can quietly erode revenue, trust and compliance.

Traditional security controls aren’t designed for this environment. AI agents move fast, interpret loosely and can be manipulated in ways legacy defenses can’t detect. The question isn’t whether MCP-enabled agents can be exploited — it’s how quickly adversaries will take advantage.

In this session, we’ll demystify MCP, expose the top security gaps it creates and share a practical security playbook for containing AI risk. Whether you’re an executive asking “what’s the business impact?” or a practitioner asking “how do I defend it?”, you’ll walk away with a clear roadmap for securing your agentic future.

You’ll learn:

● How MCP works — and why it’s becoming the backbone of agentic AI.
● The most common and dangerous ways AI agents can be tricked.
● Security strategies to control agent “agency” and prevent rogue behavior.
● What leaders must do now to protect AI-powered systems before attackers strike.

Join us to uncover the hidden risks in MCP — and how to defend your AI before it makes a decision you can’t take back.

Can your AI Be Tricked? Exposing the Security Gaps in MCP

AI systems are no longer theoretical targets — they’re already being exploited. From jailbreaks and prompt injections to data leaks and agent manipulation, attackers are using simple language to probe and break systems once thought secure. Traditional pentesting can’t keep pace with this reality. AI behaves unpredictably, its vulnerabilities change with context and every new update or integration introduces fresh risk.

In this session, we’ll explore why AI needs an entirely new red teaming playbook. You’ll hear real-world evidence of how even the most advanced models fail under adversarial testing, and why continuous red teaming — across models, applications and agents — is now essential. We’ll break down how red teaming works in practice, from simulating guardrail bypasses and data exfiltration to uncovering context-driven flaws that only appear in deployment.

You’ll learn:

● Why AI’s nondeterministic nature breaks the old red-teaming model.
● The most common attack vectors enterprises face today.
● How vulnerabilities differ in models, applications and agents.
● How continuous red teaming builds confidence for developers, executives and customers alike.

Join us to see how AI red teaming turns hidden flaws into actionable insights — helping you protect your business before attackers exploit the gaps.

Red Teaming Your AI Systems Before Attackers Do

Generative AI is transforming how businesses innovate — but it also opens the door to risks that only surface once systems go live. Even rigorously trained models can harbor hidden flaws that attackers exploit through prompt injection, jailbreaks, tool misuse or data exfiltration. These aren’t rare edge cases — organizations have already suffered financial loss, compliance penalties and reputational damage from AI failures.

In this webinar, we’ll show why static testing and traditional tools can’t keep pace with adaptive AI systems. You’ll learn:

• How vulnerabilities emerge when chatbots and agents interact with real users.
• Real-world cases where runtime attacks disrupted operations and eroded trust.
• Why legacy security methods fail to block AI-specific threats.
• A practical framework for runtime protection using inspection, monitoring and adaptive defenses.
• How Prisma AIRS™ AI Runtime Security delivers broad detection and low-latency safeguards without slowing innovation.

Join us to see how runtime protection transforms AI from an unpredictable risk into a trusted, resilient business enabler.

When Hidden Flaws Surface: Securing AI at Runtime

AI is a powerful driver of innovation, but it can introduce an invisible risk: unintentional data leaks. These leaks are often self-inflicted when employees, customers or partners unintentionally expose sensitive data through AI tools. Systems can remember, replicate and resurface confidential information in unexpected ways, leaving organizations vulnerable without a clear forensic trail. The ultimate risk isn’t just fines or a breach notification, but a profound loss of trust from customers, regulators and boards.

In this webinar, we'll shift the conversation from a technical problem to a trust-driven business imperative. You'll learn:

● Why traditional security models fail.
● The most common ways sensitive data slips into and out of AI systems.
● How to build a proactive AI governance strategy with real-time visibility and automated guardrails.
● How to accelerate AI adoption safely. 

Join us to move beyond reactive security and create a responsible AI framework that lets you innovate confidently.

When AI Leaks: Containing and Preventing Sensitive Data Leaks

AI is redefining what’s possible, with over 78% of global enterprises having integrated it into their operations. However, only 6% have an advanced AI security strategy framework. To compensate, many organizations are putting AI guardrails in place, hoping to seal security gaps without slowing innovation.

In this webinar, we'll expose the "guardrail trap" — the reason why these traditional mechanisms often fail under real-world pressure. Drawing on recent examples, we'll show you how adversaries exploit fragmented standards and risky design decisions, turning a "lethal trifecta" of external data, permissive tools and broad access rights into a major liability. 

You’ll leave with a clear framework for avoiding the guardrail trap — and a view into how Prisma AIRS™ can help your organization build AI systems that aren’t just functional, but resilient, compliant and trustworthy.

The Guardrail Trap: Why Existing AI Security Strategies Aren't Enough

Organizations face pressure as AI adoption accelerates and cloud environments expand, yet most lack full visibility into their security posture. With 79% of organizations reporting visibility gaps leading to three times more security incidents, the stakes are high. As AI spending surges across 96% of enterprises, identifying vulnerabilities in cloud networks and AI systems is critical.

This webinar explores three approaches to address security blind spots that put your organization at risk. Gain insights to protect cloud infrastructure and AI deployments before incidents occur.

· Techniques for assessing network risk in public cloud environments
· Strategies to test cloud firewalls against advanced threats
· Methods to identify exposures in AI applications, models, and data

Learn how complimentary tools can uncover security gaps and AI vulnerabilities missed by traditional methods. Watch to shift from reactive response to proactive security management.

3 Ways to Identify Your AI & Cloud Network Security Blind Spots

Cryptographically relevant quantum computers threaten traditional key exchange methods, leaving encrypted data vulnerable to harvest-now-decrypt-later attacks. Adversaries collect encrypted communications today, intending to decrypt them once quantum computers advance. Organizations must explore protection strategies beyond standard encryption.

This webinar examines quantum key distribution (QKD), an out-of-band key exchange technology using quantum mechanics instead of mathematical formulas. Unlike conventional methods, QKD generates encryption keys through a separate appliance, ensuring harvested data stays secure as attackers never access the key material. Topics include:

· How QKD integrates with VPN infrastructure
· Real-world use cases securing financial and government communications
· QKD’s advantages, limitations, and distance constraints

Learn how early adopters deploy QKD to protect sensitive data against future quantum threats.

What is Quantum Key Distribution?

Traditional random number generators may leave cryptographic keys vulnerable to attacks, including quantum computing threats. As organizations transition to quantum-resistant security, entropy quality for encryption keys is critical yet often overlooked.

This session explores quantum random number generators (QRNGs) and their role in enhancing data security. Palo Alto Networks experts discuss the differences between pseudo-random, true random, and quantum random number generators, highlighting why entropy quality is as vital as key length for protecting sensitive data. The session includes evidence of vulnerabilities from weak entropy and guidance on implementing QRNG technology.

· Types of random number generators and their security implications
· How weak entropy has compromised SSL/TLS servers and IoT devices
· Current QRNG options, from embedded chips to cloud-based services

Watch this webinar to learn how QRNGs can strengthen your cryptographic foundation.

What is Quantum Random Number Generator QRNG?

Quantum computing threatens encryption standards, making the shift to postquantum cryptography (PQC) essential. Traditional algorithms protecting sensitive data today will become vulnerable as quantum computers emerge.

This session provides security leaders a roadmap for PQC migration. Experts from Palo Alto Networks cover technical fundamentals, standardization efforts, and strategies for quantum readiness. Key topics include:

· NIST-approved PQC algorithms for lattice-based, hash-based, and code-based approaches
· Hybrid cipher strategies combining classical and postquantum keys for compatibility and security
· Crypto agility frameworks enabling rapid algorithm transitions
· Migration scope and timeline for VPNs, TLS, certificate authorities, and endpoints

Cryptographic transitions take time—TLS 1.1 remains widely supported despite deprecation. With PQC adoption likely taking 8-10 years, organizations must start planning now to protect against quantum threats.

What is Post-Quantum Cryptography?

The threat of quantum computing to cryptography is imminent, making quantum readiness essential. Delaying initiatives risks exposing sensitive data to harvesting attacks, where encrypted information is collected now and decrypted later when quantum computers advance.

This session provides a framework for transitioning to a quantum-resistant network. Experts from Palo Alto Networks outline steps to assess cryptographic posture, prioritize migration based on business impact, and implement interim protections. Topics include:

· Conducting a cryptographic inventory to identify vulnerabilities
· Categorizing data by sensitivity and business impact to guide priorities
· Strengthening VPN and TLS security against quantum threats
· Using labs to evaluate post-quantum cryptography

Quantum migration is a multi-year initiative requiring careful planning. Start now to protect data needing long-term confidentiality. Watch to build a tailored quantum readiness roadmap.

Kickstarting Your Quantum Readiness Plan

Quantum computing threatens enterprise security as traditional encryption like RSA and elliptic curve cryptography nears obsolescence. Cryptographically relevant quantum computers enable harvesting attacks, where adversaries collect encrypted data now to decrypt later, leaving organizations vulnerable.

This session examines quantum algorithms like Shor's and Grover's that compromise encryption, focusing on risks to VPNs, SSL/TLS, digital signatures, and software signing. Learn why nation-states are harvesting encrypted communications and why immediate action is critical. Topics include quantum-resistant upgrades for key applications, the urgency of addressing harvesting attacks, and challenges with early post-quantum cryptography implementations.

Watch this webinar to understand the quantum threat landscape and why transitioning to quantum-resistant infrastructure must be prioritized before adversaries exploit vulnerabilities at scale.

Quantum Threats: What Every CISO Should Know

The encryption securing digital communications faces a major threat from quantum computers, which could break cryptographic algorithms protecting financial transactions and government secrets. With rapid advancements and investments, a cryptographically relevant quantum computer may arrive sooner than expected.

This webinar explores the quantum computing threat and offers a roadmap for transitioning to quantum-resistant security. Experts Phil Quan and Ru Chesa from Palo Alto Networks discuss how quantum algorithms like Shor's and Grover's threaten encryption, vulnerabilities in current PKI infrastructure, and implications for security. Topics include:

· How quantum computing enables faster cryptographic attacks
· When quantum computers might break encryption
· Government mandates driving post-quantum cryptography
· Steps to inventory cryptographic assets and prioritize migration

Act now to build quantum-resistant defenses before encryption becomes obsolete.

Quantum Computing: Closer than you think–but not as difficult as you expect

Modern data centers face an unprecedented series of security challenges - an increasingly intense threat environment, new threat vectors and risks from every AI app, and the "East-West blind spot," where threats move laterally between servers, completely invisible to traditional perimeter firewalls. This problem grows exponentially in distributed, multi-site environments, where maintaining a consistent security posture often seems impossible.

Join experts from Arista and Palo Alto Networks to understand a unified solution that solves these challenges without requiring a complex network redesign. Learn how the Arista data center fabric intelligently steers traffic to the Palo Alto Networks Next-Generation Firewall for deep, Layer 7 inspection, with policy then enforced at wire speed directly in the network.

This session will demonstrate how this integrated solution:
● Eliminates the East-West blind spot in a single data center.
● Extends to provide a single, consistent security policy across a multi-site environment using a single, seamless management experience
● Avoids common multi-site issues like asymmetric routing and inefficient traffic "tromboning."

Discover how to build a scalable, consistent, and automated Zero Trust strategy for your entire data center infrastructure.

Comprehensive Data Center Security for the Age of AI

Attackers are fully focused on utilizing the identity when infiltrating organizations through their endpoints. Most security teams are still fighting these threats with disconnected tools, creating dangerous blind spots that let threats slip through undetected.

Don’t let siloed security create blind spots. Join us for this webinar where our speakers, Niels van Bennekom from CyberArk, and Nadav Shai Kanon from Palo Alto Networks, will walk through the importance of breaking down silos in your organization’s security to protect the identity at the endpoint.

What you’ll learn:
● The risks organizations face through approaching endpoint protection and security in a siloed manner.
● What a defense-in-depth strategy looks like when protecting endpoints.
● How to transform your organization’s endpoint security from reactive to proactive with solution integrations.

Bridging security gaps with defense-in-depth: Tackling vulnerabilities of siloed security

According to Unit 42®, 80% of security exposures occur in the cloud, with attacks increasing almost 2x in the past three years. To stay ahead, modern organizations are adopting cloud detection and response (CDR) approaches in record numbers.

Join Forrester VP and Principal Analyst Andras Cser and Palo Alto Networks Technical Evangelist Ory Segal in a candid discussion on the state of CDR. They'll dive deep into cloud security trends, discuss real customer challenges and provide actionable recommendations to help your organization build a resilient CDR program.

What you'll learn:

- The state of cloud security: Understand why traditional security strategies are failing and how attackers are exploiting new cloud vulnerabilities faster than ever.
- Proactive vs. reactive approaches: Discover how a prevention-first approach is crucial to stopping attacks before they escalate.
- A strategic roadmap: Walk away with concrete, actionable steps for building a resilient CDR program, including how to improve threat detection and automate response.

This is a must-attend session for security leaders looking to move beyond reactive defense and stop cloud attacks in real time.

The State of Cloud Detection & Response, Featuring Forrester

Digital transformation is changing how we do business, creating incredible opportunities for growth and innovation. But as we embrace new technologies and workflows, we also open the door to new cyber risks. 

Don't let these challenges slow your progress. Join us to learn how to stop being a gatekeeper and start turning your security operations into an enabler of business growth.

In this session, you'll discover:  
● Discover the latest social engineering trends from Unit 42 research.
● Empower your security teams with automation and machine-learning tools to focus on the most critical threats.
● Strengthen your organization's defenses by leveraging AI to respond faster and more effectively.
● See how the Cortex XSIAM, the AI-Driven SOC Platform makes all of this possible.

Register today and take the first step toward a more secure digital future.

Secure Your Innovations, Outsmart Cyber Risks

Phantom Taurus isn't just another advanced persistent threat (APT), it's an evolution of cyber espionage itself. This highly sophisticated Chinese APT group identified by Unit 42 uses custom-built, evasive malware to bypass traditional defenses and breach high-value targets.

In this live briefing, our Unit 42 experts will share exclusive, actionable intelligence from our investigation conducted over the past two and a half years. You will learn how to:

● Unmask the Adversary: Go behind the scenes of the investigation that began with a single activity cluster and resulted in a newly attributed threat actor.
● Dissect the Novel Malware: Understand the details of the NET-STAR malware suite, including its fileless components and sophisticated evasion techniques.
● Harden Your Defenses: Learn the TTPs of Phantom Taurus to better protect yourself, and see how Palo Alto Networks provides a comprehensive defense against this new threat.

Get the insights you need to stop Phantom Taurus in your organization.

To learn more, check out the threat research: http://unit42.paloaltonetworks.com/phantom-taurus

UNMASKED: Inside a New Chinese Nexus APT

The truth? Upgrading from QRadar to Cortex XSIAM is easier than you think. Join Palo Alto Networks and IBM as we separate fact from fiction when it comes to modernizing your SOC. 

In this fast-paced myth-busting session, we’ll tackle the top concerns about moving to a cloud-native, AI-powered SOC, from fears of time-consuming deployments to worries about cost, complexity, and security. Hear directly from security leaders who’ve made the switch—and haven’t looked back.

Featuring Chris Meenan, formerly the VP of Security Product Management, Threat Management at IBM, now Security Operations Transformation Leader at Palo Alto Networks, Bill Crawford, VP of Sales at IBM, and Danny Milrad, Principal Product Marketing Manager for Unit 42 at Palo Alto Networks, this session delivers expert insights, real customer stories, and practical tips to simplify your journey from QRadar to the future of security operations.

What you’ll learn:
● Why QRadar customers are making the move now.
● What real customers say about migration timelines and outcomes.
● How IBM and Palo Alto Networks can help you upgrade seamlessly.

Don’t let outdated assumptions hold your SOC back. It’s time to debunk the myths and move forward with confidence.

5 QRadar Migration Myths Debunked: Why You Should Move to a Cloud-Native, AI-Driven SOC

Web applications are central to modern life. For governments, they are an important channel to communicate information to the public and provide essential services. For businesses, they serve as a source of revenue, efficiency, and customer insights.

Take a close look at the most important trends shaping the web application and API threat landscape today, including vulnerability exploitation, DDoS attacks, bot traffic, and third-party supply chain risk.

Join Cloudflare Application Security experts Daniele Molteni, Product Manager and Catherine Newcomb, Product Marketing Manager, for a discussion on the latest application and API security threat research sourced from Cloudflare’s global network, including:

Shifts in blocked web application and API traffic
The growth and increased complexity of DDoS attacks
The weaponization of vulnerabilities at breakneck speed
The growing risk of shadow APIs
Risks associated with third-party components such as scripts, outbound connections, and cookies

State of Application Security in 2024

The growing cloud footprint of most enterprises requires a multi-tool approach to security, but the most crucial ingredient is the over-arching architectural principle guiding their work — zero trust. 

In this session, we’ll dig into how to use interconnected but independent layers of security to build a zero trust hybrid service delivery environment spanning internal resources and multiple clouds and networks.

Layered Security, One Principle: Zero Trust

They hybrid clouds have been the norm for a long time now. We have spent a long time applying consistent tooling across our various clouds but protecting them is still a big challenge. We use public clouds, private clouds and SaaS solutions and yet we don’t have a consistent approach to protecting the data. What happens if your SaaS provider fails? How do you get your data back? When did you last check this?

How well are the cloud systems protected? Where is the demarcation line? Is your business aware of the risks it might be taking? And that’s even before we find those SaaS environments that were bought on a credit card without IT's knowledge.

Securing and protecting these environments is a huge challenge so join this webinar to get a strong checklist of areas to consider and approaches you can take that will protect you, your organisation and the data you own.

Wrapping Your Head Around Your Cloud Environment

Securing the cloud ecosystem goes beyond traditional cybersecurity -- it requires a holistic approach that integrates security, compliance, and financial governance. As organizations expand their cloud footprint, misconfigurations, shadow IT, and uncontrolled costs pose significant risks. This session will explore best practices for securing cloud workloads, enforcing compliance standards, and aligning FinOps strategies with security objectives. 

Tune into this session from TD Bank's Pankul Chitrav as she teaches attendees how to leverage automation, policy-driven controls, and cross-functional collaboration to build a resilient, cost-efficient, and secure cloud environment.

Fortifying the Cloud: Integrating Security, Compliance, and Cost Governance

Two key factors will increase IT spending in 2025: AI and cybersecurity. This coincides with operational resilience legislation being implemented in the EU in January 2025 and the UK in March 2025, when financial services organizations and third parties, such as cloud providers, outsourcers and contractors.

All of these factors follow a reduction to IT spending in 2024, when resources and capacity were cut by most cloud providers, whilst 80% of customers overshot their budgets, with others reducing their operational spending on cloud services. 

This webinar will explore the changing environment between 2024 and 2025, taking into account C-Suite strategic priorities and focusing on securing the cloud ecosystem, by covering:

1) What is keeping C-Suite up at night, and should they be concerned?
2) What should organizations consider when securing the cloud ecosystem?
3) Why operational resilience may be a real answer for securing the cloud ecosystem?

Tune into this session presented by operational resilience expert Steve Yates, as he shares advice for securing the cloud ecosystem. Yates will explore the “nightmares” currently experienced by C-Suite and take attendees on a journey into a world where they should consider embracing the compliance processes being put in place to manage third parties. 

By the end of the session, viewers will be able to:
- Form an understanding of the challenges facing the C-Suite, and budgetary pressures.
- Consider options for protecting and securing the cloud ecosystem.  
- Be aware of the requirements needed to establish a joint working relationship between your organization and cloud services third providers.

Securing the Cloud Ecosystem: What is Keeping the C-Suite Up At Night?

As AI adoption accelerates, so do the security risks hidden in its supply chain. From adversarial attacks to compromised open source dependencies, threat actors exploit vulnerabilities at every stage of AI development. 

This talk from industry thought leader Yesenia Yser will break down the latest attack techniques -- such as prompt injection, model poisoning and software supply chain compromises -- while providing actionable strategies to safeguard AI systems. Attendees will gain insights into securing AI pipelines, mitigating open source risks, and implementing robust defense mechanisms to prevent emerging AI security threats. 

Don’t let your AI infrastructure become the next target -- learn how to defend it now.

AI Supply Chains Under Siege: How to Secure Open-Source AI From Emerging Threats

The move to cloud-native architectures increases the security complexity, demanding more efficient and automated solutions. Manual security processes struggle to keep pace with the dynamic nature of cloud environments. Addressing these concerns requires a tailored approach that leverages advanced technologies.

This webinar presented by industry thought leader Atulpriya Sharma will explore how AI can enhance cloud-native security, particularly in hybrid cloud settings. Discover how AI automates policy enforcement, vulnerability scanning, and threat detection, with a focus on open-source tools.

Tune in to learn how to future-proof your cloud security with AI-driven solutions, ensuring your organization stays ahead of emerging threats and maintains a strong security posture.

Transforming Cloud Native Security with AI

Securing the Cloud Ecosystem

With AI becoming essential to applications, it introduces new threats and increasingly complicates the cloud operating model. Security, cloud, and development teams should be armed with strategies and techniques to build and secure the modern cloud. Join this webinar where you will learn:
- A simple breakdown of the modern cloud architecture and how different components interact
- Key attack vectors within AI-led cloud environments
- Best practices and actionable guidance to secure your usage of cloud and AI

Securing Your Cloud and AI Usage in 2025

Application Development

Artificial Intelligence

Supply Chain

Software Supply Chain

Software supply chain attacks

Cloud Applications

Application Security

Vulnerability Management

big data pipeline

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Securing Your Cloud and AI Usage in 2025

Presented by

About this talk

Palo Alto Networks