Name: Identity, AI, and the Cloud Kill Chain: What 2025 Revealed and What 2026 Will Exploit
Start: 2026-01-29T17:00:00Z
End: 2026-01-29T17:00:30.000Z
Location: BrightTALK

Mitiga is the leader in Zero-Impact Breach Prevention — the only approach that ensures cyberattacks cause no business impact. Its AI-native Cloud Detection and Response (CDR) Platform delivers preemptive, real-time protection and panoramic visibility across cloud, SaaS, identity, and AI. It works by continuously monitoring activity across your entire cloud estate, identifying anomalous behaviors, and decoding attacks into clear and contextualized timelines so you can stop active threats and prevent breach impact when posture-based protection fails. With Zero-Impact Breach Prevention, Mitiga takes cyber resilience from idea to reality. Learn more at www.mitiga.io.

In this episode of our Mitiga Mic series, Brian Contos, Field CISO at Mitiga, sits down with Mitiga CEO Charlie Thomas to unpack the hard truths facing security leaders today. Security leaders can't keep up.

Charlie shares his 30-year journey across enterprise technology and cybersecurity, from founding and scaling companies to leading modern detection and response organizations. He explains why the cloud, SaaS, identity, and AI have fundamentally reshaped the attack surface, and why posture management and preventive controls alone can’t stop real-world attacks.

The conversation dives into how attackers exploit speed, scale, and valid credentials to move laterally across cloud and SaaS environments, why SOC teams are overwhelmed by data and alert noise, and how AI-native Cloud Detection and Response changes the equation. Charlie then dips into cloud detection and response solutions, yes, including Mitiga.

This episode is essential viewing for CISOs, security leaders, and architects who want to move beyond false promises of prevention and regain control of their cloud security posture in real time.

Learn more! Head to www.mitiga.io.
Watch more Mitiga Mic. See our older episodes or other Mitiga videos here: https://www.youtube.com/playlist?list=PL2nXk2BcsjKbcJxckHf8ADMRxKtDcDrIq

Why Cloud Security Prevention Is Failing and How to Regain Control with Charlie Thomas

What can SOC teams and CISOs expect as we embark on a new year? In 2025, critical trends involving generative AI and SaaS, along with a growing gap in cloud-related security talent will forge a new frontier in the threat landscape. However, organizations can prepare for the new era of cloud threats that face their teams. In this webinar, cloud security experts explain: 
- Top trends to watch for in 2025 and what they mean for your cloud security
- How threat actors exploit the growing weak points in your cloud, SaaS, and identity environment
- Practical tips and strategies to prepare your SecOps team for the year ahead 

Speakers: 
Ariel Parnes, Co-founder and COO, Mitiga
Ofer Maor, Co-founder and CTO, Mitiga

Learn more about the Mitiga approach: https://www.mitiga.io/blog/why-leaders-must-focus-cloud-breach-mitigation
Get a demo: https://www.mitiga.io/demo

2025 Cyber Trend Watch: A New Era of Threats and Strategies to Combat Them

Cloud transformation continues to remake enterprise architectures, rendering the landscape that CISOs and SecOps teams are tasked with protecting vastly different than the one they encountered just a few short years ago. In this webinar, security experts from F5 and Mitiga advise CISOs on how to think about their cyber investment strategies and tech stacks to ensure cloud security catches up to the speeding train that is cloud development. 

After watching this webinar, you will walk away with:
- An understanding of the ways in which we're seeing cloud transformation change enterprise security
- Knowledge of new and emerging capabilities on the rise to fulfill emerging cloud and SaaS security needs
- Guidance on how CISOs can adapt investment strategies to support SecOps teams and ensure operational resilience

Speakers:
- Samir Sherif, CISO, F5
- Ariel Parnes, COO and Co-founder, Mitiga
- Sean Michael Kerner, Technology Journalist (Moderator)

Learn more about how CISOs can enhance organizational resilience: https://www.mitiga.io/blog/combatting-cloud-ransomware-and-extortionware-guidance-for-cisos-and-teams
Reach out for emergency assistance: https://www.mitiga.io/solutions/emergency-cloud-incident-response
Get a demo: https://go.mitiga.io/Request-a-Demo.html

Cyber Investment Strategies for CISOs: Enabling Your Transforming Enterprise

The data theft and extortion campaign campaign allegedly targeting Snowflake customers serves a recent example of the increasing severity of cloud breaches. Being able to detect, investigate, and respond to cloud threats is an essential part of an organization's modern cloud security strategy and there are key strategies that enable teams to prepare and respond. 

In this webinar, you will:
- Understand the latest information available about this threat campaign
- Dive into the details of how to detect compromise
- Learn important recommended practices for teams to implement as soon as possible

Speakers:
Roei Sherman, Field CTO, Mitiga
Or Aspir, Director of Research, Mitiga
Doron Karmi, Senior Cloud Security Researcher, Mitiga

Learn more: https://www.mitiga.io/blog/tactical-guide-to-threat-hunting-in-snowflake-environments
Reach out for emergency assistance: https://www.mitiga.io/solutions/emergency-cloud-incident-response
Get a demo: https://go.mitiga.io/Request-a-Demo.html

Threat Campaign Using Snowflake Databases: What to Know

New year, new threats. But which of these evolving cyber risks should security leaders and teams be focused on? And what should they be executing to address them? Join this conversation between cyber expert Ariel Parnes and Brendon Barnhart, originally broadcast live on LinkedIn, to learn about the trends and hear where savvy cyber leaders will turn their attention in 2024.

2024 Cyber Trend Watch: The Latest Threats and How to Combat Them

The mass migration of business applications to the cloud over the last few years has caused an equally rapid rise in the number of cyberattacks — along with technologies designed to prevent them. 

But simply implementing preventative security controls is not enough to eliminate the risk of compromised data. A comprehensive cloud incident response strategy leveraging digital forensics is a critical part of a complete security plan. In the cloud, governance, shared responsibility, and visibility are key for planning an incident response strategy.

In our upcoming webinar, Lior Zatlavi, Ermetic Sr Cloud Security Architect, will share the mic with Ofer Maor, co-founder and CTO of Mitiga, to find out what teams need to be conscious of when developing incident response strategies in the cloud, including understanding their motivations, laying out why it is important, and looking at examples of incidents. Together, Lior and Ofer will explain first steps to building and implementing a cloud incident response strategy from a foundation of good visibility and prevention, as well as how to approach detection and response. 

During this webinar, Lior and Ofer will explain:
● Why incidents and responses are different in the cloud
● What to look at and analyze to detect incidents
● What procedures your organization needs to have in place to be prepared for an incident
● Examples of cloud incidents "from the trenches"

By submitting the form, you agree to receive news and updates (for example, regarding events or our product) event invitations or other communications from Ermetic and/or Mitiga that we believe may be of interest to you. You may unsubscribe at any time by sending an email to info@ermetic.com, or info@mitiga.io or using the appropriate link in each communication. Your personal data will be processed in accordance with our privacy notices.

Good Foundations: Building and Implementing a Cloud Incident Response Strategy

Ariel Parnes and Sean Micheal Kerner catch up on the recent SEC ruling, focused on the disclosure of cyber incidents, and unpick what this means for organisations.

Disclosing Cyber Incidents: What the SEC Ruling Means for Enterprises

Catch the recording of our virtual tabletop exercise, previously broadcast live on LinkedIn. Watch the experts as we step into the shoes of the management and security teams at “Kaizen", an imaginary company facing a cyberattack. During the exercise, we'll unravel the situation, make critical decisions, and strategize a swift response. Stay tuned on our LinkedIn for more interactive TableTop exercises

Battling Cloud and SaaS Ghouls and Goblins: An Interactive TableTop Exercise

The Mitiga Research Team recently discovered hundreds of databases being exposed monthly, with extensive Personally Identifiable Information (PII) leakage. Leaking PII in this manner provides a potential treasure trove for threat actors — either during the reconnaissance phase of the cyber kill chain or extortionware/ransomware campaigns. This Mitiga Webinar goes into the tactics used, insights determined, and recommendations on how organizations relying on Amazon RDS can take precautions against this scenario inadvertently happening in their environments, with detailed insights from Mitiga Senior Security Researcher Doron Karmi and Mitiga Senior Security Researcher Ariel Szarf.

Oops, I Leaked It Again — How Mitiga Found PII in Exposed Amazon RDS Snapshots

Missed our session live from SANS CloudSecNext? Worry not, you can watch in-full here. The field of incident response was created when companies were mostly on-prem and the cyberattack landscape was more contained. Today's cloud and SaaS environments and the vast, dynamic attack surface they create have rendered the old retainer-based approach to IR obsolete. So, what should take its place? Watch this webinar for insights and recommendations from seasoned IR expert, Mitiga Co-founder and COO, Ariel Parnes.

Rethinking Incident Response for Today's Enterprises: Live at SANS CloudSecNext

When CircleCI revealed their recent security incident, the Mitiga Threat Research team sprang into action to conduct vendor analysis and create a CircleCI Cybersecurity Incident Hunting Guide with detailed guidance for teams.  

In this Mitiga webinar, DevOps Engineer Stav Ochakovski and Principal Security Researcher & Developer Or Aspir will expand on this analysis, to provide cybersecurity, cloud, DevOps, and incident response stakeholders with more intelligence on topics including:   

-What caused the CircleCI incident
-Identifying potential damages and scoping their impact 
-Recommended investigation and recovery processes  
-How to make your CircleCI environments more secure  
-And more

CircleCI Cybersecurity Incident Hunting

The Cloud migration occurring across in these last few years moved faster than the collective abilities of IT staff and other organizational cybersecurity resources could handle. Recent challenges for these teams have only mounted, with sudden rises in multi-factor authentication bypasses and business email compromise campaigns hitting global businesses. Further compounding these problems are massive cybersecurity talent shortages and IT skill set gaps, which have combined to increase the impact of cloud incidents across global organizations.

Cloud-native companies are not immune from these challenges — they’re great with multi-cloud operations but frequently come up short on the cybersecurity side.

Learn how today’s companies are working to educate and transform their in-house abilities to meet these wide-scale cloud security challenges from this Mitiga Webinar, featuring Forrester Senior Analyst Jess Burn and Mitiga Co-Founder and Chief Technology Officer Ofer Maor. 

This Webinar additionally focuses on how using technology to build forensic data lakes helps organizations effectively manage cloud investigations.

Forrester & Mitiga Discuss Incident Response Talent Shortage

Most of us have heard lots of different buzzwords, all falling broadly into the incident response market. In this webinar, Ofer Maor, co-founder and CTO at Mitiga, will walk through terminology, technologies, and history of incident response and monitoring. There are a lot of different solutions encompassed in the term “incident response” — so what do you need to understand about the different threat detection and response tools and technologies? Covering where it started, where we are now, and how these different tools help manage incidents large and small, this webinar covers the basics you need to know about where these tools fit into your critical incident response plans. 

Join this 30-minute webinar to learn more about these security buzzwords, what the tools are, and how they fit together: 
* Security Information and Event Management (SIEM) & Security Operations Centers (SOC) 
* Security Orchestration, Automation, and Response (SOAR) 
* Endpoint Detection and Response (EDR) & Endpoint Protection Platform (EPP) 
* Extended Detection and Response (XDR) 
* Managed Security Service Provider (MSSP) & Managed Detection and Response (MDR)

Threat Detection & Response Tools: What Do All Those IR Buzzwords Mean?

Cloud attacks are getting real and hitting the fan! In the past year we’ve led forensics investigations for some very interesting cloud incidents and are now ready to share them with the world. Through war stories about successful attacks, failed defenses, and heroic response, we will dive into the depth of cloud native attacks, exploring this new era of threats.

It's Getting Real & Hitting the Fan! Real World Cloud Attacks

Cloud incidents have been increasing in frequency and complexity — and they present unique challenges for incident response teams. Watch this webinar on demand to learn five ways cloud incident response is different and how a readiness approach can help you get back to business as usual fast — and increase your resilience to future attacks.

5 Ways Cloud Incident Response Is Different (& How to Get Ready)

2025 made one thing painfully clear. Cloud attacks are no longer about breaking in. They are about logging in, blending in, and moving laterally across identity, SaaS, and AI systems faster than teams can respond.

In this webinar, Mitiga security leaders break down what the most significant cloud incidents of 2025 actually revealed about the modern cloud kill chain. From high-profile SaaS breaches to quiet identity abuse and AI-powered attack acceleration, we will unpack how real attackers operate once they are inside.

You will see how human and non-human identities are being exploited, how AI is changing both attack velocity and investigation complexity, and why traditional prevention-first strategies continue to fail in cloud-first environments.

We will also look ahead to 2026. Expect a grounded discussion on where attackers are heading next, how AI itself is becoming both a weapon and a target, and what security teams must do to contain attacks before impact occurs.

If your cloud security strategy still assumes stopping attacks at the door, this conversation is for you.

What You Will Learn
 • The most consequential cloud and SaaS security trends from 2025, through an incident response lens
 • How the cloud kill chain manifests across identity, SaaS, and AI environments
 • Why identity abuse and token-based access now define cloud breaches
 • How AI is reshaping both attack methods and defense operations
 • Practical predictions for 2026 and what security teams should prepare for now

Audience

CISOs, Security VPs, Directors, and Cloud Security Architects responsible for cloud, SaaS, identity, and AI risk.

Identity, AI, and the Cloud Kill Chain: What 2025 Revealed and What 2026 Will Exploit

Cyber Attacks

Cyber Crime

Cyber Incident Response

Breach Prevention

Cloud

Cloud Security

cloud detecion and response

SaaS

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Internal audit and compliance professionals are facing increasingly stringent regulatory requirements when it comes to compliance reporting and internal control procedures. Join the audit and compliance community to learn best practices from thought leaders on topics such as regulatory compliance, internal audit checklists and audit program strategies.

Audit and Compliance

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful insights to run your business. CEOs, CFOs, CMOs, COOs, CTOs and CIOs are among the leaders in this community who connect with peers and experts to grow their businesses.

CxO Strategy

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

Identity, AI, and the Cloud Kill Chain: What 2025 Revealed and What 2026 Will Exploit

Presented by

About this talk

Mitiga | Cloud Detection & Response