Read the abstract ➤ https://www.conf42.com/Cloud_Native_2024_Kennedy_Torkura_threat_informed_defense Other sessions at this event ➤ https://www.conf42.com/cloud2024 Support our mission ➤ https://www.conf42.com/support Join Discord ➤ https://discord.gg/DnyHgrC7jC Chapters 0:00 intro 0:24 preamble 0:41 about me 1:23 agenda 2:07 cybersecurity: low signals to noise ratio 4:49 pillar 01: defensive measures 9:41 pillar 02: cyber threat intelligence 12:44 pillar 03: testing & evaluation 15:22 why adversary emulation? 20:19 adversary emulation workflow 22:32 cloud attack emulation 23:32 detection engineering 25:54 detection development lifecycle 28:07 example - validating detections 31:30 emulating the cloud attack 32:38 cloudtrail record 33:09 undetected threats! 36:33 resources 37:02 demo 44:21 thank you for your attention