2. Data Security at the
Speed of Cloud
Danielle Wilson
Sr. Director, West Channels
MixMode.ai
3. Top questions asked by CISOs in 2022
What data exists across
our clouds?
Shadow Data Assets
Who is using our most
critical data?
Data Misuse
How can we stop sensitive data
from being exfiltrated?
Compliance Breaches (SOC2, GDPR, PCI…)
Data Exfiltration
Ransomware
Cloud data stores are always the target for an attack, but lack a
dedicated security solution unlike Compute (EDR) or Networks (NDR)
4. The explosion of data on public clouds
Managed assets
Storage, Databases, Analytics
Unmanaged assets
Virtual machines running data stores
Snowflake, Databricks
Fully managed database services
PaaS
IaaS
DBaaS
of cloud resources
are data assets
40% 20+
Types of data assets
per enterprise
5. Avoiding bias is the key to a
successful Cloud Transformation
Rules Training Data Out of Date IOCs
Stale Privilege Misconfigurations Vendor
6. Outcomes > Acronyms : Crowded Cloud
< 50% Day
Alerts Handled
~426 Hours/wk
False Positives
⇒ Biggest problem facing companies is volume of data.
⇒ Focus on tool consolidation and cost controls.
!
!
~426 Hours/wk
80% of CISOs are not able
to identify excessive
access to sensitive data
in cloud production
environments.
No one cares about acronyms or labels like XDR.
8. 3rd Wave AI
“Systems construct contextual explanatory
models for classes of real world phenomena”
9. AI Bias Checklist
1. Does it rely on clustering, labeling and/or people?
2. Is it based on historical data?
3. Who trains, tunes and maintains cloud infrastructure?
4. Is the cloud data dependent on rules? What if rules are off?
5. How are Novel Attacks handled?