The First Cloud Runtime Security Summit

Detecting and responding to cloud attacks has never been more challenging. Modern attacks and the ever-changing nature of cloud infrastructure and applications make security teams’ lives more difficult than ever. A new approach is needed – one that can provide a fully traceable & explainable runtime security story spanning the entire cloud technologies stack.

In recent years, we have added more and more tools to protect our cloud infrastructures and applications , but are we really more secure? Traditionally, we started with the cloud security posture, but was that the right move?

The cloud security market has grown and changed significantly – from CSPM, to ASPM and CNAPP. It seems that every few months a new category is popping up. But what is still missing? Where should we focus next? posture or runtime? shift left or protect right?

Detecting and responding to cloud attacks has never been more challenging. Modern attacks and the ever-changing nature of cloud infrastructure and applications make security teams’ lives more difficult than ever. A new approach is needed – one that can provide a fully traceable & explainable runtime security story spanning the entire cloud technologies stack.

In today’s dynamic cloud landscape, organizations face an ever-expanding array of security challenges that span from development environments to full-scale cloud deployments. This session will explore the evolution of cloud security by examining how traditional Cloud-Native Application Protection Platforms (CNAPP) are being enhanced with advanced Cloud Application Detection and Response (CADR) capabilities. Attendees will gain insights into how these integrated frameworks provide comprehensive, end-to-end protection—bridging the gap between proactive risk management and real-time threat mitigation.

In recent years, we have added more and more tools to protect our cloud infrastructures and applications , but are we really more secure? Traditionally, we started with the cloud security posture, but was that the right move?

The cloud security market has grown and changed significantly – from CSPM, to ASPM and CNAPP. It seems that every few months a new category is popping up. But what is still missing? Where should we focus next? posture or runtime? shift left or protect right?

Detecting and responding to cloud attacks has never been more challenging. Modern attacks and the ever-changing nature of cloud infrastructure and applications make security teams’ lives more difficult than ever. A new approach is needed – one that can provide a fully traceable & explainable runtime security story spanning the entire cloud technologies stack.

Posture identifies risk, but only runtime detects and stops real threats. Without a presence in runtime, detection is incomplete, and response is impossible. This talk breaks down why runtime is the heart of CADR, ensuring real-time visibility, detection, and action to protect cloud workloads where it matters most.

In recent years, we have added more and more tools to protect our cloud infrastructures and applications , but are we really more secure? Traditionally, we started with the cloud security posture, but was that the right move?

The cloud security market has grown and changed significantly – from CSPM, to ASPM and CNAPP. It seems that every few months a new category is popping up. But what is still missing? Where should we focus next? posture or runtime? shift left or protect right?

Detecting and responding to cloud attacks has never been more challenging. Modern attacks and the ever-changing nature of cloud infrastructure and applications make security teams’ lives more difficult than ever. A new approach is needed – one that can provide a fully traceable & explainable runtime security story spanning the entire cloud technologies stack.

In this session, James will argue that while companies are tempted to start with visibility and posture management, they would be better served to start their security journey with meaningful runtime protection. James will give a brief overview of what runtime solutions exist in the market, and what combination of features are most important to building a robust real security program. If you’re tired of chasing down false positives and debatable findings, you won’t want to miss it!

In recent years, we have added more and more tools to protect our cloud infrastructures and applications , but are we really more secure? Traditionally, we started with the cloud security posture, but was that the right move?

The cloud security market has grown and changed significantly – from CSPM, to ASPM and CNAPP. It seems that every few months a new category is popping up. But what is still missing? Where should we focus next? posture or runtime? shift left or protect right?