How should organizations approach security when migrating from on-premises to cloud?

Organizations must shift from trying to replicate on-premises security controls to understanding the shared responsibility model. This means recognizing that cloud providers control portions of the infrastructure and implement their own security measures, while customers remain responsible for securing their data and applications within that framework.

What is data poisoning and why is it a significant threat?

Data poisoning is an attack method where adversaries manipulate an organization's training data for AI systems rather than stealing it. This allows attackers to influence AI model outputs and decisions without triggering traditional data exfiltration alerts, making it particularly difficult to detect and potentially more damaging than conventional data theft.

Varonis: Cloud Security Insights from Microsoft Israel's CTO

Name: Varonis: Cloud Security Insights from Microsoft Israel's CTO
Uploaded: 2026-03-20T19:28:58-04:00
Duration: 15 min 42 s
Description: TL;DR Cloud security requires understanding the shared responsibility model—organizations cannot simply replicate on-premises security approaches when migrating to public cloud environments. AI-enabled attacks and data poisoning represent the most conc...

Varonis

03/20/2026

0 (0%)

Report Like Favorite

TL;DR

Cloud security requires understanding the shared responsibility model—organizations cannot simply replicate on-premises security approaches when migrating to public cloud environments.
AI-enabled attacks and data poisoning represent the most concerning emerging threats, with attackers using AI for sophisticated phishing and manipulating training data to corrupt model outputs.
Nation-state actors pose significant risks due to their resources, time, and expertise, requiring organizations to implement comprehensive defense mechanisms.
Security fundamentals like regular patching and multi-factor authentication across all applications, including legacy systems, remain the most effective defensive measures.

Cloud Migration and Shared Responsibility

Avi Yoshi draws on his extensive background spanning network security, VMware's private cloud era, and his current role at Microsoft to explain why organizations struggle with cloud security transitions. The core challenge lies in attempting to replicate on-premises security methodologies in cloud environments, which fundamentally operate on a shared responsibility model. Organizations must recognize that hyperscalers control portions of the infrastructure and implement their own security controls, requiring customers to understand the division of responsibilities rather than assuming either full control or complete provider coverage.

Emerging Threats and AI-Enabled Attacks

The conversation identifies three critical threat categories demanding attention from security leaders. AI-enabled attacks represent the most significant evolution, with artificial intelligence enabling sophisticated phishing campaigns that can convincingly mimic legitimate communications. Data poisoning emerges as a particularly insidious threat where attackers manipulate training data to corrupt AI model outputs without actually stealing information. Nation-state actors round out the threat landscape, bringing substantial resources, time, and expertise to target both countries and critical institutions with persistent, well-funded campaigns.

Foundational Security and Professional Development

Despite the sophistication of modern threats, Yoshi emphasizes that security fundamentals remain the most effective defense. Regular patching and software updates, while seemingly basic, represent areas where many organizations underperform. Multi-factor authentication should extend to all applications, including legacy systems through available integration solutions. For security professionals, success requires analytical thinking to distinguish genuine incidents from noise, strong collaboration skills since security is inherently a team effort, meticulous attention to detail, and adaptability to continuously evolving threats and technologies.

Chapters

0:00 - Introduction and Background
1:11 - Career Journey to Cloud Security
3:14 - Cloud Security Misconceptions
5:17 - Biggest Threats on the Horizon
7:55 - Defending Against AI Attacks
9:43 - Responding to Vulnerabilities
10:48 - Skills for Security Professionals
12:34 - Advice for Future Professionals
13:36 - Personal Interests and Closing

Key Quotes

3:54 "The customers are trying to mimic and replicate not just the same technologies and solutions, but somewhat the same methodologies from the on-prem to the cloud, which unfortunately cannot be mimicked."
7:09 "It's not just grabbing my data or stealing my data. It's actually manipulating my data, my training data for AI. And then the attacker can manipulate the outcome without stealing the data."
8:01 "At the end, it all starts with hygiene. Patching and updating regularly with system, I think that this is the most important part."
11:37 "The attacker is always trying to be very unique and to create attacks that has never seen before. And the defenders, those security professionals needs always to be in advance."

Categories:

Tags:

Show more Show less

Browse videos

Upcoming Webinar Calendar

06/23/2026

01:00 PM

06/23/2026

The AI-Powered VMware Alternative

https://www.truthinit.com/index.php/channel/2009/the-ai-powered-vmware-alternative/
06/24/2026

11:00 AM

06/24/2026

LATAM: Accelerating Insights on AI Through an Engaging Webinar Series

https://www.truthinit.com/index.php/channel/2012/accelerating-insights-on-ai-through-an-engaging-webinar-series/
06/25/2026

01:00 PM

06/25/2026

Generative AI Security: Preventing AI from Becoming a Data Breach Multiplier

https://www.truthinit.com/index.php/channel/1998/generative-ai-security-preventing-ai-from-becoming-a-data-breach-multiplier/
06/30/2026

01:00 PM

06/30/2026

Mastering Active Directory Certificate Services for Long-Term Success

https://www.truthinit.com/index.php/channel/2018/mastering-active-directory-certificate-services-for-long-term-success/
07/01/2026

04:00 AM

07/01/2026

Integrating Security in AI: Automated Red Teaming Strategies for Private Models

https://www.truthinit.com/index.php/channel/1969/integrating-security-in-ai-automated-red-teaming-strategies-for-private-models/
07/01/2026

04:00 AM

07/01/2026

Schutz von KI in Anwendungen, Agenten und APIs.

https://www.truthinit.com/index.php/channel/2008/schutz-von-ki-in-anwendungen-agenten-und-apis/
07/01/2026

01:00 PM

07/01/2026

How to Prevent Your AI from Taking Control of You

https://www.truthinit.com/index.php/channel/2021/how-to-prevent-your-ai-from-taking-control-of-you/
07/02/2026

10:00 AM

07/02/2026

When the cloud goes dark: Resilience lessons from hybrid threats

https://www.truthinit.com/index.php/channel/2011/resilience-insights-from-hybrid-threats-when-the-cloud-faces-challenges/
07/07/2026

01:00 PM

07/07/2026

A Comprehensive Demonstration of DLP Solutions and Strategies

https://www.truthinit.com/index.php/channel/2030/a-comprehensive-demonstration-of-dlp-solutions-and-strategies/
07/09/2026

01:00 PM

07/09/2026

Agentic Trust in Practice: Enhancing the Human Experience

https://www.truthinit.com/index.php/channel/2026/agentic-trust-in-practice-enhancing-the-human-experience/
07/14/2026

11:00 AM

07/14/2026

Discover the Latest Innovations in Netwrix 1Secure During This Technical Session

https://www.truthinit.com/index.php/channel/2014/discover-the-latest-innovations-in-netwrix-1secure-during-this-technical-session/
07/21/2026

04:00 AM

07/21/2026

Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
07/21/2026

01:00 PM

07/21/2026

HUMAN Dialogue: Insights from Attackers Revealed at the FIFA World Cup

https://www.truthinit.com/index.php/channel/2029/human-dialogue-insights-from-attackers-revealed-at-the-fifa-world-cup/
07/22/2026

06:30 AM

07/22/2026

Understanding the Dynamics of Data Privacy and Protection Regulations

https://www.truthinit.com/index.php/channel/2000/understanding-the-dynamics-of-data-privacy-and-protection-regulations/
07/28/2026

01:00 PM

07/28/2026

Illumio: Zero Trust in the Age of AI Autonomy

https://www.truthinit.com/index.php/channel/2031/illumio-zero-trust-in-the-age-of-ai-autonomy/
07/29/2026

04:00 AM

07/29/2026

Real-Time Strategies for Safeguarding Against Prompt Injections

https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
09/30/2026

04:00 AM

09/30/2026

AI Command Center: Optimizing Visibility and Control in Your Operations

https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/