© 2026 Hashnode
Introduction: When AI Becomes Part of the Security Perimeter The traditional Security Operations Center (SOC) model—human-driven alert investigation and remediation—is rapidly evolving. Today, Agentic AI systems are taking over incident investigation...

Working with cloud services? Keeping your data and systems safe can get complicated fast. Tools like CSPM, CIEM, and CNAPP are supposed to help, but honestly, it’s easy to get lost in the jargon. Each of these tools focuses on a different slice of cl...

In Part 1, we kept things simple. We used Steampipe with AWS to ask basic questions like “Is this bucket public?” or “Does Matt have MFA?”. We did it so that we could produce meaningful misconfig detections and not use CLI hackery. Simple checks only...

When I think of Cloud Security Posture Management — CSPM — I think of simple, necessary checks. Things like: Is this EBS volume encrypted? Does this IAM user have MFA enabled? Is logging turned on for this S3 bucket? It’s not complicated work — ...

The previous article highlighted how the power of correlation strengthens a CNAPP platform. Wiz has emerged as a leader in the CNAPP space, and its superiority can be explained through a few key innovations: The "Google Search" of Your Cloud (Securi...

We understood from the previous article that - A Cloud Native Application Protection Platform (CNAPP) is an integrated, end-to-end security solution designed to protect cloud-native applications across their entire lifecycle, from development (code) ...

The true strength of a CNAPP lies not just in the individual capabilities of its components, but in their correlation and integration, especially with insights from your code. Imagine a scenario: Code (Shift-Left): During development, your CNAPP's c...
