AI is reshaping cloud defense as CNAPP evolves from static posture checks to real-time intelligence that learns, adapts, and defends at machine speed.
As AI reshapes how cloud systems operate, security must evolve too. CNAPP platforms are shifting from configuration monitoring to continuous, intelligent defense across models, agents, and workloads.Cloud security has always been about keeping up with change.
Containers, serverless apps and multicloud infrastructure each forced defenders to rethink how they protected workloads. Now, AI is accelerating that evolution again — faster than anything before it. Traditional cloud-native application protection platforms were designed for a simpler era. They unified visibility, configuration management and vulnerability scanning into one system of record. The goal was to see every asset, check every setting and fix misconfigurations before attackers found them. That model still works for compliance and hygiene. But it’s not enough for the reality of AI-driven environments where models, agents and pipelines behave dynamically and sometimes unpredictably.Posture-based security assumes stability. AI thrives on motion. A large language model can spin up new resources, query sensitive data and modify code in seconds. A developer can deploy an agentic AI into production that performs tasks across multiple services — without always understanding what it’s doing under the hood.. Kashti spent more than 25 years in the Israel Defense Forces, rising through Unit 8200 to lead a Cyber department, serving as CISO and ultimately retiring as a Brigadier General. He helped oversee Project Nimbus — the IDF’s ambitious migration to the public cloud — giving him a firsthand view of how national-scale systems adapt to new operational realities. “AI builds amazing capabilities, also for attackers,” Kashti explained. “For years it was easier to be on the offensive side because you only needed one open door. But AI brings a new balance — it can finally give the defense an edge.” His perspective captures the shift reshaping cybersecurity: attackers have long enjoyed automation’s speed advantage, but defenders are finally starting to fight on equal terms.The paradox of AI in security is that it’s both the engine and the threat. Companies are using models to analyze incidents and improve detection while simultaneously introducing new vulnerabilities through AI-driven workloads. The challenge now spans two fronts: AI for security, using machine learning to correlate and prioritize risks and security for AI, protecting the models, prompts and data pipelines that power it., told me, “AI will help the good guys keep the bad people out, find vulnerabilities, look at configurations and close open doors into the environment — but it will also help the bad guys, who are using AI for deepfakes and highly convincing phishing campaigns.” His point underscores why CNAPP innovation can’t stop at compliance. It has to evolve into systems that learn, infer and act — because the same algorithms defending networks are being used to breach them. Kashti sees the same challenge unfolding in the cloud. Traditional rule-based logic can’t keep up with systems that learn and adapt. “It’s not about writing more rules,” he told me. “When you add AI, you’re learning your own environment — how your agents behave normally — and that lets you distinguish the abnormal.” That behavioral insight, powered by runtime data, is what allows AI-enhanced CNAPPs to detect subtle, real-time shifts that static tools miss.In this new model, runtime context replaces configuration snapshots as the foundation of security. Defenders need live insight into what applications, identities and AI agents are actually doing — not just what their YAML files say they should be doing. Runtime telemetry — system calls, API requests, prompt traffic and data access patterns — becomes the raw material for intelligence. Feeding that data into AI engines allows correlation across thousands of events and helps security teams focus on what really matters. It’s the difference between seeing a red dot on a map and understanding whether it’s a parade or an invasion.is one example. The company aims to merge cloud and AI runtime visibility into a single control plane that maps models, detects prompt-injection attempts and flags abnormal agent behavior. The investment itself isn’t the story, but the trend it signals is. Across the industry, vendors are racing to build real-time understanding into CNAPP platforms. Static posture checks remain essential, but they’ve become table stakes. The new frontier is continuous interpretation — AI systems that don’t just monitor risk but understand it in motion.Runtime intelligence won’t replace traditional controls, but it will reshape how teams prioritize and respond. Instead of chasing every misconfiguration, organizations can focus on the risks that truly matter in production. AI helps filter the noise, cutting alert fatigue and enabling faster, more confident decisions. This evolution also requires a cultural adjustment. Many future incidents won’t come from external adversaries but from developers deploying unsafe AI agents into production. Kashti warned that “the biggest risk isn’t always the attacker — it’s the engineer who unknowingly pushes an unsafe AI agent into your environment.” Guardrails and mapping tools that track how these agents behave are becoming as critical as firewalls once were.The next generation of CNAPP will think and learn. It will fuse telemetry from workloads, identities and AI systems to understand intent, not just activity. It will prioritize by risk, not by rule count, and it will respond automatically to deviations from the learned baseline. Jones’ comment about AI helping both sides cuts to the heart of the transformation: security will no longer be about simply keeping pace with change but about predicting it. CNAPPs capable of interpreting runtime behavior — across humans, workloads and AI agents — will define that new defensive edge. The shift from posture to perception is already underway. As AI continues to blur the line between code and cognition, the winners in cloud security will be those who can defend at machine speed and with machine understanding.
Cloud-Native Cloud Security AI Agentic AI Sweet Security Dror Kashti 909Cyber Den Jones
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
The SaaS Pricing Surge That Will Outrun Your Cloud PlaybookThis precarious combination—more vendors, disparate pricing, fragmented data, no real-time levers and decentralized ownership—makes SaaS far harder to govern than cloud.
Read more »
Achieving Public Sector Efficiency Through The CloudAs agencies head into the next fiscal year, taking proactive steps to rightsize resources, strengthen governance and automate operations will be essential.
Read more »
Ulla Johnson Hires Former Burberry Executive Laura Pei as CFOThe New York-based company is gearing up for its next growth phase, executives said.
Read more »
Turkcell partners with Google to offer Cloud services in TürkiyeTurkish operator plans $1B investment as partnership targets cloud adoption across industries.
Read more »
The Next Phase Of Cloud Security IntelligenceAI is reshaping cloud defense as CNAPP evolves from static posture checks to real-time intelligence that learns, adapts, and defends at machine speed.
Read more »
Agentic AI In The Cloud: Securing The Next Frontier Of Autonomous IntelligenceThe new frontier of cloud security is not just about protecting systems. It’s about protecting decision making.
Read more »