Can GenAI Solve Multicloud Security?

Securing multiple clouds is a daunting task. It typically requires cloud security engineers to have a deep understanding of each cloud's controls. Generative AI (GenAI) offers a promising way to simplify this process.

With the right prompts, it can translate vendor-specific configuration and code into the equivalent for another provider. How automated is this process? Is it accurate? Most importantly, can it replace the need for cloud security expertise?

Brandon conducted a real-world experiment to help answer these questions. Using GenAI, he converted a large set of AWS Terraform code to target a platform with which he had no experience: Oracle Cloud Infrastructure (OCI). Through extensive trial and error, he transformed a complex AWS environment with over 150 resources into a viable OCI implementation.

Join Brandon as he shares the lessons learned from this hands-on experiment. He will reveal the GenAI tools and techniques that cloud security engineers need to apply security controls consistently across every cloud. This will also provide security leaders with insight into the difficulty of this undertaking and the resources required to ensure its success. While GenAI proved helpful, this talk will demonstrate how the human-in-the-loop is still more important than ever.

Learning Objectives:

- Understand how multicloud increases security complexity.

- Learn how to convert Infrastructure-as-Code (IaC) from one cloud provider to another.

- Evaluate the effectiveness of the top GenAI tools for this task, including ChatGPT, Claude Sonnet, Cursor AI, and GitHub Copilot.

- Witness the human effort required to orchestrate AI to successfully accomplish this goal.