Kanaiya Vasani, Chief Product Officer, explains how ExtraHop leverages AWS services and generative AI to help enterprise customers address the growing security challenges of uncontrolled AI adoption.

Topics Include:

• ExtraHop reinventing network detection and response category
• Platform addresses security, performance, compliance, forensic use cases
• Behavioral analysis identifies potential security threats in infrastructure
• Network observability and attack surface discovery capabilities included
• Application and network performance assurance built-in features
• Traditional IDS capability with rules and IOCs detection
• Packet forensics for investigating threats and wire evidence
• Cloud-native implementations and compromised credential investigation support
• ExtraHop partnership with AWS spans 35-40 different services
• AWS handles infrastructure while ExtraHop focuses core competencies
• ExtraHop early adopter of generative AI in NDR
• Natural language interface enables rapid data access queries
• English questions replace complex query languages for users
• Agentic AI experiments focus on SOC automation workflows
• L1 and L2 analyst workflow automation improves productivity
• Shadow AI creates major risk concern for customers
• Uncontrolled chatbot usage risks accidental data leakage
• Governance structures needed around enterprise gen AI usage
• Visibility required into LLM usage across infrastructure endpoints
• AI innovation pace challenges security industry keeping up
• Models evolved from billion to trillion parameters rapidly
• Traditional security tools focus policies, miss real-time activity
• "Wire doesn't lie" - network traffic reveals actual behavior
• ExtraHop maps baseline behavior patterns across infrastructure endpoints
• Anomalous behavioral patterns flagged through network traffic analysis
• MCP servers enable LLM access through standardized protocols
• Stolen tokens allow adversaries unauthorized MCP server access
• Machine learning identifies anomalous traffic patterns L2-L7 protocols
• Gen AI automates incident triage, investigation, response workflows
• Best practices include clear policies, governance, monitoring, education

Participants:

• Kanaiya Vasani – Chief Product Officer, ExtraHop Networks

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/

Notes:

Cribl’s Field CISO Ed Bailey discusses how customers can manage the quality and quantity of data by providing intelligent controls between data sources and destinations.

Topics Include:

• Cribl company name origin
• Company helps organizations screen data to find valuable insights
• Ed Bailey was Cribl's first customer back in 2018
• Data growth of 25% yearly created seven-figure cost increases
• CEOs and CIOs complained about explosive data storage costs
• Users demanded more data while budgets remained constrained
• Bailey discovered Cribl through a random Facebook advertisement
• Cribl Stream sits between data sources and destinations
• No new agents required, uses existing infrastructure connections
• Reduced data growth from 28% to 8% within year
• Development cycles shortened from six weeks to two weeks
• Bailey managed global security and telemetry data systems
• Operated large Splunk instance across forty different countries
• Team spent time collecting data instead of extracting value
• Cribl provided consistent data control plane for operations
• Smart engineers could focus on machine learning solutions
• Migrated from terrible SIEM to better security platform
• Data strategy should focus on business requirements first
• Not all data has the same business value
• Tier one: Critical data goes to expensive platforms
• Tier two: Important data stored in cheaper lakes
• Tier three: Compliance data in low-cost object storage
• SIEM costs around one dollar per gigabyte stored
• Data lakes cost twelve to eighteen cents per gigabyte
• Object storage costs fractions of pennies per gigabyte
• AWS partnership provides scalable infrastructure for rapid growth
• EC2, EKS, and S3 are heavily utilized services
• Cribl Search finds data directly in object storage
• Avoids costly data movement for search and analysis

Participants:

• Edward Bailey – Field CISO, Cribl

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/

Saviynt Co-Founder Amit Saha discusses how their AWS partnership has enabled the identity security company to deliver comprehensive identity protection while minimizing organizational friction.

Topics Include:

• Saviynt is leading identity security provider in market
• Secures human, non-human, workforce, and privileged access identities
• Eliminates friction while automating organizational access management processes
• Biggest challenge: reducing friction in new access processes
• Second challenge: visibility into accumulated technical debt problems
• Lost business context makes access permissions difficult to unwind
• Saviynt provides quick visibility to prioritize identity risks
• Shadow IT creates ungoverned workloads and cloud applications
• Need integration with asset management and cloud providers
• Must derive intelligence from multiple disconnected information sources
• AWS partnership provides access to prolific customer base
• AWS security owners are same buyers for Saviynt
• Eleven-year AWS relationship with early security competency
• ISV Accelerate program connects with sellers and architects
• Rising Star program helps stand out in crowded marketplace
• Find mutual customers for successful AWS partnership stories
• GenAI in bad actors' hands compromises customer security
• Product engineering uses GenAI tools for better quality
• Agentic AI creates new paradigm between human/non-human identities
• Agentic AI requires dynamic, fluid access management approaches
• AI agents can generate their own bots needing access
• Zero trust principles needed at broader scale for AI
• Next twelve months: getting ahead of GenAI curve
• New AWS services launch daily in GenAI space
• Contributing to new standards like MCP and A2A protocols
• AWS Marketplace simplifies procurement and buyer discovery processes
• EDP program and migration incentives benefit ISV transactions
• AWS developer-friendly startup programs accelerate time to market
• Cloud-native approach enables predictable scaling and AWS integration
• AWS-Saviynt partnership aims for once-in-generation security impact

Participants:

• Amit Saha – Co-Founder and Chief Growth Officer, Saviynt

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/