Continuous Threat Modeling for Cloud & AI Systems

Summary of Presentation:
Cloud and AI adoption have fundamentally changed how systems are built. Dynamic infrastructure, shared responsibility models, and increasingly autonomous AI behaviors are introducing risks that traditional, point-in-time threat modeling approaches can’t adequately address.

This session explores how organizations can evolve threat modeling into a continuous, architecture-driven practice that keeps pace with modern cloud and AI environments. We’ll walk through practical approaches to modeling cloud-native systems, incorporating AI-specific risks, and applying frameworks like MAESTRO to assess agentic behaviors and emerging attack paths.

Attendees will gain a pragmatic view of how to integrate threat modeling into DevSecOps workflows, improve consistency and traceability in security decisions, and better align architecture, risk, and compliance in complex, multi-cloud environments.