Executive brief on how PCI DSS 4.0 affects offensive security practices, penetration testing, and segmentation testing. Watch Now

Architecting Cloud Security Testing in the GenAI Era

Join Steven Smiley and Jessica Stinson for a deep dive into how early-stage architectural reviews can transform the effectiveness of your testing. Whether you're navigating IAM setups or preparing to tackle GenAI risks in cloud environments, this session has the clarity and direction you need to test smarter—not just harder.

Security Testing the cloud isn’t just about launching attacks—it’s about creating the right conditions to uncover what truly matters. In this session, Steven Smiley (ScaleSec) and Jessica Stinson (Bishop Fox) break down how a well-executed architecture review can lay the foundation for more impactful red team or cloud penetration testing results. They cover how to properly configure access for a cloud penetration test and how these tests are performed, what red teamers look for during a red team engagement and how these engagements are conducted, and how to clearly distinguish between red teaming and traditional cloud pentesting. Lastly, as GenAI models become increasingly embedded in cloud ecosystems, it’s more important than ever to understand the unique risks they introduce. The team outlines key considerations for integrating GenAI into your testing strategy to ensure complete and relevant coverage.

What You’ll Learn:

  • How an upfront architecture review can elevate your test
  • Key differences between cloud red teaming and cloud pen tests
  • How to provision access and permissions for security testing
  • How to approach security testing cloud environments that now include integrated GenAI technologies.
  • How to make the most of findings and harden your environment

Who Should Watch:

  • Cloud Security Architects seeking to integrate security considerations from the design phase of cloud-native architectures
  • DevSecOps Teams responsible for implementing security controls in AI-augmented cloud environments
  • Data Scientists and AI Engineers who need to understand the security implications of their AI implementations
  • CISOs and Security Directors evaluating how to adapt security testing strategies for environments with GenAI components, and making decisions about penetration testing vs. red teaming approaches for cloud environments

Session Summary

The discussion begins by emphasizing the critical role of upfront architecture reviews in effective security testing, with both experts highlighting how comprehensive diagrams help security teams identify key targets like AWS identity centers, logging buckets, and containerized workloads. Smiley notes that while approximately half of organizations have architecture documentation, it's often outdated or incomplete, making it difficult to understand complex cloud environments with multiple interconnected accounts.

The conversation then shifts to distinguishing between cloud penetration testing and red team approaches. Simpson explains that cloud penetration tests are ideal for organizations that have recently migrated to the cloud or undergone significant architectural changes, providing broad visibility into misconfigurations within a time-boxed period. In contrast, red team engagements are better suited for more mature organizations looking to simulate real-world adversary techniques against their cloud defenses. The speakers debate the merits of black box versus white box testing approaches, with both agreeing that assumed breach scenarios typically deliver more value by focusing security resources on realistic attack paths rather than spending time attempting to gain initial access.

A substantial portion of the session addresses how GenAI is transforming cloud architectures and introducing new attack vectors. Smiley identifies four emerging patterns: applications calling external AI APIs (like OpenAI), applications using cloud provider AI services (like AWS Bedrock), self-hosted AI models, and agentic AI with permissions to perform actions within applications. Each pattern introduces distinct security challenges, from credential exposure to insufficiently hardened infrastructure. Simpson shares two compelling client stories illustrating these risks: one where red teamers accessed proprietary AI models by exploiting hard-coded credentials in a Git repository accessible to contractors, and another where they manipulated an AI helpdesk agent through prompt injection to exfiltrate sensitive customer data from Salesforce.

The session concludes with practical advice for making the most of security assessment findings, emphasizing the importance of timely remediation while the information is still relevant. Both experts advocate for a collaborative approach between offensive security testers and cloud architects, viewing security testing as part of a continuous lifecycle rather than a compliance checkbox. They acknowledge that while GenAI introduces new risks, organizations shouldn't avoid these technologies but should instead implement appropriate guardrails, sandboxing, and monitoring to safely capture their benefits.

Key Takeaways

  1. Architecture diagrams accelerate security testing - Comprehensive documentation of cloud environments helps testers quickly identify critical assets, authentication flows, and network interconnections, leading to more strategic and efficient security assessments.
  2. Testing approach should match security maturity - Cloud penetration tests provide broad visibility into misconfigurations for less mature organizations, while red team engagements better serve mature organizations looking to test their detection capabilities against realistic adversary techniques.
  3. GenAI introduces four key architectural patterns with unique risks - Applications calling external AI APIs, cloud provider AI services, self-hosted AI models, and AI agents with system permissions each require specific security controls and testing approaches.
  4. AI agents represent a significant new attack surface - Without proper isolation, monitoring and data flow controls, AI agents with system permissions can be manipulated through techniques like prompt injection to access sensitive data across interconnected cloud services.
  5. Effective remediation requires collaboration between offensive and defensive teams - Organizations get the most value from security tests when they plan for immediate remediation while information is fresh, treating testing and fixing as a single collaborative effort rather than separate activities.
  6. Permission issues remain the most exploited cloud misconfiguration - Even with the rise of AI-related vulnerabilities, IAM misconfigurations continue to be the primary entry point that red teamers exploit to gain unauthorized access to sensitive cloud resources.

Jessica Stinson BF Headshot

About the speaker, Jessica Stinson

Senior Solutions Engineer

Jessica Stinson is a Senior Solutions Engineer at Bishop Fox, serving as a trusted advisor throughout the sales process, collaborating with delivery teams to ensure seamless client on-boarding and long-term satisfaction. Previously, Jessica was a Security Consultant III at Bishop Fox focused on Application Security, Cloud Security, and Source Code Review. Jessica's experience ranges from testing applications, internal and external networks, and cloud-based infrastructures for current threats and vulnerabilities with an emphasis on application and cloud security to conducting source code review, analyzing system architecture and threat models while using internal and external tools to identify vulnerabilities within applications and networks.

More by Jessica
Bfx25 Steven Smiley Author Page

About the speaker, Steven Smiley

Principal Cloud Security Consultant, ScaleSec

Steven strives to be a trusted advisor for ScaleSec clients, enabling them to move swiftly without compromising security. He has been selected as an AWS Ambassador for contributing to the AWS community through public speaking, technical blogging, and open source contribution. He is passionate about using serverless technologies to build secure, cost-optimized architectures. A former US Army intelligence officer, Steven draws upon military experience to secure complex environments.

More by Steven

Extend Your Knowledge

Check out these related resources.

Penetrating the Cloud title on dark purple background and security consultants, Seth Art & Nate Robb headshots.
Virtual Session

Penetrating the Cloud: Uncovering Unknown Vulnerabilities

This presentation from Bishop Fox security experts reveals how attackers exploit common cloud misconfigurations to gain unauthorized access to sensitive data, demonstrating why continuous testing is essential for cloud security.

Learn More
Cover page of the bishop Fox cloud penetration testing methodology
Methodology

Bishop Fox Cloud Penetration Testing Methodology

Overview of Bishop Fox’s methodology for cloud security reviews.

Learn More
Preview of Bishop Fox new offensive security guide on Cloud Penetration Testing titled: Outpacing adversaries in the cloud
Guides & Report

Outpacing Adversaries in the Cloud: An Offensive Security Guide

Download our guide to discover the current challenges in securing the cloud, the approach offensive security takes through cloud penetration testing, and the differences and advantages of investing in CPTs as part of a cloud security program.

Learn More

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.