Saviynt Co-Founder Amit Saha discusses how their AWS partnership has enabled the identity security company to deliver comprehensive identity protection while minimizing organizational friction.

Topics Include:

• Saviynt is leading identity security provider in market
• Secures human, non-human, workforce, and privileged access identities
• Eliminates friction while automating organizational access management processes
• Biggest challenge: reducing friction in new access processes
• Second challenge: visibility into accumulated technical debt problems
• Lost business context makes access permissions difficult to unwind
• Saviynt provides quick visibility to prioritize identity risks
• Shadow IT creates ungoverned workloads and cloud applications
• Need integration with asset management and cloud providers
• Must derive intelligence from multiple disconnected information sources
• AWS partnership provides access to prolific customer base
• AWS security owners are same buyers for Saviynt
• Eleven-year AWS relationship with early security competency
• ISV Accelerate program connects with sellers and architects
• Rising Star program helps stand out in crowded marketplace
• Find mutual customers for successful AWS partnership stories
• GenAI in bad actors' hands compromises customer security
• Product engineering uses GenAI tools for better quality
• Agentic AI creates new paradigm between human/non-human identities
• Agentic AI requires dynamic, fluid access management approaches
• AI agents can generate their own bots needing access
• Zero trust principles needed at broader scale for AI
• Next twelve months: getting ahead of GenAI curve
• New AWS services launch daily in GenAI space
• Contributing to new standards like MCP and A2A protocols
• AWS Marketplace simplifies procurement and buyer discovery processes
• EDP program and migration incentives benefit ISV transactions
• AWS developer-friendly startup programs accelerate time to market
• Cloud-native approach enables predictable scaling and AWS integration
• AWS-Saviynt partnership aims for once-in-generation security impact

Participants:

• Amit Saha – Co-Founder and Chief Growth Officer, Saviynt

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/

Chief Architect Russell Leighton discusses how Panther's cloud platform revolutionizes security operations by treating detections as Python code and AI enabled alert vetting turning responses from hours into minutes.

Topics Include:

• Panther is a cloud security monitoring tool (cloud SIEM)
• Works at massive scale, more cost-effective than legacy systems
• Key differentiator: "detections as code" written in Python
• Brings software engineering best practices to security operations
• Enables unit testing and version control for security detections
• Recently adopted generative AI to improve security workflows
• SOC burnout is renowned due to tedious ticket processing
• AI has intelligence of security engineer, works much faster
• Example: Alert shows "Russ Leighton removed branch protection"
• Old way: Manual log analysis, checking user profiles manually
• Takes hours of squinting at detailed log data
• New AI way: Automatic vetting happens in minutes
• AI checks user profile in Okta or IDP
• Determines engineer status, assesses typical behavior patterns
• Provides risk assessment based on historical alert data
• Low risk for engineers, high risk for unusual users
• Example: HR person accessing production code is escalated
• Customer quote: Takes vetting "from hours to seconds"
• Panther customers get dedicated AWS accounts for security
• Company can't see customer data, only self-reported metrics
• AI provides summaries, risk assessments, timelines, visualizations
• Also suggests remediations like human security engineer would
• Initial concerns about putting AI in production environment
• Customer feedback exceeded expectations with feature requests
• AWS Bedrock integration addresses customer security concerns
• Uses Anthropic Claude as base LLM through Bedrock
• Customers can enable additional Bedrock guardrails independently
• AI transparency prevents hallucination concerns through explanations
• Claude's extended thinking mode shows reasoning process
• AI visualizes thinking with flowcharts explaining decision process

Participants:

• Russell Leighton – Chief Architect, Panther

Further Links:

• Website: Panther.com
• AWS Marketplace

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/

Security leaders from Anthropic and AWS discuss how agentic AI is transforming cybersecurity functions to autonomously handle everything from code reviews to SOC operations.

Topics Include:

• Agentic AI differs from traditional AI through autonomy and agency
• Traditional AI handles single workflow nodes, agents collapse multiple steps
• Higher model intelligence enables understanding of broader business contexts
• Agents make intelligent decisions across complex multi-step workflows processes
• Enterprise security operations are seeing workflow consolidation through GenAI
• Organizations embedding GenAI directly into customer-facing production applications
• Software-as-a-service transitioning to service-as-software through AI agents
• Securing AI requires guardrails to prevent hallucinations in applications
• New vulnerabilities appear at interaction points between system components
• Attackers target RAG systems and identity/authorization layers instead
• LLMs hallucinate non-existent packages, attackers create malicious honeypots
• Governance frameworks must be machine-readable for autonomous agent reasoning
• Amazon investing in automated reasoning to prove software correctness
• Anthropic uses Claude to write over 50% of code
• Automated code review systems integrated into CI/CD pipelines
• Security design reviews use MITRE ATT&CK framework automation
• Low-risk assessments enable developers to self-approve security reviews
• 40% reduction in application security team review workload
• Anthropic eliminated SOC, replaced entirely with Claude-based automation
• IT support roles transitioning to engineering as automation replaces frontline
• Compliance questionnaires fully automated using agentic AI workflows
• ISO 42001 framework manages AI deployment risks alongside security
• Executive risk councils evaluate AI risks using traditional enterprise processes
• AWS embeds GenAI into testing, detection, and user experience
• Finding summarization helps L1 analysts understand complex AWS environments
• Amazon encourages teams to "live in the future" with AI
• Interview candidates expected to demonstrate Claude usage during interviews
• Security remains biggest barrier to enterprise AI adoption beyond POCs
• Virtual employees predicted to arrive within next 12 months
• Model Context Protocol (MCP) creates new supply chain security risks

Participants:

• Jason Clinton – Chief Information Security Officer, Anthropic
• Gee Rittenhouse – Vice President, Security Services, AWS
• Hart Rossman – Vice President, Global Services Security, AWS
• Brian Shadpour – GM of Security and B2B Software Sales, AWS

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/