Lessons From Building a Cloud Attack Simulation Program
Pavel Lineitsev
fwd:cloudsec North America 2026 · Day 1
In the dynamic landscape of cloud security, ensuring the efficacy of detection and response capabilities across heterogeneous cloud environments is a monumental challenge. Pavel Lineitsev, from Conland's Detection and Response Team, presented an insightful talk at fwd:cloudsec, detailing his team's journey and lessons learned from building an internal cloud attack simulation program. The presentation offered a unique defender's perspective, moving beyond theoretical discussions to practical implementation.
AI review
Lineitsev delivers an honest, practitioner-level case study on building a continuous cloud detection validation program — grounded in real operational pain and a concrete tool. The content is competent and transferable, but it's fundamentally a 'here's how we built our internal tooling' talk, not novel research, and it won't surprise anyone who's spent serious time in this space.