
Idan Perez
CTO & Co-Founder
Idan is the CTO and co-founder of Tamnoon. He architects the agentic platform that automates safe remediation across AWS, Azure, and GCP, and writes about identity, network, and cloud-native security at scale.
LinkedInArticles by Idan (11)

Mitigating Damage from Non-Human Identity Breaches
July 15, 2026Non-human identities are prime targets in cloud breaches, representing an attack vector many organizations struggle to secure effectively. Over the past 18 months, 83% of organizations reported at lea…

AWS IAM Over-Permissioning Fixes for Robust Security
July 3, 2026Over-permissioned AWS IAM roles and users create widespread security exposure. This isn't a theoretical risk. It's a constant operational headache that opens the door to critical incidents. For exampl…

Unforeseen Disruptions From IAM Access Key Rotation
June 5, 2026Rotating IAM access keys might seem like a straightforward security hygiene task, but it often triggers a cascade of unforeseen disruptions. What begins as a routine security measure can quickly devol…

Fixing Overprivileged IAM Roles in Your Cloud Environment
June 3, 2026Overprivileged Identity and Access Management (IAM) roles are a direct route to compromise, expanding an attacker's blast radius immediately after initial access. It's not enough to detect overprovisi…

Fortifying Critical Infrastructure with Network Segmentation Strategies
May 20, 2026Critical infrastructure sectors face escalating cyber threats, making resilient network designs essential. Simply detecting intrusions isn't enough. Isolating compromised segments and limiting lateral…

Shrinking Your Cloud Blast Radius with Credential Control
May 20, 2026Shrinking Your Cloud Blast Radius with Credential Control Credential security in the cloud isn't just about preventing initial access. It's about limiting what an attacker can do once they're in. This…

IAM Access Key Rotation Failure Points and Downtime Prevention
May 15, 2026Rotating IAM access keys might seem like a simple security hygiene task, but its execution often leads to unexpected downtime and operational disruptions. Security teams frequently mandate key rotatio…

Hardening Entra ID Against Service Principal Hijacks
May 1, 2026Your biggest identity risk isn't a user; it's a forgotten script with God-mode permissions. While security teams focus on user-centric threats like MFA bombing, attackers are quietly pivoting to a sof…

Cloud AI Identity Permissions Your Dark Security Debt
April 27, 2026Why AI Identity Permissions are Security Debt You Can't Afford The convergence of cloud infrastructure and AI has introduced a new class of identity, one that often operates with unexamined permission…

Identity is Your New Perimeter: 10 Attacks Bypassing Modern CSPMs
March 12, 2026Your CSPM is generating identity alerts, not stopping identity attacks. Most Cloud Security Posture Management (CSPM) tools are effective at telling you what you already suspect: your IAM posture is a…

Legacy Network Security is Killing Your Digital Transformation: Why Modern Apps Need Automated Remediation
March 11, 2026Legacy Network Security is Killing Your Digital Transformation: Why Modern Apps Need Automated RemediationYour CI/CD pipeline deploys in minutes, but your firewall change ticket takes three weeks. You…