Marina Segal

    Marina Segal

    CEO & Co-Founder

    Marina is the CEO and co-founder of Tamnoon. A long-time cloud security operator, she focuses on helping CISOs translate cloud risk into measurable, fixable outcomes.

    LinkedIn

    Articles by Marina (10)

    Unmasking Self-Spreading npm Malware's Elusive Attack Vectors
    Cloud Security

    Unmasking Self-Spreading npm Malware's Elusive Attack Vectors

    June 29, 2026

    Self-spreading npm malware, like the Shai-Hulud worm, presents a unique challenge for cloud environments. It doesn't just compromise a single package, it weaponizes developer infrastructure to propaga…

    Read moreArrow
    Automating Safe Cloud Vulnerability Patching
    Cloud Security

    Automating Safe Cloud Vulnerability Patching

    June 22, 2026

    Security teams often find themselves drowning in alerts, a situation exacerbated by the sheer volume of vulnerabilities detected in cloud environments. Tools like Wiz, Orca Security, Sentinel One Sing…

    Read moreArrow
    Remediating Exposed AWS Credentials on Public Sites
    Cloud Security

    Remediating Exposed AWS Credentials on Public Sites

    June 17, 2026

    Finding exposed AWS credentials on public websites is a critical incident that demands immediate and precise action. These aren't just theoretical risks. They represent direct attack vectors that thre…

    Read moreArrow
    Shrinking Your Remediation Backlog and Conquering CNAPP Alert Fatigue
    Cloud Security

    Shrinking Your Remediation Backlog and Conquering CNAPP Alert Fatigue

    May 27, 2026

    Cloud security teams drown in alerts. Modern Cloud Native Application Protection Platforms (CNAPPs) like Wiz, Orca Security, and Palo Alto Networks Prisma Cloud excel at finding issues, but the sheer …

    Read moreArrow
    Shrinking Your Cloud MTTR for Misconfigurations
    Cloud Security

    Shrinking Your Cloud MTTR for Misconfigurations

    April 11, 2026

    Shrinking Your Cloud MTTR for Misconfigurations Your CSPM's alert dashboard isn't a to-do list; it's a debt ledger. Each entry represents a window of exposure that grows longer with every passing hour…

    Read moreArrow
    Shrinking Your Cloud MTTR for Misconfigurations
    Cloud Security

    Shrinking Your Cloud MTTR for Misconfigurations

    April 3, 2026

    Shrinking Your Cloud MTTR for Misconfigurations Your cloud security posture management (CSPM) tool works. It generates thousands of alerts, proving its value in detection. Yet, the time it takes to fi…

    Read moreArrow
    Reporting Cloud Risk to the Board: From Alerts to Actionable Strategy
    Cloud Security

    Reporting Cloud Risk to the Board: From Alerts to Actionable Strategy

    March 16, 2026

    Translate Raw CSPM Alerts into a Risk Narrative Your board doesn’t want the CSV export from Wiz, Prisma Cloud, or Orca Security. They want a story about risk, money, and strategy, and a vulnerability …

    Read moreArrow
    CSPM vs. CIEM: Finding the Right Cloud Security Tool for Remediation
    Cloud Security

    CSPM vs. CIEM: Finding the Right Cloud Security Tool for Remediation

    March 13, 2026

    Your Scanners Are Working Fine Your Remediation Process Is Broken CSPM and CIEM alerts don't fix themselves. Security teams are equipped with powerful detection tools like Wiz, Prisma Cloud, and Orca …

    Read moreArrow
    Cloud AI Security: Why Your CSPM Won't Catch Agent Attacks
    Governance & Compliance

    Cloud AI Security: Why Your CSPM Won't Catch Agent Attacks

    March 4, 2026

    Cloud AI Security: Why Your CSPM Won't Catch Agent AttacksYour CSPM is blind to your biggest new insider threat: your own AI.For years, cloud security has revolved around infrastructure configuration.…

    Read moreArrow
    Cloud Detection Is Topping Out: Why Your IDS Can't Stop Agentic AI Breach Loops
    Cloud Security

    Cloud Detection Is Topping Out: Why Your IDS Can't Stop Agentic AI Breach Loops

    February 25, 2026

    Your cloud detection stack is generating more alerts than ever, yet it’s providing less actual security. Traditional intrusion detection systems (IDS) and even modern Cloud Security Posture Management…

    Read moreArrow