The NSA has shared its cloud mitigation strategies in two parts, focusing on DevSecOps practices and threat detection and response. The first part emphasizes integrating security into existing development and operations workflows, using Infrastructure as Code (IaC) to secure deployments, and defending CI/CD environments. The second part delves deeper into these strategies, highlighting the challenges of maintaining secure code, pipelines, and deployments. Additionally, the NSA's list includes recommendations for adopting a DevSecOps approach, such as assessing maturity, securing code, and detecting emerging vulnerabilities. The text also explores threat detection and response, including collecting and interpreting authentication, audit, and activity logs, and building sufficient security coverage with cloud SIEMs. Furthermore, it touches on AI security, particularly in relation to Large Language Models (LLMs), and provides guidance on monitoring LLM applications to prevent misconfigurations that can lead to vulnerabilities and threats. The NSA's strategies are complemented by Datadog Security Labs' research and insights, offering a comprehensive approach to cloud security.