foreign to the AWS re invent Cube coverage I'm John Furrier here with thecube got a great guest line up here talking about computer vision at the edge and saramba product lead AWS events mobile app and Steven White solution architect for Edge ml thanks for joining me today computer vision at the edge with adios Panorama thanks for coming on happy to be here so what is Ada's Panorama let's get that out there right away what's the focus of that let's define what that is and we'll get into this computer vision at the Edge Story yeah so thanks Sean uh AWS Panorama is our managed uh computer vision at the Ed service and so to put that perspective you know imagine with me the last time that you've been into a restaurant or maybe your favorite retail store or even office building and didn't notice a camera and so we were talking to customers and trying to understand you know what is it that they do with all of this uh video content that they're collecting and surprisingly we found out that large part of this data just sits on a hard drive somewhere and never gets used and so as we dug in a little deeper to better understand you know why this data is just sitting there I think there were three main themes that continue to come up across the board uh one is you know around privacy right privacy security a lot of the data that's being captured with these cameras tend to be either intellectual property that is you know focused on kind of the Manifest factoring process or maybe about their products that they don't want to get out there you know or and or it could just be a private pii data privacy data related to their employee Workforce and and maybe even customers so you know privacy is is a big concern second was just the amount of bandwidth that cameras create and produce tend to be uh prohibitive from for you know sending back to a centralized location for processing uh each camera stream tends to generate about a couple of megabytes of data so it could get very voluminous as you've got tons of cameras at your location and the other issue was around just the latency required to take action on the data so a lot of times especially in the manufacturing space um you know as as you've got a manufacturing line of products that are coming through and you need to take action in milliseconds and so latency is extremely important from process processing time to taking action so those three uh main drivers you know we ended up developing this AWS service called Panorama that addressed these three main challenges with uh you know with analyzing video content and database Panorama in particular there's there's two main components right we've got the compute platform that is about the size of a sheet of paper your standard you know eight and a half by eleven size sheet of paper so the platform itself is extremely compact it's a it's a video and and deep learning algorithms it sits at the customer premise and directly interfaces with video cameras using the standard IP protocols collects that data uh processes it and then immediately deletes the data so there isn't any any information that's actually stored at the location and you know basically the only thing that's left over is just metadata that describes that data and then the other key component here is the cloud um you know service component which helps manage the fleet of devices that are existing so all of these Panorama appliances that are sitting at your premise there's a cloud component that helps you configure you know operationalize check the health as well as deploy applications and configure cameras so that's uh basically you know the the service is really hopefully optimal or you know is focused on um helping customers really make use of all of their video data at the edge you know the theme here at re invent this year is applications we've seen things like connect add value to customers this is one of those situations where everyone's got cameras it's easy to connect to an IP address and Cloud kind of gives you all those Services there are a lot of real world applications that people can can Implement with this because with the cloud you kind of have this ability to kind of stand it up and get value out of that data what are some of the real world applications that it was because they're implementing with the camera because I mean I can see a lot of use cases here where I can you don't have to build the clouds there for me I can stand it up and start getting value what kind of use cases do you see implementing from your customers yeah so our customers are really amazing with the different types of problems um and opportunities that they bring to us for uh using computer vision at the edge in their data um you know we've got everything from animal Warfare use cases to being able to use you know video to uh to to make sure that you know food processing and just you know the health of animals is uh is uh sufficient we've got cases in manufacturing doing visual inspection and anomaly detection so looking at products that are on the conveyor belt as they're being manufactured and put together to make sure that obviously they're they're put together in the right in the right way um and then we've got different port authority and airports that use uh for you know security and cargo tracking to make sure that the products get to where they're supposed to go in a timely and efficient manner manager manage and then finally one of the use cases that really show facing a re invent this year is a part of our retail analytics portfolio which is line counting and so in particular we see a lot of customers in the retail space such as quick service restaurants even you know Peril retail and convenience stores where they want to better understand um you know whether their product is being made to the customer specification we've got like french fry use cases to see how the quality of that french fry is um you know over time and if they need to make a new batch when they've got a influx of customers coming in and to understanding employee to customer ratio maybe they need to put somebody on the cash register you know at busy time so there's really just a big number of customers you know opportunities that we've really solving with the computer vision service looks like a great service Panorama looking good and I want to get your thoughts you have the events happy the product lead take us through with your app I know you have decided to use it was Panorama I was a fit for you this year at re invent 2022 but you know you've been doing this event app for a while now take us through the app when it started how it's evolved and kind of what's the focus this year of course Sean app started in 26 4 re invent and since we've really expanded this year we've actually supported up to 34 events for AWS and continue to expand that for future years for this year though specifically we wanted to contribute to the overall event experience at re invent by helping people go through the process of checking in and picking up their badge in a more formed and efficient way so we decided that the AWS Panorama team and their computer vision and Edge capabilities were the best fit to analyze the lines and the registration kiosks that we have on site at both the Venetian and MGM at the airport we'll have digital signage showcasing our bad pickup wait times that will help attendees select which badge pickup location that they want to go to and see the current wait times live on those signs as well as through the mobile app so I can basically um get the feel for the line size when to come in does it give me a little recognition of who I am and kind of when I get there there's a TIA pull up my records as I do a little intelligence behind the scenes give us a little peek under the covers what's the solution look like so you do have to sign into the mobile app with your registration and so with that we will have your QR code specific for your check-in experience available to you you'll see that at the top of the screen and we'll know once you've checked in that will disappear but if you haven't checked in that Banner is at the top of the event screen and when you tap that that's when you can see all the different options where you can go and pick up your badge we do have five locations this year for badge pickup and the app will help you kind of navigate which one of those options will be best for you given you know maybe you want to pick it up right away at the airport or you may want to go even to one of your other Hotel options that we'll have um to pick it up at foreign okay now I gotta get I got to ask you on the app what's the coolest thing you got going on this year what's new every year there seems to be a new feature what's the focus this year so can you share a a peek on some of the key features yeah so our biggest and most popular features are always around the session catalog and calendar as you can utilize both to of course organize your event schedule and really stay on top of what you want to do on site and get the most out of your reinvent experience this year we have a few new exciting features of course badge pickup line counting is is one of our biggest but we also will have a one-way calendar sync so you can sync all of your calendar activities to your native device calendar as well as pure talk which is our newest feature that we launched at the start of November where you can interact with other attendees who have opted in and even set up time on site to meet one-on-one with them we've also filled that experience with peer talk experts that include AWS experts that are ready to meet and interact with attendees who have interest on site you know I love this topic it's a very cool video we love video we're doing this remote video I'm getting ready for you know all the action and and analyzing it video's cool and so to me if we could look at the video and say hey we haven't soon that might have body cams in the future um video is great people love videos very engaging but always people that say what about my privacy so how do you guys put in place uh mechanisms to preserve attendee privacy yeah I think so I'm not I think you know you and our customers share the same concern and so we have built uh foundationally that AWS Panorama to address you know both privacy and security concerns with uh associated with all this video content and so in particular the AWS Panorama Appliance is something that sits at the customer premise it interface directly with video cameras uh the data all the video that's processed is immediately deleted nothing stored um and you know the outcome of the processing is just simple metadata so it's Text data that you know as an example in the case of the AWS uh line counting solution that we're demoing this year at Panorama along with you know the events team uh it's simply a count of the number of people in the video at any given time so so you know we we do take privacy uh at heart and have made every effort to address them and what are some of the things that you're doing at the event app I mean I'm imagining you're probably looking at space I mean there's a fire marshal issues around you know people do you take it to that level I mean what's how far are you pushing the envelope on on Panorama what are some of the things that you guys are doing besides check-ins or anything you can share on what's Happening the area where we're utilizing you know Anonymous attendee data otherwise other things in the app are very Anonymous just in nature I mean you do sign in but besides that everything we collect is anonymous and we don't collect unless you consent with the cookie consent that appears right when you first launch the app experience besides that we do have as I mentioned peer talk and and that's just where you're sharing information that you want to share with other attendees on site and then we do have session surveys where you can provide information that you wish about how this survey or how the sessions rather went that you attended on-site yeah Stephen you're you're uh your title has you the solution architect for Edge ml this is the Ultimate Edge use case you're seeing here I mean it's a big part of the future of how companies are going to use video and data just what's your reaction to all this I mean we're at a time it's very kind of an interesting time in the history of the industry as you look at this this is a really big part of of the future with video and Edge like I mentioned users are involved people are involved spaces are involved kind of a fun area what's your reaction to where this is right now so personally I'm very passionate about this uh particular solution and service I've been doing computer vision now for 12 years I started doing in the cloud but when I heard about you know customers really looking for an edge component solution and this you know AWS was still in the early stages I knew I had to be a part of it and so I I you know work with some amazing talented engineers and scientists putting this solution together and of course you know our customers continue to bring us these amazing use cases that you know that just I wouldn't get an opportunity to um you know witness without without you know the support of our customers and so we've got some amazing opportunity amazing projects and you know I just love the love to uh experience that with our customers and partners yeah and and Stephen this is like one of those times where the industry has always had this everyone's scratching the niche somewhere but then you get cloud and scale and data come in and just it accelerates some of these areas that were you know I won't say not growing fast but very interesting like computer vision video events technology in the cloud is changing in a good way some of these areas uh and we're seeing that like computer vision as you mentioned Stephen so Ann event same thing I can imagine this event app will blow up to probably be all things Amazon events and and be the touch Touchstone for all customers and attendees I'm probably thinking the road map there's looking pretty interesting with all the vision you have there what's your what's your reaction to the cloud scale meets events absolutely yeah I know we we have a lot of events that happen at AWS and our goal is to have as many of them in the app as possible where it makes sense right we have a lot of partial Day events to multi-day events and the multi-day events are definitely the area where it's harder for an attendee to organize all that they have to do going on on site as well as everything surrounding the event pre-event uh topics and sessions looking up what they want to do to make sure that they're getting the most of their time on site so we really want to make sure that that's something that an attendee can do with our app as well as it showcase as many of the AWS Services as we have like we are doing here with Panorama we have a few other services in the app as well Amazon location service and Amazon connect to name a couple and we hope to just include more and more with each year as well as more events as the time goes on I'm sure your roadmaps looking great the computer vision is awesome I mean this is a mashup integration apis are going to come around the corner so much excitement after re invent love to follow up with you guys and find out more I think this is a super interesting area the convergence of what you guys are working on to kind of wrap up where do you guys see um AWS Panorama going and where can people learn more about how to get involved how to use the service how to test it out where's this going and how do people learn more but first off you can get customers can get more information about panorama from our website aws.amazon.com Panorama and you know I think where we're going is super exciting you know we continue to improve the product to add support for as an example containers we've added support for Hardware acceleration to improve the number of cameras that we can support so we've you know we've got um you know we can support now with a single device up to 30 40 cameras we've got the ability now to support many different uh we continue to expand the interface types that we support um you know and the different types of even adding sensors and you know expanding to Sensor Fusion so not just computer vision but we've learned from customers that they actually want to incorporate other uh other sensor types and other interfaces so we're bringing in the ability to handle you know computer vision and video but also many other data types as well all right and and Stephen thank you for sharing great stuff computer vision at the edge with Panorama thanks for coming on thecube appreciate it thanks for coming on thank you okay AWS coverage here in the cube I'm John for your host thanks for watching

foreign [Music] welcome to this Cube showcase accelerating business transformation with VMware Cloud on aw it's a solution Innovation conversation with two great guests Fred Ward and VP of Commercial Services at AWS and Narayan bardawaj who's the VP and general manager of cloud Solutions at VMware gentlemen thanks for uh joining me on the Showcase great to be here hey thanks for having us on it's a great topic you know we we've been covering this VMware Cloud on AWS since since the launch going back and it's been amazing to watch The Evolution from people saying oh it's the worst thing I've ever seen what's this mean uh and depressed we're we're kind of not really on board with kind of the vision but as it played out as you guys had announced together it did work out great for VMware it did work out great for a divs and it continues two years later and I want to just get an update from you guys on where you guys see this has been going obviously multiple years where is the evolution of the solution as we are right now coming off VMware Explorer just recently and going in to reinvent uh which is only a couple weeks away uh this feels like tomorrow but you know as we prepare a lot going on where are we with the evolution of the solution I mean the first thing I want to say is you know October 2016 was a seminal moment in the history of I.T right when bad girls singer and Andy jassy came together to announce this and I think John you were there at the time I was there it was a great great moment we launched the solution in 2017 the year after that at vmworld back when we called it vmworld I think we've gone from strength to strength one of the things that has really mattered to us is we've learned from AWS also and the process is this notion of working backwards so we're really really focused on customer feedback as we build the service offering now five years old pretty remarkable Journey uh you know in the first years we tried to get across all the regions you know that was a big Focus because there was so much demand for it in the second year we started going really on Enterprise great features we invented this pretty awesome feature called stretch clusters where you could stretch a vsphere cluster using vsan NSX across two azs in the same region pretty phenomenal for lines of availability that applications start started to get with that particular feature and we kept moving forward all kinds of integration with AWS direct connect Transit gateways with our own Advanced networking capabilities uh you know along the way Disaster Recovery we punched out you need two new Services just focused on that and then more recently we launched our outposts partnership we were up on the stage at reinvent again with Pat and Andy announcing AWS outposts and the VMware flavor of that VMware cloud and AWS outposts I think it's been significant growth in our federal sector as well the federal Empire certification more recently so all in all we're super excited we're five years old the customer momentum is really really strong we are scaling the service massively across all GEOS and industries that's great great update and I think one of the things that you mentioned was how the advantages you guys got from that relationship and this has kind of been the theme for AWS man since I can remember from day one Fred you guys do the heavy lifting as as it's always say for the customers here VMware comes on board takes advantage of the AWS and kind of just doesn't miss a beat continues to move their workloads that everyone's using you know vsphere and these are these are Big workloads on AWS what's the AWS perspective on this how do you see it yeah uh it's pretty fascinating to watch how fast customers can actually transform and move when you take the the skill set that they're familiar with and the advanced capabilities that they've been using on-prem and then overlay it on top of the AWS infrastructure that's that's evolving quickly and and building out new hardware and new instances we'll talk about uh but that combined experience between both of us on a jointly engineered solution uh to bring the best security and the best features that really matter for those workloads uh drive a lot of efficiency and speed for the for the customer so it's been well received and the partnership is stronger than ever from an engineering standpoint from a business standpoint and obviously it's been very interesting to look at just how we stay day one in terms of looking at new features and work and and responding to what customers want so pretty pretty excited about just seeing the transformation and the speed that which customers can move to uh BMC yeah that's a great value probably we've been talking about that in context to anyone building on top of the cloud they can have their own super cloud as we call it if you take advantage of all the capex and investment Amazon's made and AWS is made and and continues to make in performance I as and pass all great stuff I have to ask you guys both as you guys see this going to the next level what are some of the differentiations you see around the service compared to other options on the market what makes it different what's the combination you mentioned jointly engineered what are some of the key differentias of the service compared to others yeah I think one of the key things red talked about is this jointly engineered notion right from day one we were the earlier doctors of the AWS Nitro platform right the reinvention of ec2 back five years ago and so we've been you know having a very very strong engineering partnership at that level I think from uh we have a customer standpoint you get the full software-defined data center compute storage networking on ec2 bare metal across all regions you can scale that elastically up and down it's pretty phenomenal just having that consistency Global right on AWS ec2 Global regions now the other thing that's a real differentiator for us customers tell us about is this whole notion of a managed service right and this was somewhat new to VMware this undifferentiated heavy lifting where customers are to provision rack stack Hardware configure the software on top and then upgrade the software and the security patches on top so we took away all of that pain as customers transition to VMware cloud and AWS in fact my favorite story from last year when we were all going through the lock for Jay debacle the industry was just going through that right favorite proof point from customers was before they could even race uh this issue to us we sent them a notification saying uh we already patched all of your systems no action from you the customers were super thrilled I mean these are large Banks many other customers around the world super thrill they had to take no action for a pretty incredible industry challenge that we were all facing that's a great point you know the whole managed service piece brings up the security and you're kind of teasing at it but you know there's always vulnerabilities that emerge when you're doing complex logic and as you grow your Solutions there's more bits you know Fred we were commenting before we came on cameras more bits than ever before and and at the physics layer too as well as the software so you never know when there's going to be a zero day vulnerability out there just it happens we saw one with Fortinet this week um this came out of the woodwork but moving fast on those patches is huge this brings up the whole support angle I wanted to ask you about how you guys are doing that as well because to me we see the value when we when we talk to customers on the cube about this you know it was a real real easy understanding of how what the cloud means to them with VMware now with the AWS but the question that comes up that we want to get more clarity on is how do you guys handle the support together well what's interesting about this is that it's it's done mutually we have dedicated support teams on both sides that work together pretty seamlessly to make sure that whether there's a issue at any layer including all the way up into the app layer as you think about some of the other workloads like sap we'll go end to end and make sure that we support the customer regardless of where the particular issue might be for them uh and on top of that we look at where where we're improving reliability in as a first order of principle between both companies so from an availability and reliability standpoint it's it's top of mind and no matter where the particular item might land we're going to go help the customer resolve that works really well on the VMware side let's spend the feedback there what's the what's some of the updates same scene yeah yeah I think uh look I mean VMware owns and operates the service will be a phenomenal back in relationship with AWS customers call VMware for the service for any issues and then we have a awesome relationship with AWS in the back end for support issues for any hardware issues capacity management that we jointly do right all the hard problems that customers don't have to worry about uh I think on the front end we also have a really good group of solution Architects across the companies that help to really explain the solution do complex things like Cloud migration which is much much easier with VMware on AWS we're presenting that easy button to the public cloud in many ways and so we have a whole technical audience across the two companies that are working with customers every single day you know you had mentioned a list here some of the Innovations the you mentioned the stretch clustering you know getting the GEOS working Advanced Network disaster recovery um you know fed fed ramp public sector certifications outposts all good you guys are checking the boxes every year you got a good good accomplishments list there on the VMware AWS side here in this relationship the question that I'm interested in is what's next what uh recent Innovations are you doing are you making investments in what's on the list this year what items will be next year how do you see the the new things the list of the cosmos people want to know what's next they don't want to see stagnant uh growth here they want to see more action you know as as uh Cloud kind of continues to scale and modern applications Cloud native you're seeing more and more containers more and more you know more CF CI CD pipelining with with modern apps putting more pressure on the system what's new what's the new Innovations absolutely and I think as a five-year-old service offering uh Innovation is top of mind for us every single day so just to call out a few recent innovations that we announced in San Francisco at VMware Explorer um first of all uh our new platform i4i dot metal it's isolate based it's pretty awesome it's the latest and greatest uh all the speeds and beats that you would expect from VMware and AWS at this point in our relationship we announced two different storage options this notion of working from customer feedback allowing customers even more price reductions really take off that storage and park it externally right and you know separate that from compute so two different storage offerings there one is with AWS FSX NetApp on tap which brings in our NetApp partnership as well into the equation and really get that NetApp based really excited about this offering as well and the second storage offering called VMware Cloud Flex story vmware's own managed storage offering beyond that we've done a lot of other Innovations as well I really wanted to talk about VMware Cloud Flex compute where previously customers could only scale by hosts you know host is 36 to 48 cores give or take but with VMware cloudflex compute we are now allowing this notion of a resource defined compute model where customers can just get exactly the vcpu memory and storage that maps to the applications however small they might be so this notion of granularity is really a big innovation that that we are launching in the market this year and then last but not least topper ransomware of course it's a Hot Topic in the industry we are seeing many many customers ask for this we are happy to announce a new ransomware recovery with our VMware Cloud VR solution a lot of innovation there and the way we are able to do machine learning and make sure the workloads that are covered from snapshots backups are actually safe to use so there's a lot of differentiation on that front as well a lot of networking Innovations with project North Star the ability to have layer 4 through layer seven uh you know new SAS services in that area as well keep in mind that the service already supports managed kubernetes for containers it's built in to the same clusters that have virtual machines and so this notion of a single service with a great TCO for VMS and containers is sort of at the heart of our option the networking side certainly is a hot area to keep innovating on every year it's the same same conversation get better faster networking more more options there the flex computes interesting if you don't mind me getting a quick clarification could you explain the address between resource defined versus Hardware defined because this is kind of what we had saw at explore coming out that notion of resource defined versus Hardware defined what's that what does that mean yeah I mean I think we've been super successful in this Hardware defined notion where we're scaling by the hardware unit uh that we present as software-defined data centers right so that's been super successful but we you know customers wanted more especially customers in different parts of the world wanted to start even smaller and grow even more incrementally right lower the cost even more and so this is the part where resource defined starts to be very very interesting as a way to think about you know here's my bag of resources exactly based on what the customer's requested it would be for fiber machines five containers its size exactly for that and then as utilization grows we elastically behind the scenes were able to grow it through policies so that's a whole different dimension it's a whole different service offering that adds value when customers are comfortable they can go from one to the other they can go back to that post-based model if they so choose to and there's a jump off point across these two different economic models it's kind of cloud flexibility right there I like the name Fred let's get into some of the uh examples of customers if you don't mind let's get into some of these we have some time I want to unpack a little bit of what's going on with the customer deployments one of the things we've heard again on the cube is from customers is they like the clarity of the relationship they love the cloud positioning of it and then what happens is they lift and shift the workloads and it's like feels great it's just like we're running VMware on AWS and then they start consuming higher level Services kind of that adoption Next Level happens um and because it's in the cloud so so can you guys take us through some recent examples of customer wins or deployments where they're using VMware Cloud on AWS on getting started and then how do they progress once they're there how does it evolve can you just walk us through a couple use cases sure um there's a well there's a couple one it's pretty interesting that you know like you said as there's more and more bids you need better and better hardware and networking and we're super excited about the I-4 uh and the capabilities there in terms of doubling and or tripling what we're doing around a lower variability on latency and just improving all the speeds but what customers are doing with it like the college in New Jersey they're accelerating their deployment on a on onboarding over like 7 400 students over a six to eight month period and they've really realized a ton of savings but what's interesting is where and how they can actually grow onto additional native Services too so connectivity to any other services is available as they start to move and migrate into this um the the options there obviously are tied to all the Innovation that we have across any Services whether it's containerized and with what they're doing with tanzu or with any other container and or services within AWS so so there's there's some pretty interesting scenarios where that data and or the processing which is moved quickly with full compliance whether it's in like health care or regulatory business is is allowed to then consume and use things for example with text extract or any other really cool service that has you know monthly and quarterly Innovations so there's things that you just can't could not do before that are coming out uh and saving customers money and building Innovative applications on top of their uh their current uh app base in in a rapid fashion so pretty excited about it there's a lot of examples I think I probably don't have time to go into too many here yeah but that's actually the best part is listening to customers and seeing how many net new services and new applications are they actually building on top of this platform now Ryan what's your perspective from the VMware psychics you know you guys have now a lot of head room to offer customers with Amazon's you know higher level services and or whatever's homegrown what is being rolled out because you now have a lot of hybrid too so so what's your what's your take on what what's happening and with customers I mean it's been phenomenal the customer adoption of this and you know Banks and many other highly sensitive verticals are running production grade applications tier one applications on the service over the last five years and so you know I have a couple of really good examples SNP Global is one of my favorite examples large Bank the merch with IHS Market big sort of conglomeration now both customers were using VMware cloud and AWS in different ways and with the uh with the use case one of their use cases was how do I just respond to these Global opportunities without having to invest in physical data centers and then how do I migrate and consolidate all my data centers across the globe of which there were many and so one specific example for this company was how they migrated thousand one thousand workloads to VMware cloud and AWS in just six weeks pretty phenomenal if you think about everything that goes into a cloud migration process people process technology and the beauty of the technology going from VMware point a to VMware point B the the lowest cost lowest risk approach to adopting we have our cloud in AWS so that's uh you know one of my favorite examples there are many other examples across other verticals that we continue to see the good thing is we're seeing rapid expansion across the globe we're constantly entering new markets uh with a limited number of regions and progressing our roadmap it's great to see I mean the data center migrations go from months many many months to weeks it's interesting to see some of those success stories so congratulations another one of the other uh interesting uh and fascinating uh uh benefits is the sustainability Improvement in terms of being green so the efficiency gains that we have both in current uh generation and New Generation processors and everything that we're doing to make sure that when a customer can be elastic they're also saving power which is really critical in a lot of regions worldwide at this point in time they're they're seeing those benefits if you're running really inefficiently in your own data center that is just a not a great use of power so the actual calculators and the benefits to these workloads is are pretty phenomenal just in being more green which I like we just all need to do our part there and and this is a big part of it here it's a huge it's a huge point about sustainability for everyone glad you called that out the other one I would say is supply chain issues another one you see that constrains I can't buy hardware and the third one is really obvious but no one really talks about it it's security right I mean um I remember interviewing Steven Schmidt with that AWS and many years ago this is like 2013 and um you know at that time people saying the Cloud's not secure and he's like listen it's more secure in the cloud than on premise and if you look at the security breaches it's all about the on-premise data center vulnerabilities not so much Hardware so there's a lot you gotta the the stay current on on the isolation there is hard so I think I think the security and supply chain threat is another one do you agree I I absolutely agree uh it's it's hard to manage supply chain nowadays we put a lot of effort into that and I think we have a great ability to forecast and make sure that we can lean in and have the resources that are available and run them run them more efficiently yeah and then like you said on the security Point Security is job one it is it is the only P1 and if you think of how we build our infrastructure from Nitro all the way up and how we respond and work with our partners and our customers there's nothing more important and Narayan your point earlier about the managed service patching and being on top of things is really going to get better all right final question I really want to thank you for your time on this showcase it's really been a great conversation uh Fred you had made a comment earlier I want to kind of end with the kind of a curveball and put you guys on the spot we're talking about a modern a new modern shift it's another we're seeing another inflection point we've been documenting it it's almost like Cloud hitting another inflection point um with application and open source growth significantly at the app layer continue to put a lot of pressure and innovation in the infrastructure side so the question is for you guys each to answer is what's the same and what's different in today's market so it's kind of like we want more of the same here but also things have changed radically and better here what are the what's what's changed for better and where what's still the same kind of thing hanging around that people are focused on can you share your perspective I'll I'll tackle it um you know uh businesses are complex and they're often unique uh that that's the same uh what's changed is how fast you can innovate the ability to combine manage services and new Innovative services and build new applications is so much faster today leveraging world-class Hardware uh that you don't have to worry about that's elastic you could not do that even five ten years ago to the degree you can today especially with the Innovation so Innovation is accelerating uh at a rate that most people can't even comprehend and understand the the set of services that are available to them it's really fascinating to see what a one pizza team of of Engineers can go actually develop in a week it is phenomenal so super excited about this space and it's only going to continue to accelerate that that's my take there I am you got a lot of platform to compete on with Amazon I got a lot to build on the memory which then you're right on your side what's your what's your answer to that question I think we're seeing a lot of innovation with new applications that customers [Music] I think uh what we see is this whole notion of how do you go from desktop to production to the secure supply chain and how can we truly uh you know build on the agility that developers desire and build all the security and the pipelines to energize that motor production quickly and efficiently I think we are seeing uh you know we're at the very start of that sort of uh of Journey um of course we have invested in kubernetes means to an end but it's so much more Beyond that's happening in the industry and I think we're at the very very beginning of this Transformations Enterprise transformation that many of our customers are going through and we're inherently part of it yeah well gentlemen I really appreciate that we're seeing the same things more the same here on you know solving these complexities with abstractions whether it's you know higher level services with large-scale infrastructure um at your fingertips infrastructure is code infrastructure to be provisioned serverless all the good stuff happening Fred with AWS on your side and we're seeing customers resonate with this idea of being an operator again being a cloud operator and developer so the developer Ops is kind of devops is kind of changing too so all for the better thank you for spending the time we're seeing again that traction with the VMware customer base and it was getting getting along great together so thanks for sharing your perspectives they appreciate it thank you so much okay thank you John okay this is thecube and AWS VMware showcase accelerating business transformation VMware Cloud on AWS jointly engineered solution bringing Innovation to the VMware customer base going to the cloud and Beyond I'm John Furrier your host thanks for watching [Music]

hello I'm John Furrier with thecube and welcome to this special presentation of the cube and Horizon 3.ai they're announcing a global partner first approach expanding their successful pen testing product Net Zero you're going to hear from leading experts in their staff their CEO positioning themselves for a successful Channel distribution expansion internationally in Europe Middle East Africa and Asia Pacific in this Cube special presentation you'll hear about the expansion the expanse partner program giving Partners a unique opportunity to offer Net Zero to their customers Innovation and Pen testing is going International with Horizon 3.ai enjoy the program [Music] welcome back everyone to the cube and Horizon 3.ai special presentation I'm John Furrier host of thecube we're here with Jennifer Lee head of Channel sales at Horizon 3.ai Jennifer welcome to the cube thanks for coming on great well thank you for having me so big news around Horizon 3.aa driving Channel first commitment you guys are expanding the channel partner program to include all kinds of new rewards incentives training programs help educate you know Partners really drive more recurring Revenue certainly cloud and Cloud scale has done that you got a great product that fits into that kind of Channel model great Services you can wrap around it good stuff so let's get into it what are you guys doing what are what are you guys doing with this news why is this so important yeah for sure so um yeah we like you said we recently expanded our Channel partner program um the driving force behind it was really just um to align our like you said our Channel first commitment um and creating awareness around the importance of our partner ecosystems um so that's it's really how we go to market is is through the channel and a great International Focus I've talked with the CEO so you know about the solution and he broke down all the action on why it's important on the product side but why now on the go to market change what's the what's the why behind this big this news on the channel yeah for sure so um we are doing this now really to align our business strategy which is built on the concept of enabling our partners to create a high value high margin business on top of our platform and so um we offer a solution called node zero it provides autonomous pen testing as a service and it allows organizations to continuously verify their security posture um so we our company vision we have this tagline that states that our pen testing enables organizations to see themselves Through The Eyes of an attacker and um we use the like the attacker's perspective to identify exploitable weaknesses and vulnerabilities so we created this partner program from a perspective of the partner so the partner's perspective and we've built It Through The Eyes of our partner right so we're prioritizing really what the partner is looking for and uh will ensure like Mutual success for us yeah the partners always want to get in front of the customers and bring new stuff to them pen tests have traditionally been really expensive uh and so bringing it down in one to a service level that's one affordable and has flexibility to it allows a lot of capability so I imagine people getting excited by it so I have to ask you about the program What specifically are you guys doing can you share any details around what it means for the partners what they get what's in it for them can you just break down some of the mechanics and mechanisms or or details yeah yep um you know we're really looking to create business alignment um and like I said establish Mutual success with our partners so we've got two um two key elements that we were really focused on um that we bring to the partners so the opportunity the profit margin expansion is one of them and um a way for our partners to really differentiate themselves and stay relevant in the market so um we've restructured our discount model really um you know highlighting profitability and maximizing profitability and uh this includes our deal registration we've we've created deal registration program we've increased discount for partners who take part in our partner certification uh trainings and we've we have some other partner incentives uh that we we've created that that's going to help out there we've we put this all so we've recently Gone live with our partner portal um it's a Consolidated experience for our partners where they can access our our sales tools and we really view our partners as an extension of our sales and Technical teams and so we've extended all of our our training material that we use internally we've made it available to our partners through our partner portal um we've um I'm trying I'm thinking now back what else is in that partner portal here we've got our partner certification information so all the content that's delivered during that training can be found in the portal we've got deal registration uh um co-branded marketing materials pipeline management and so um this this portal gives our partners a One-Stop place to to go to find all that information um and then just really quickly on the second part of that that I mentioned is our technology really is um really disruptive to the market so you know like you said autonomous pen testing it's um it's still it's well it's still still relatively new topic uh for security practitioners and um it's proven to be really disruptive so um that on top of um just well recently we found an article that um that mentioned by markets and markets that reports that the global pen testing markets really expanding and so it's expected to grow to like 2.7 billion um by 2027. so the Market's there right the Market's expanding it's growing and so for our partners it's just really allows them to grow their revenue um across their customer base expand their customer base and offering this High profit margin while you know getting in early to Market on this just disruptive technology big Market a lot of opportunities to make some money people love to put more margin on on those deals especially when you can bring a great solution that everyone knows is hard to do so I think that's going to provide a lot of value is there is there a type of partner that you guys see emerging or you aligning with you mentioned the alignment with the partners I can see how that the training and the incentives are all there sounds like it's all going well is there a type of partner that's resonating the most or is there categories of partners that can take advantage of this yeah absolutely so we work with all different kinds of Partners we work with our traditional resale Partners um we've worked we're working with systems integrators we have a really strong MSP mssp program um we've got Consulting partners and the Consulting Partners especially with the ones that offer pen test services so we they use us as a as we act as a force multiplier just really offering them profit margin expansion um opportunity there we've got some technology partner partners that we really work with for co-cell opportunities and then we've got our Cloud Partners um you'd mentioned that earlier and so we are in AWS Marketplace so our ccpo partners we're part of the ISP accelerate program um so we we're doing a lot there with our Cloud partners and um of course we uh we go to market with uh distribution Partners as well gotta love the opportunity for more margin expansion every kind of partner wants to put more gross profit on their deals is there a certification involved I have to ask is there like do you get do people get certified or is it just you get trained is it self-paced training is it in person how are you guys doing the whole training certification thing because is that is that a requirement yeah absolutely so we do offer a certification program and um it's been very popular this includes a a seller's portion and an operator portion and and so um this is at no cost to our partners and um we operate both virtually it's it's law it's virtually but live it's not self-paced and we also have in person um you know sessions as well and we also can customize these to any partners that have a large group of people and we can just we can do one in person or virtual just specifically for that partner well any kind of incentive opportunities and marketing opportunities everyone loves to get the uh get the deals just kind of rolling in leads from what we can see if our early reporting this looks like a hot product price wise service level wise what incentive do you guys thinking about and and Joint marketing you mentioned co-sell earlier in pipeline so I was kind of kind of honing in on that piece sure and yes and then to follow along with our partner certification program we do incentivize our partners there if they have a certain number certified their discount increases so that's part of it we have our deal registration program that increases discount as well um and then we do have some um some partner incentives that are wrapped around meeting setting and um moving moving opportunities along to uh proof of value gotta love the education driving value I have to ask you so you've been around the industry you've seen the channel relationships out there you're seeing companies old school new school you know uh Horizon 3.ai is kind of like that new school very cloud specific a lot of Leverage with we mentioned AWS and all the clouds um why is the company so hot right now why did you join them and what's why are people attracted to this company what's the what's the attraction what's the vibe what do you what do you see and what what do you use what did you see in in this company well this is just you know like I said it's very disruptive um it's really in high demand right now and um and and just because because it's new to Market and uh a newer technology so we are we can collaborate with a manual pen tester um we can you know we can allow our customers to run their pen test um with with no specialty teams and um and and then so we and like you know like I said we can allow our partners can actually build businesses profitable businesses so we can they can use our product to increase their services revenue and um and build their business model you know around around our services what's interesting about the pen test thing is that it's very expensive and time consuming the people who do them are very talented people that could be working on really bigger things in the in absolutely customers so bringing this into the channel allows them if you look at the price Delta between a pen test and then what you guys are offering I mean that's a huge margin Gap between street price of say today's pen test and what you guys offer when you show people that they follow do they say too good to be true I mean what are some of the things that people say when you kind of show them that are they like scratch their head like come on what's the what's the catch here right so the cost savings is a huge is huge for us um and then also you know like I said working as a force multiplier with a pen testing company that offers the services and so they can they can do their their annual manual pen tests that may be required around compliance regulations and then we can we can act as the continuous verification of their security um um you know that that they can run um weekly and so it's just um you know it's just an addition to to what they're offering already and an expansion so Jennifer thanks for coming on thecube really appreciate you uh coming on sharing the insights on the channel uh what's next what can we expect from the channel group what are you thinking what's going on right so we're really looking to expand our our Channel um footprint and um very strategically uh we've got um we've got some big plans um for for Horizon 3.ai awesome well thanks for coming on really appreciate it you're watching thecube the leader in high tech Enterprise coverage [Music] [Music] hello and welcome to the Cube's special presentation with Horizon 3.ai with Raina Richter vice president of emea Europe Middle East and Africa and Asia Pacific APAC for Horizon 3 today welcome to this special Cube presentation thanks for joining us thank you for the invitation so Horizon 3 a guy driving Global expansion big international news with a partner first approach you guys are expanding internationally let's get into it you guys are driving this new expanse partner program to new heights tell us about it what are you seeing in the momentum why the expansion what's all the news about well I would say uh yeah in in international we have I would say a similar similar situation like in the US um there is a global shortage of well-educated penetration testers on the one hand side on the other side um we have a raising demand of uh network and infrastructure security and with our approach of an uh autonomous penetration testing I I believe we are totally on top of the game um especially as we have also now uh starting with an international instance that means for example if a customer in Europe is using uh our service node zero he will be connected to a node zero instance which is located inside the European Union and therefore he has doesn't have to worry about the conflict between the European the gdpr regulations versus the US Cloud act and I would say there we have a total good package for our partners that they can provide differentiators to their customers you know we've had great conversations here on thecube with the CEO and the founder of the company around the leverage of the cloud and how successful that's been for the company and honestly I can just Connect the Dots here but I'd like you to weigh in more on how that translates into the go to market here because you got great Cloud scale with with the security product you guys are having success with great leverage there I've seen a lot of success there what's the momentum on the channel partner program internationally why is it so important to you is it just the regional segmentation is it the economics why the momentum well there are it's there are multiple issues first of all there is a raising demand in penetration testing um and don't forget that uh in international we have a much higher level in number a number or percentage in SMB and mid-market customers so these customers typically most of them even didn't have a pen test done once a year so for them pen testing was just too expensive now with our offering together with our partners we can provide different uh ways how customers could get an autonomous pen testing done more than once a year with even lower costs than they had with with a traditional manual paint test so and that is because we have our uh Consulting plus package which is for typically pain testers they can go out and can do a much faster much quicker and their pain test at many customers once in after each other so they can do more pain tests on a lower more attractive price on the other side there are others what even the same ones who are providing um node zero as an mssp service so they can go after s p customers saying okay well you only have a couple of hundred uh IP addresses no worries we have the perfect package for you and then you have let's say the mid Market let's say the thousands and more employees then they might even have an annual subscription very traditional but for all of them it's all the same the customer or the service provider doesn't need a piece of Hardware they only need to install a small piece of a Docker container and that's it and that makes it so so smooth to go in and say okay Mr customer we just put in this this virtual attacker into your network and that's it and and all the rest is done and within within three clicks they are they can act like a pen tester with 20 years of experience and that's going to be very Channel friendly and partner friendly I can almost imagine so I have to ask you and thank you for calling the break calling out that breakdown and and segmentation that was good that was very helpful for me to understand but I want to follow up if you don't mind um what type of partners are you seeing the most traction with and why well I would say at the beginning typically you have the the innovators the early adapters typically Boutique size of Partners they start because they they are always looking for Innovation and those are the ones you they start in the beginning so we have a wide range of Partners having mostly even um managed by the owner of the company so uh they immediately understand okay there is the value and they can change their offering they're changing their offering in terms of penetration testing because they can do more pen tests and they can then add other ones or we have those ones who offer 10 tests services but they did not have their own pen testers so they had to go out on the open market and Source paint testing experts um to get the pen test at a particular customer done and now with node zero they're totally independent they can't go out and say okay Mr customer here's the here's the service that's it we turn it on and within an hour you're up and running totally yeah and those pen tests are usually expensive and hard to do now it's right in line with the sales delivery pretty interesting for a partner absolutely but on the other hand side we are not killing the pain testers business we do something we're providing with no tiers I would call something like the foundation work the foundational work of having an an ongoing penetration testing of the infrastructure the operating system and the pen testers by themselves they can concentrate in the future on things like application pen testing for example so those Services which we we're not touching so we're not killing the paint tester Market we're just taking away the ongoing um let's say foundation work call it that way yeah yeah that was one of my questions I was going to ask is there's a lot of interest in this autonomous pen testing one because it's expensive to do because those skills are required are in need and they're expensive so you kind of cover the entry level and the blockers that are in there I've seen people say to me this pen test becomes a blocker for getting things done so there's been a lot of interest in the autonomous pen testing and for organizations to have that posture and it's an overseas issue too because now you have that that ongoing thing so can you explain that particular benefit for an organization to have that continuously verifying an organization's posture yep certainly so I would say um typically you are you you have to do your patches you have to bring in new versions of operating systems of different Services of uh um operating systems of some components and and they are always bringing new vulnerabilities the difference here is that with node zero we are telling the customer or the partner package we're telling them which are the executable vulnerabilities because previously they might have had um a vulnerability scanner so this vulnerability scanner brought up hundreds or even thousands of cves but didn't say anything about which of them are vulnerable really executable and then you need an expert digging in one cve after the other finding out is it is it really executable yes or no and that is where you need highly paid experts which we have a shortage so with notes here now we can say okay we tell you exactly which ones are the ones you should work on because those are the ones which are executable we rank them accordingly to the risk level how easily they can be used and by a sudden and then the good thing is convert it or indifference to the traditional penetration test they don't have to wait for a year for the next pain test to find out if the fixing was effective they weren't just the next scan and say Yes closed vulnerability is gone the time is really valuable and if you're doing any devops Cloud native you're always pushing new things so pen test ongoing pen testing is actually a benefit just in general as a kind of hygiene so really really interesting solution really bring that global scale is going to be a new new coverage area for us for sure I have to ask you if you don't mind answering what particular region are you focused on or plan to Target for this next phase of growth well at this moment we are concentrating on the countries inside the European Union Plus the United Kingdom um but we are and they are of course logically I'm based into Frankfurt area that means we cover more or less the countries just around so it's like the total dark region Germany Switzerland Austria plus the Netherlands but we also already have Partners in the nordics like in Finland or in Sweden um so it's it's it it's rapidly we have Partners already in the UK and it's rapidly growing so I'm for example we are now starting with some activities in Singapore um um and also in the in the Middle East area um very important we uh depending on let's say the the way how to do business currently we try to concentrate on those countries where we can have um let's say um at least English as an accepted business language great is there any particular region you're having the most success with right now is it sounds like European Union's um kind of first wave what's them yes that's the first definitely that's the first wave and now we're also getting the uh the European instance up and running it's clearly our commitment also to the market saying okay we know there are certain dedicated uh requirements and we take care of this and and we're just launching it we're building up this one uh the instance um in the AWS uh service center here in Frankfurt also with some dedicated Hardware internet in a data center in Frankfurt where we have with the date six by the way uh the highest internet interconnection bandwidth on the planet so we have very short latency to wherever you are on on the globe that's a great that's a great call outfit benefit too I was going to ask that what are some of the benefits your partners are seeing in emea and Asia Pacific well I would say um the the benefits is for them it's clearly they can they can uh talk with customers and can offer customers penetration testing which they before and even didn't think about because it penetrates penetration testing in a traditional way was simply too expensive for them too complex the preparation time was too long um they didn't have even have the capacity uh to um to support a pain an external pain tester now with this service you can go in and say even if they Mr customer we can do a test with you in a couple of minutes within we have installed the docker container within 10 minutes we have the pen test started that's it and then we just wait and and I would say that is we'll we are we are seeing so many aha moments then now because on the partner side when they see node zero the first time working it's like this wow that is great and then they work out to customers and and show it to their typically at the beginning mostly the friendly customers like wow that's great I need that and and I would say um the feedback from the partners is that is a service where I do not have to evangelize the customer everybody understands penetration testing I don't have to say describe what it is they understand the customer understanding immediately yes penetration testing good about that I know I should do it but uh too complex too expensive now with the name is for example as an mssp service provided from one of our partners but it's getting easy yeah it's great and it's great great benefit there I mean I gotta say I'm a huge fan of what you guys are doing I like this continuous automation that's a major benefit to anyone doing devops or any kind of modern application development this is just a godsend for them this is really good and like you said the pen testers that are doing it they were kind of coming down from their expertise to kind of do things that should have been automated they get to focus on the bigger ticket items that's a really big point so we free them we free the pain testers for the higher level elements of the penetration testing segment and that is typically the application testing which is currently far away from being automated yeah and that's where the most critical workloads are and I think this is the nice balance congratulations on the international expansion of the program and thanks for coming on this special presentation really I really appreciate it thank you you're welcome okay this is thecube special presentation you know check out pen test automation International expansion Horizon 3 dot AI uh really Innovative solution in our next segment Chris Hill sector head for strategic accounts will discuss the power of Horizon 3.ai and Splunk in action you're watching the cube the leader in high tech Enterprise coverage foreign [Music] [Music] welcome back everyone to the cube and Horizon 3.ai special presentation I'm John Furrier host of thecube we're with Chris Hill sector head for strategic accounts and federal at Horizon 3.ai a great Innovative company Chris great to see you thanks for coming on thecube yeah like I said uh you know great to meet you John long time listener first time caller so excited to be here with you guys yeah we were talking before camera you had Splunk back in 2013 and I think 2012 was our first splunk.com and boy man you know talk about being in the right place at the right time now we're at another inflection point and Splunk continues to be relevant um and continuing to have that data driving Security in that interplay and your CEO former CTO of his plug as well at Horizon who's been on before really Innovative product you guys have but you know yeah don't wait for a breach to find out if you're logging the right data this is the topic of this thread Splunk is very much part of this new international expansion announcement uh with you guys tell us what are some of the challenges that you see where this is relevant for the Splunk and Horizon AI as you guys expand uh node zero out internationally yeah well so across so you know my role uh within Splunk it was uh working with our most strategic accounts and so I looked back to 2013 and I think about the sales process like working with with our small customers you know it was um it was still very siled back then like I was selling to an I.T team that was either using this for it operations um we generally would always even say yeah although we do security we weren't really designed for it we're a log management tool and we I'm sure you remember back then John we were like sort of stepping into the security space and and the public sector domain that I was in you know security was 70 of what we did when I look back to sort of uh the transformation that I was witnessing in that digital transformation um you know when I look at like 2019 to today you look at how uh the IT team and the security teams are being have been forced to break down those barriers that they used to sort of be silent away would not commute communicate one you know the security guys would be like oh this is my box I.T you're not allowed in today you can't get away with that and I think that the value that we bring to you know and of course Splunk has been a huge leader in that space and continues to do Innovation across the board but I think what we've we're seeing in the space and I was talking with Patrick Coughlin the SVP of uh security markets about this is that you know what we've been able to do with Splunk is build a purpose-built solution that allows Splunk to eat more data so Splunk itself is ulk know it's an ingest engine right the great reason people bought it was you could build these really fast dashboards and grab intelligence out of it but without data it doesn't do anything right so how do you drive and how do you bring more data in and most importantly from a customer perspective how do you bring the right data in and so if you think about what node zero and what we're doing in a horizon 3 is that sure we do pen testing but because we're an autonomous pen testing tool we do it continuously so this whole thought I'd be like oh crud like my customers oh yeah we got a pen test coming up it's gonna be six weeks the week oh yeah you know and everyone's gonna sit on their hands call me back in two months Chris we'll talk to you then right not not a real efficient way to test your environment and shoot we saw that with Uber this week right um you know and that's a case where we could have helped oh just right we could explain the Uber thing because it was a contractor just give a quick highlight of what happened so you can connect the doctor yeah no problem so um it was uh I got I think it was yeah one of those uh you know games where they would try and test an environment um and with the uh pen tester did was he kept on calling them MFA guys being like I need to reset my password we need to set my right password and eventually the um the customer service guy said okay I'm resetting it once he had reset and bypassed the multi-factor authentication he then was able to get in and get access to the building area that he was in or I think not the domain but he was able to gain access to a partial part of that Network he then paralleled over to what I would assume is like a VA VMware or some virtual machine that had notes that had all of the credentials for logging into various domains and So within minutes they had access and that's the sort of stuff that we do you know a lot of these tools like um you know you think about the cacophony of tools that are out there in a GTA architect architecture right I'm gonna get like a z-scale or I'm going to have uh octum and I have a Splunk I've been into the solar system I mean I don't mean to name names we have crowdstriker or Sentinel one in there it's just it's a cacophony of things that don't work together they weren't designed work together and so we have seen so many times in our business through our customer support and just working with customers when we do their pen tests that there will be 5 000 servers out there three are misconfigured those three misconfigurations will create the open door because remember the hacker only needs to be right once the defender needs to be right all the time and that's the challenge and so that's what I'm really passionate about what we're doing uh here at Horizon three I see this my digital transformation migration and security going on which uh we're at the tip of the spear it's why I joined sey Hall coming on this journey uh and just super excited about where the path's going and super excited about the relationship with Splunk I get into more details on some of the specifics of that but um you know well you're nailing I mean we've been doing a lot of things on super cloud and this next gen environment we're calling it next gen you're really seeing devops obviously devsecops has already won the it role has moved to the developer shift left is an indicator of that it's one of the many examples higher velocity code software supply chain you hear these things that means that it is now in the developer hands it is replaced by the new Ops data Ops teams and security where there's a lot of horizontal thinking to your point about access there's no more perimeter huge 100 right is really right on things one time you know to get in there once you're in then you can hang out move around move laterally big problem okay so we get that now the challenges for these teams as they are transitioning organizationally how do they figure out what to do okay this is the next step they already have Splunk so now they're kind of in transition while protecting for a hundred percent ratio of success so how would you look at that and describe the challenge is what do they do what is it what are the teams facing with their data and what's next what are they what are they what action do they take so let's use some vernacular that folks will know so if I think about devsecops right we both know what that means that I'm going to build security into the app it normally talks about sec devops right how am I building security around the perimeter of what's going inside my ecosystem and what are they doing and so if you think about what we're able to do with somebody like Splunk is we can pen test the entire environment from Soup To Nuts right so I'm going to test the end points through to its I'm going to look for misconfigurations I'm going to I'm going to look for um uh credential exposed credentials you know I'm going to look for anything I can in the environment again I'm going to do it at light speed and and what what we're doing for that SEC devops space is to you know did you detect that we were in your environment so did we alert Splunk or the Sim that there's someone in the environment laterally moving around did they more importantly did they log us into their environment and when do they detect that log to trigger that log did they alert on us and then finally most importantly for every CSO out there is going to be did they stop us and so that's how we we do this and I think you when speaking with um stay Hall before you know we've come up with this um boils but we call it fine fix verifying so what we do is we go in is we act as the attacker right we act in a production environment so we're not going to be we're a passive attacker but we will go in on credentialed on agents but we have to assume to have an assumed breach model which means we're going to put a Docker container in your environment and then we're going to fingerprint the environment so we're going to go out and do an asset survey now that's something that's not something that Splunk does super well you know so can Splunk see all the assets do the same assets marry up we're going to log all that data and think and then put load that into this long Sim or the smoke logging tools just to have it in Enterprise right that's an immediate future ad that they've got um and then we've got the fix so once we've completed our pen test um we are then going to generate a report and we can talk about these in a little bit later but the reports will show an executive summary the assets that we found which would be your asset Discovery aspect of that a fix report and the fixed report I think is probably the most important one it will go down and identify what we did how we did it and then how to fix that and then from that the pen tester or the organization should fix those then they go back and run another test and then they validate like a change detection environment to see hey did those fixes taste play take place and you know snehaw when he was the CTO of jsoc he shared with me a number of times about it's like man there would be 15 more items on next week's punch sheet that we didn't know about and it's and it has to do with how we you know how they were uh prioritizing the cves and whatnot because they would take all CBDs it was critical or non-critical and it's like we are able to create context in that environment that feeds better information into Splunk and whatnot that brings that brings up the efficiency for Splunk specifically the teams out there by the way the burnout thing is real I mean this whole I just finished my list and I got 15 more or whatever the list just can keeps growing how did node zero specifically help Splunk teams be more efficient like that's the question I want to get at because this seems like a very scale way for Splunk customers and teams service teams to be more so the question is how does node zero help make Splunk specifically their service teams be more efficient so so today in our early interactions we're building customers we've seen are five things um and I'll start with sort of identifying the blind spots right so kind of what I just talked about with you did we detect did we log did we alert did they stop node zero right and so I would I put that you know a more Layman's third grade term and if I was going to beat a fifth grader at this game would be we can be the sparring partner for a Splunk Enterprise customer a Splunk Essentials customer someone using Splunk soar or even just an Enterprise Splunk customer that may be a small shop with three people and just wants to know where am I exposed so by creating and generating these reports and then having um the API that actually generates the dashboard they can take all of these events that we've logged and log them in and then where that then comes in is number two is how do we prioritize those logs right so how do we create visibility to logs that that um are have critical impacts and again as I mentioned earlier not all cves are high impact regard and also not all or low right so if you daisy chain a bunch of low cves together boom I've got a mission critical AP uh CPE that needs to be fixed now such as a credential moving to an NT box that's got a text file with a bunch of passwords on it that would be very bad um and then third would be uh verifying that you have all of the hosts so one of the things that splunk's not particularly great at and they'll literate themselves they don't do asset Discovery so dude what assets do we see and what are they logging from that um and then for from um for every event that they are able to identify one of the cool things that we can do is actually create this low code no code environment so they could let you know Splunk customers can use Splunk sword to actually triage events and prioritize that event so where they're being routed within it to optimize the Sox team time to Market or time to triage any given event obviously reducing MTR and then finally I think one of the neatest things that we'll be seeing us develop is um our ability to build glass cables so behind me you'll see one of our triage events and how we build uh a Lockheed Martin kill chain on that with a glass table which is very familiar to the community we're going to have the ability and not too distant future to allow people to search observe on those iocs and if people aren't familiar with it ioc it's an instant of a compromise so that's a vector that we want to drill into and of course who's better at Drilling in the data and smoke yeah this is a critter this is an awesome Synergy there I mean I can see a Splunk customer going man this just gives me so much more capability action actionability and also real understanding and I think this is what I want to dig into if you don't mind understanding that critical impact okay is kind of where I see this coming got the data data ingest now data's data but the question is what not to log you know where are things misconfigured these are critical questions so can you talk about what it means to understand critical impact yeah so I think you know going back to the things that I just spoke about a lot of those cves where you'll see um uh low low low and then you daisy chain together and they're suddenly like oh this is high now but then your other impact of like if you're if you're a Splunk customer you know and I had it I had several of them I had one customer that you know terabytes of McAfee data being brought in and it was like all right there's a lot of other data that you probably also want to bring but they could only afford wanted to do certain data sets because that's and they didn't know how to prioritize or filter those data sets and so we provide that opportunity to say hey these are the critical ones to bring in but there's also the ones that you don't necessarily need to bring in because low cve in this case really does mean low cve like an ILO server would be one that um that's the print server uh where the uh your admin credentials are on on like a printer and so there will be credentials on that that's something that a hacker might go in to look at so although the cve on it is low is if you daisy chain with somebody that's able to get into that you might say Ah that's high and we would then potentially rank it giving our AI logic to say that's a moderate so put it on the scale and we prioritize those versus uh of all of these scanners just going to give you a bunch of CDs and good luck and translating that if I if I can and tell me if I'm wrong that kind of speaks to that whole lateral movement that's it challenge right print serve a great example looks stupid low end who's going to want to deal with the print server oh but it's connected into a critical system there's a path is that kind of what you're getting at yeah I use Daisy Chain I think that's from the community they came from uh but it's just a lateral movement it's exactly what they're doing in those low level low critical lateral movements is where the hackers are getting in right so that's the beauty thing about the uh the Uber example is that who would have thought you know I've got my monthly Factor authentication going in a human made a mistake we can't we can't not expect humans to make mistakes we're fallible right the reality is is once they were in the environment they could have protected themselves by running enough pen tests to know that they had certain uh exposed credentials that would have stopped the breach and they did not had not done that in their environment and I'm not poking yeah but it's an interesting Trend though I mean it's obvious if sometimes those low end items are also not protected well so it's easy to get at from a hacker standpoint but also the people in charge of them can be fished easily or spearfished because they're not paying attention because they don't have to no one ever told them hey be careful yeah for the community that I came from John that's exactly how they they would uh meet you at a uh an International Event um introduce themselves as a graduate student these are National actor States uh would you mind reviewing my thesis on such and such and I was at Adobe at the time that I was working on this instead of having to get the PDF they opened the PDF and whoever that customer was launches and I don't know if you remember back in like 2008 time frame there was a lot of issues around IP being by a nation state being stolen from the United States and that's exactly how they did it and John that's or LinkedIn hey I want to get a joke we want to hire you double the salary oh I'm gonna click on that for sure you know yeah right exactly yeah the one thing I would say to you is like uh when we look at like sort of you know because I think we did 10 000 pen tests last year is it's probably over that now you know we have these sort of top 10 ways that we think and find people coming into the environment the funniest thing is that only one of them is a cve related vulnerability like uh you know you guys know what they are right so it's it but it's it's like two percent of the attacks are occurring through the cves but yeah there's all that attention spent to that and very little attention spent to this pen testing side which is sort of this continuous threat you know monitoring space and and this vulnerability space where I think we play a such an important role and I'm so excited to be a part of the tip of the spear on this one yeah I'm old enough to know the movie sneakers which I loved as a you know watching that movie you know professional hackers are testing testing always testing the environment I love this I got to ask you as we kind of wrap up here Chris if you don't mind the the benefits to Professional Services from this Alliance big news Splunk and you guys work well together we see that clearly what are what other benefits do Professional Services teams see from the Splunk and Horizon 3.ai Alliance so if you're I think for from our our from both of our uh Partners uh as we bring these guys together and many of them already are the same partner right uh is that uh first off the licensing model is probably one of the key areas that we really excel at so if you're an end user you can buy uh for the Enterprise by the number of IP addresses you're using um but uh if you're a partner working with this there's solution ways that you can go in and we'll license as to msps and what that business model on msps looks like but the unique thing that we do here is this C plus license and so the Consulting plus license allows like a uh somebody a small to mid-sized to some very large uh you know Fortune 100 uh consulting firms use this uh by buying into a license called um Consulting plus where they can have unlimited uh access to as many IPS as they want but you can only run one test at a time and as you can imagine when we're going and hacking passwords and um checking hashes and decrypting hashes that can take a while so but for the right customer it's it's a perfect tool and so I I'm so excited about our ability to go to market with uh our partners so that we understand ourselves understand how not to just sell to or not tell just to sell through but we know how to sell with them as a good vendor partner I think that that's one thing that we've done a really good job building bring it into the market yeah I think also the Splunk has had great success how they've enabled uh partners and Professional Services absolutely you know the services that layer on top of Splunk are multi-fold tons of great benefits so you guys Vector right into that ride that way with friction and and the cool thing is that in you know in one of our reports which could be totally customized uh with someone else's logo we're going to generate you know so I I used to work in another organization it wasn't Splunk but we we did uh you know pen testing as for for customers and my pen testers would come on site they'd do the engagement and they would leave and then another release someone would be oh shoot we got another sector that was breached and they'd call you back you know four weeks later and so by August our entire pen testings teams would be sold out and it would be like well even in March maybe and they're like no no I gotta breach now and and and then when they do go in they go through do the pen test and they hand over a PDF and they pack on the back and say there's where your problems are you need to fix it and the reality is that what we're going to generate completely autonomously with no human interaction is we're going to go and find all the permutations of anything we found and the fix for those permutations and then once you've fixed everything you just go back and run another pen test it's you know for what people pay for one pen test they can have a tool that does that every every Pat patch on Tuesday and that's on Wednesday you know triage throughout the week green yellow red I wanted to see the colors show me green green is good right not red and one CIO doesn't want who doesn't want that dashboard right it's it's exactly it and we can help bring I think that you know I'm really excited about helping drive this with the Splunk team because they get that they understand that it's the green yellow red dashboard and and how do we help them find more green uh so that the other guys are in red yeah and get in the data and do the right thing and be efficient with how you use the data know what to look at so many things to pay attention to you know the combination of both and then go to market strategy real brilliant congratulations Chris thanks for coming on and sharing um this news with the detail around the Splunk in action around the alliance thanks for sharing John my pleasure thanks look forward to seeing you soon all right great we'll follow up and do another segment on devops and I.T and security teams as the new new Ops but and super cloud a bunch of other stuff so thanks for coming on and our next segment the CEO of horizon 3.aa will break down all the new news for us here on thecube you're watching thecube the leader in high tech Enterprise coverage [Music] yeah the partner program for us has been fantastic you know I think prior to that you know as most organizations most uh uh most Farmers most mssps might not necessarily have a a bench at all for penetration testing uh maybe they subcontract this work out or maybe they do it themselves but trying to staff that kind of position can be incredibly difficult for us this was a differentiator a a new a new partner a new partnership that allowed us to uh not only perform services for our customers but be able to provide a product by which that they can do it themselves so we work with our customers in a variety of ways some of them want more routine testing and perform this themselves but we're also a certified service provider of horizon 3 being able to perform uh penetration tests uh help review the the data provide color provide analysis for our customers in a broader sense right not necessarily the the black and white elements of you know what was uh what's critical what's high what's medium what's low what you need to fix but are there systemic issues this has allowed us to onboard new customers this has allowed us to migrate some penetration testing services to us from from competitors in the marketplace But ultimately this is occurring because the the product and the outcome are special they're unique and they're effective our customers like what they're seeing they like the routineness of it many of them you know again like doing this themselves you know being able to kind of pen test themselves parts of their networks um and the the new use cases right I'm a large organization I have eight to ten Acquisitions per year wouldn't it be great to have a tool to be able to perform a penetration test both internal and external of that acquisition before we integrate the two companies and maybe bringing on some risk it's a very effective partnership uh one that really is uh kind of taken our our Engineers our account Executives by storm um you know this this is a a partnership that's been very valuable to us [Music] a key part of the value and business model at Horizon 3 is enabling Partners to leverage node zero to make more revenue for themselves our goal is that for sixty percent of our Revenue this year will be originated by partners and that 95 of our Revenue next year will be originated by partners and so a key to that strategy is making us an integral part of your business models as a partner a key quote from one of our partners is that we enable every one of their business units to generate Revenue so let's talk about that in a little bit more detail first is that if you have a pen test Consulting business take Deloitte as an example what was six weeks of human labor at Deloitte per pen test has been cut down to four days of Labor using node zero to conduct reconnaissance find all the juicy interesting areas of the of the Enterprise that are exploitable and being able to go assess the entire organization and then all of those details get served up to the human to be able to look at understand and determine where to probe deeper so what you see in that pen test Consulting business is that node zero becomes a force multiplier where those Consulting teams were able to cover way more accounts and way more IPS within those accounts with the same or fewer consultants and so that directly leads to profit margin expansion for the Penn testing business itself because node 0 is a force multiplier the second business model here is if you're an mssp as an mssp you're already making money providing defensive cyber security operations for a large volume of customers and so what they do is they'll license node zero and use us as an upsell to their mssb business to start to deliver either continuous red teaming continuous verification or purple teaming as a service and so in that particular business model they've got an additional line of Revenue where they can increase the spend of their existing customers by bolting on node 0 as a purple team as a service offering the third business model or customer type is if you're an I.T services provider so as an I.T services provider you make money installing and configuring security products like Splunk or crowdstrike or hemio you also make money reselling those products and you also make money generating follow-on services to continue to harden your customer environments and so for them what what those it service providers will do is use us to verify that they've installed Splunk correctly improved to their customer that Splunk was installed correctly or crowdstrike was installed correctly using our results and then use our results to drive follow-on services and revenue and then finally we've got the value-added reseller which is just a straight up reseller because of how fast our sales Cycles are these vars are able to typically go from cold email to deal close in six to eight weeks at Horizon 3 at least a single sales engineer is able to run 30 to 50 pocs concurrently because our pocs are very lightweight and don't require any on-prem customization or heavy pre-sales post sales activity so as a result we're able to have a few amount of sellers driving a lot of Revenue and volume for us well the same thing applies to bars there isn't a lot of effort to sell the product or prove its value so vars are able to sell a lot more Horizon 3 node zero product without having to build up a huge specialist sales organization so what I'm going to do is talk through uh scenario three here as an I.T service provider and just how powerful node zero can be in driving additional Revenue so in here think of for every one dollar of node zero license purchased by the IT service provider to do their business it'll generate ten dollars of additional revenue for that partner so in this example kidney group uses node 0 to verify that they have installed and deployed Splunk correctly so Kitty group is a Splunk partner they they sell it services to install configure deploy and maintain Splunk and as they deploy Splunk they're going to use node 0 to attack the environment and make sure that the right logs and alerts and monitoring are being handled within the Splunk deployment so it's a way of doing QA or verifying that Splunk has been configured correctly and that's going to be internally used by kidney group to prove the quality of their services that they've just delivered then what they're going to do is they're going to show and leave behind that node zero Report with their client and that creates a resell opportunity for for kidney group to resell node 0 to their client because their client is seeing the reports and the results and saying wow this is pretty amazing and those reports can be co-branded where it's a pen testing report branded with kidney group but it says powered by Horizon three under it from there kidney group is able to take the fixed actions report that's automatically generated with every pen test through node zero and they're able to use that as the starting point for a statement of work to sell follow-on services to fix all of the problems that node zero identified fixing l11r misconfigurations fixing or patching VMware or updating credentials policies and so on so what happens is node 0 has found a bunch of problems the client often lacks the capacity to fix and so kidney group can use that lack of capacity by the client as a follow-on sales opportunity for follow-on services and finally based on the findings from node zero kidney group can look at that report and say to the customer you know customer if you bought crowdstrike you'd be able to uh prevent node Zero from attacking and succeeding in the way that it did for if you bought humano or if you bought Palo Alto networks or if you bought uh some privileged access management solution because of what node 0 was able to do with credential harvesting and attacks and so as a result kidney group is able to resell other security products within their portfolio crowdstrike Falcon humano Polito networks demisto Phantom and so on based on the gaps that were identified by node zero and that pen test and what that creates is another feedback loop where kidney group will then go use node 0 to verify that crowdstrike product has actually been installed and configured correctly and then this becomes the cycle of using node 0 to verify a deployment using that verification to drive a bunch of follow-on services and resell opportunities which then further drives more usage of the product now the way that we licensed is that it's a usage-based license licensing model so that the partner will grow their node zero Consulting plus license as they grow their business so for example if you're a kidney group then week one you've got you're going to use node zero to verify your Splunk install in week two if you have a pen testing business you're going to go off and use node zero to be a force multiplier for your pen testing uh client opportunity and then if you have an mssp business then in week three you're going to use node zero to go execute a purple team mssp offering for your clients so not necessarily a kidney group but if you're a Deloitte or ATT these larger companies and you've got multiple lines of business if you're Optive for instance you all you have to do is buy one Consulting plus license and you're going to be able to run as many pen tests as you want sequentially so now you can buy a single license and use that one license to meet your week one client commitments and then meet your week two and then meet your week three and as you grow your business you start to run multiple pen tests concurrently so in week one you've got to do a Splunk verify uh verify Splunk install and you've got to run a pen test and you've got to do a purple team opportunity you just simply expand the number of Consulting plus licenses from one license to three licenses and so now as you systematically grow your business you're able to grow your node zero capacity with you giving you predictable cogs predictable margins and once again 10x additional Revenue opportunity for that investment in the node zero Consulting plus license my name is Saint I'm the co-founder and CEO here at Horizon 3. I'm going to talk to you today about why it's important to look at your Enterprise Through The Eyes of an attacker the challenge I had when I was a CIO in banking the CTO at Splunk and serving within the Department of Defense is that I had no idea I was Secure until the bad guys had showed up am I logging the right data am I fixing the right vulnerabilities are my security tools that I've paid millions of dollars for actually working together to defend me and the answer is I don't know does my team actually know how to respond to a breach in the middle of an incident I don't know I've got to wait for the bad guys to show up and so the challenge I had was how do we proactively verify our security posture I tried a variety of techniques the first was the use of vulnerability scanners and the challenge with vulnerability scanners is being vulnerable doesn't mean you're exploitable I might have a hundred thousand findings from my scanner of which maybe five or ten can actually be exploited in my environment the other big problem with scanners is that they can't chain weaknesses together from machine to machine so if you've got a thousand machines in your environment or more what a vulnerability scanner will do is tell you you have a problem on machine one and separately a problem on machine two but what they can tell you is that an attacker could use a load from machine one plus a low from machine two to equal to critical in your environment and what attackers do in their tactics is they chain together misconfigurations dangerous product defaults harvested credentials and exploitable vulnerabilities into attack paths across different machines so to address the attack pads across different machines I tried layering in consulting-based pen testing and the issue is when you've got thousands of hosts or hundreds of thousands of hosts in your environment human-based pen testing simply doesn't scale to test an infrastructure of that size moreover when they actually do execute a pen test and you get the report oftentimes you lack the expertise within your team to quickly retest to verify that you've actually fixed the problem and so what happens is you end up with these pen test reports that are incomplete snapshots and quickly going stale and then to mitigate that problem I tried using breach and attack simulation tools and the struggle with these tools is one I had to install credentialed agents everywhere two I had to write my own custom attack scripts that I didn't have much talent for but also I had to maintain as my environment changed and then three these types of tools were not safe to run against production systems which was the the majority of my attack surface so that's why we went off to start Horizon 3. so Tony and I met when we were in Special Operations together and the challenge we wanted to solve was how do we do infrastructure security testing at scale by giving the the power of a 20-year pen testing veteran into the hands of an I.T admin a network engineer in just three clicks and the whole idea is we enable these fixers The Blue Team to be able to run node Zero Hour pen testing product to quickly find problems in their environment that blue team will then then go off and fix the issues that were found and then they can quickly rerun the attack to verify that they fixed the problem and the whole idea is delivering this without requiring custom scripts be developed without requiring credential agents be installed and without requiring the use of external third-party consulting services or Professional Services self-service pen testing to quickly Drive find fix verify there are three primary use cases that our customers use us for the first is the sock manager that uses us to verify that their security tools are actually effective to verify that they're logging the right data in Splunk or in their Sim to verify that their managed security services provider is able to quickly detect and respond to an attack and hold them accountable for their slas or that the sock understands how to quickly detect and respond and measuring and verifying that or that the variety of tools that you have in your stack most organizations have 130 plus cyber security tools none of which are designed to work together are actually working together the second primary use case is proactively hardening and verifying your systems this is when the I that it admin that network engineer they're able to run self-service pen tests to verify that their Cisco environment is installed in hardened and configured correctly or that their credential policies are set up right or that their vcenter or web sphere or kubernetes environments are actually designed to be secure and what this allows the it admins and network Engineers to do is shift from running one or two pen tests a year to 30 40 or more pen tests a month and you can actually wire those pen tests into your devops process or into your detection engineering and the change management processes to automatically trigger pen tests every time there's a change in your environment the third primary use case is for those organizations lucky enough to have their own internal red team they'll use node zero to do reconnaissance and exploitation at scale and then use the output as a starting point for the humans to step in and focus on the really hard juicy stuff that gets them on stage at Defcon and so these are the three primary use cases and what we'll do is zoom into the find fix verify Loop because what I've found in my experience is find fix verify is the future operating model for cyber security organizations and what I mean here is in the find using continuous pen testing what you want to enable is on-demand self-service pen tests you want those pen tests to find attack pads at scale spanning your on-prem infrastructure your Cloud infrastructure and your perimeter because attackers don't only state in one place they will find ways to chain together a perimeter breach a credential from your on-prem to gain access to your cloud or some other permutation and then the third part in continuous pen testing is attackers don't focus on critical vulnerabilities anymore they know we've built vulnerability Management Programs to reduce those vulnerabilities so attackers have adapted and what they do is chain together misconfigurations in your infrastructure and software and applications with dangerous product defaults with exploitable vulnerabilities and through the collection of credentials through a mix of techniques at scale once you've found those problems the next question is what do you do about it well you want to be able to prioritize fixing problems that are actually exploitable in your environment that truly matter meaning they're going to lead to domain compromise or domain user compromise or access your sensitive data the second thing you want to fix is making sure you understand what risk your crown jewels data is exposed to where is your crown jewels data is in the cloud is it on-prem has it been copied to a share drive that you weren't aware of if a domain user was compromised could they access that crown jewels data you want to be able to use the attacker's perspective to secure the critical data you have in your infrastructure and then finally as you fix these problems you want to quickly remediate and retest that you've actually fixed the issue and this fine fix verify cycle becomes that accelerator that drives purple team culture the third part here is verify and what you want to be able to do in the verify step is verify that your security tools and processes in people can effectively detect and respond to a breach you want to be able to integrate that into your detection engineering processes so that you know you're catching the right security rules or that you've deployed the right configurations you also want to make sure that your environment is adhering to the best practices around systems hardening in cyber resilience and finally you want to be able to prove your security posture over a time to your board to your leadership into your regulators so what I'll do now is zoom into each of these three steps so when we zoom in to find here's the first example using node 0 and autonomous pen testing and what an attacker will do is find a way to break through the perimeter in this example it's very easy to misconfigure kubernetes to allow an attacker to gain remote code execution into your on-prem kubernetes environment and break through the perimeter and from there what the attacker is going to do is conduct Network reconnaissance and then find ways to gain code execution on other machines in the environment and as they get code execution they start to dump credentials collect a bunch of ntlm hashes crack those hashes using open source and dark web available data as part of those attacks and then reuse those credentials to log in and laterally maneuver throughout the environment and then as they loudly maneuver they can reuse those credentials and use credential spraying techniques and so on to compromise your business email to log in as admin into your cloud and this is a very common attack and rarely is a CV actually needed to execute this attack often it's just a misconfiguration in kubernetes with a bad credential policy or password policy combined with bad practices of credential reuse across the organization here's another example of an internal pen test and this is from an actual customer they had 5 000 hosts within their environment they had EDR and uba tools installed and they initiated in an internal pen test on a single machine from that single initial access point node zero enumerated the network conducted reconnaissance and found five thousand hosts were accessible what node 0 will do under the covers is organize all of that reconnaissance data into a knowledge graph that we call the Cyber terrain map and that cyber Terrain map becomes the key data structure that we use to efficiently maneuver and attack and compromise your environment so what node zero will do is they'll try to find ways to get code execution reuse credentials and so on in this customer example they had Fortinet installed as their EDR but node 0 was still able to get code execution on a Windows machine from there it was able to successfully dump credentials including sensitive credentials from the lsas process on the Windows box and then reuse those credentials to log in as domain admin in the network and once an attacker becomes domain admin they have the keys to the kingdom they can do anything they want so what happened here well it turns out Fortinet was misconfigured on three out of 5000 machines bad automation the customer had no idea this had happened they would have had to wait for an attacker to show up to realize that it was misconfigured the second thing is well why didn't Fortinet stop the credential pivot in the lateral movement and it turned out the customer didn't buy the right modules or turn on the right services within that particular product and we see this not only with Ford in it but we see this with Trend Micro and all the other defensive tools where it's very easy to miss a checkbox in the configuration that will do things like prevent credential dumping the next story I'll tell you is attackers don't have to hack in they log in so another infrastructure pen test a typical technique attackers will take is man in the middle uh attacks that will collect hashes so in this case what an attacker will do is leverage a tool or technique called responder to collect ntlm hashes that are being passed around the network and there's a variety of reasons why these hashes are passed around and it's a pretty common misconfiguration but as an attacker collects those hashes then they start to apply techniques to crack those hashes so they'll pass the hash and from there they will use open source intelligence common password structures and patterns and other types of techniques to try to crack those hashes into clear text passwords so here node 0 automatically collected hashes it automatically passed the hashes to crack those credentials and then from there it starts to take the domain user user ID passwords that it's collected and tries to access different services and systems in your Enterprise in this case node 0 is able to successfully gain access to the Office 365 email environment because three employees didn't have MFA configured so now what happens is node 0 has a placement and access in the business email system which sets up the conditions for fraud lateral phishing and other techniques but what's especially insightful here is that 80 of the hashes that were collected in this pen test were cracked in 15 minutes or less 80 percent 26 of the user accounts had a password that followed a pretty obvious pattern first initial last initial and four random digits the other thing that was interesting is 10 percent of service accounts had their user ID the same as their password so VMware admin VMware admin web sphere admin web Square admin so on and so forth and so attackers don't have to hack in they just log in with credentials that they've collected the next story here is becoming WS AWS admin so in this example once again internal pen test node zero gets initial access it discovers 2 000 hosts are network reachable from that environment if fingerprints and organizes all of that data into a cyber Terrain map from there it it fingerprints that hpilo the integrated lights out service was running on a subset of hosts hpilo is a service that is often not instrumented or observed by security teams nor is it easy to patch as a result attackers know this and immediately go after those types of services so in this case that ILO service was exploitable and were able to get code execution on it ILO stores all the user IDs and passwords in clear text in a particular set of processes so once we gain code execution we were able to dump all of the credentials and then from there laterally maneuver to log in to the windows box next door as admin and then on that admin box we're able to gain access to the share drives and we found a credentials file saved on a share Drive from there it turned out that credentials file was the AWS admin credentials file giving us full admin authority to their AWS accounts not a single security alert was triggered in this attack because the customer wasn't observing the ILO service and every step thereafter was a valid login in the environment and so what do you do step one patch the server step two delete the credentials file from the share drive and then step three is get better instrumentation on privileged access users and login the final story I'll tell is a typical pattern that we see across the board with that combines the various techniques I've described together where an attacker is going to go off and use open source intelligence to find all of the employees that work at your company from there they're going to look up those employees on dark web breach databases and other forms of information and then use that as a starting point to password spray to compromise a domain user all it takes is one employee to reuse a breached password for their Corporate email or all it takes is a single employee to have a weak password that's easily guessable all it takes is one and once the attacker is able to gain domain user access in most shops domain user is also the local admin on their laptop and once your local admin you can dump Sam and get local admin until M hashes you can use that to reuse credentials again local admin on neighboring machines and attackers will start to rinse and repeat then eventually they're able to get to a point where they can dump lsas or by unhooking the anti-virus defeating the EDR or finding a misconfigured EDR as we've talked about earlier to compromise the domain and what's consistent is that the fundamentals are broken at these shops they have poor password policies they don't have least access privilege implemented active directory groups are too permissive where domain admin or domain user is also the local admin uh AV or EDR Solutions are misconfigured or easily unhooked and so on and what we found in 10 000 pen tests is that user Behavior analytics tools never caught us in that lateral movement in part because those tools require pristine logging data in order to work and also it becomes very difficult to find that Baseline of normal usage versus abnormal usage of credential login another interesting Insight is there were several Marquee brand name mssps that were defending our customers environment and for them it took seven hours to detect and respond to the pen test seven hours the pen test was over in less than two hours and so what you had was an egregious violation of the service level agreements that that mssp had in place and the customer was able to use us to get service credit and drive accountability of their sock and of their provider the third interesting thing is in one case it took us seven minutes to become domain admin in a bank that bank had every Gucci security tool you could buy yet in 7 minutes and 19 seconds node zero started as an unauthenticated member of the network and was able to escalate privileges through chaining and misconfigurations in lateral movement and so on to become domain admin if it's seven minutes today we should assume it'll be less than a minute a year or two from now making it very difficult for humans to be able to detect and respond to that type of Blitzkrieg attack so that's in the find it's not just about finding problems though the bulk of the effort should be what to do about it the fix and the verify so as you find those problems back to kubernetes as an example we will show you the path here is the kill chain we took to compromise that environment we'll show you the impact here is the impact or here's the the proof of exploitation that we were able to use to be able to compromise it and there's the actual command that we executed so you could copy and paste that command and compromise that cubelet yourself if you want and then the impact is we got code execution and we'll actually show you here is the impact this is a critical here's why it enabled perimeter breach affected applications will tell you the specific IPS where you've got the problem how it maps to the miter attack framework and then we'll tell you exactly how to fix it we'll also show you what this problem enabled so you can accurately prioritize why this is important or why it's not important the next part is accurate prioritization the hardest part of my job as a CIO was deciding what not to fix so if you take SMB signing not required as an example by default that CVSs score is a one out of 10. but this misconfiguration is not a cve it's a misconfig enable an attacker to gain access to 19 credentials including one domain admin two local admins and access to a ton of data because of that context this is really a 10 out of 10. you better fix this as soon as possible however of the seven occurrences that we found it's only a critical in three out of the seven and these are the three specific machines and we'll tell you the exact way to fix it and you better fix these as soon as possible for these four machines over here these didn't allow us to do anything of consequence so that because the hardest part is deciding what not to fix you can justifiably choose not to fix these four issues right now and just add them to your backlog and surge your team to fix these three as quickly as possible and then once you fix these three you don't have to re-run the entire pen test you can select these three and then one click verify and run a very narrowly scoped pen test that is only testing this specific issue and what that creates is a much faster cycle of finding and fixing problems the other part of fixing is verifying that you don't have sensitive data at risk so once we become a domain user we're able to use those domain user credentials and try to gain access to databases file shares S3 buckets git repos and so on and help you understand what sensitive data you have at risk so in this example a green checkbox means we logged in as a valid domain user we're able to get read write access on the database this is how many records we could have accessed and we don't actually look at the values in the database but we'll show you the schema so you can quickly characterize that pii data was at risk here and we'll do that for your file shares and other sources of data so now you can accurately articulate the data you have at risk and prioritize cleaning that data up especially data that will lead to a fine or a big news issue so that's the find that's the fix now we're going to talk about the verify the key part in verify is embracing and integrating with detection engineering practices so when you think about your layers of security tools you've got lots of tools in place on average 130 tools at any given customer but these tools were not designed to work together so when you run a pen test what you want to do is say did you detect us did you log us did you alert on us did you stop us and from there what you want to see is okay what are the techniques that are commonly used to defeat an environment to actually compromise if you look at the top 10 techniques we use and there's far more than just these 10 but these are the most often executed nine out of ten have nothing to do with cves it has to do with misconfigurations dangerous product defaults bad credential policies and it's how we chain those together to become a domain admin or compromise a host so what what customers will do is every single attacker command we executed is provided to you as an attackivity log so you can actually see every single attacker command we ran the time stamp it was executed the hosts it executed on and how it Maps the minor attack tactics so our customers will have are these attacker logs on one screen and then they'll go look into Splunk or exabeam or Sentinel one or crowdstrike and say did you detect us did you log us did you alert on us or not and to make that even easier if you take this example hey Splunk what logs did you see at this time on the VMware host because that's when node 0 is able to dump credentials and that allows you to identify and fix your logging blind spots to make that easier we've got app integration so this is an actual Splunk app in the Splunk App Store and what you can come is inside the Splunk console itself you can fire up the Horizon 3 node 0 app all of the pen test results are here so that you can see all of the results in one place and you don't have to jump out of the tool and what you'll show you as I skip forward is hey there's a pen test here are the critical issues that we've identified for that weaker default issue here are the exact commands we executed and then we will automatically query into Splunk all all terms on between these times on that endpoint that relate to this attack so you can now quickly within the Splunk environment itself figure out that you're missing logs or that you're appropriately catching this issue and that becomes incredibly important in that detection engineering cycle that I mentioned earlier so how do our customers end up using us they shift from running one pen test a year to 30 40 pen tests a month oftentimes wiring us into their deployment automation to automatically run pen tests the other part that they'll do is as they run more pen tests they find more issues but eventually they hit this inflection point where they're able to rapidly clean up their environment and that inflection point is because the red and the blue teams start working together in a purple team culture and now they're working together to proactively harden their environment the other thing our customers will do is run us from different perspectives they'll first start running an RFC 1918 scope to see once the attacker gained initial access in a part of the network that had wide access what could they do and then from there they'll run us within a specific Network segment okay from within that segment could the attacker break out and gain access to another segment then they'll run us from their work from home environment could they Traverse the VPN and do something damaging and once they're in could they Traverse the VPN and get into my cloud then they'll break in from the outside all of these perspectives are available to you in Horizon 3 and node zero as a single SKU and you can run as many pen tests as you want if you run a phishing campaign and find that an intern in the finance department had the worst phishing behavior you can then inject their credentials and actually show the end-to-end story of how an attacker fished gained credentials of an intern and use that to gain access to sensitive financial data so what our customers end up doing is running multiple attacks from multiple perspectives and looking at those results over time I'll leave you two things one is what is the AI in Horizon 3 AI those knowledge graphs are the heart and soul of everything that we do and we use machine learning reinforcement techniques reinforcement learning techniques Markov decision models and so on to be able to efficiently maneuver and analyze the paths in those really large graphs we also use context-based scoring to prioritize weaknesses and we're also able to drive collective intelligence across all of the operations so the more pen tests we run the smarter we get and all of that is based on our knowledge graph analytics infrastructure that we have finally I'll leave you with this was my decision criteria when I was a buyer for my security testing strategy what I cared about was coverage I wanted to be able to assess my on-prem cloud perimeter and work from home and be safe to run in production I want to be able to do that as often as I wanted I want to be able to run pen tests in hours or days not weeks or months so I could accelerate that fine fix verify loop I wanted my it admins and network Engineers with limited offensive experience to be able to run a pen test in a few clicks through a self-service experience and not have to install agent and not have to write custom scripts and finally I didn't want to get nickeled and dimed on having to buy different types of attack modules or different types of attacks I wanted a single annual subscription that allowed me to run any type of attack as often as I wanted so I could look at my Trends in directions over time so I hope you found this talk valuable uh we're easy to find and I look forward to seeing seeing you use a product and letting our results do the talking when you look at uh you know kind of the way no our pen testing algorithms work is we dynamically select uh how to compromise an environment based on what we've discovered and the goal is to become a domain admin compromise a host compromise domain users find ways to encrypt data steal sensitive data and so on but when you look at the the top 10 techniques that we ended up uh using to compromise environments the first nine have nothing to do with cves and that's the reality cves are yes a vector but less than two percent of cves are actually used in a compromise oftentimes it's some sort of credential collection credential cracking uh credential pivoting and using that to become an admin and then uh compromising environments from that point on so I'll leave this up for you to kind of read through and you'll have the slides available for you but I found it very insightful that organizations and ourselves when I was a GE included invested heavily in just standard vulnerability Management Programs when I was at DOD that's all disa cared about asking us about was our our kind of our cve posture but the attackers have adapted to not rely on cves to get in because they know that organizations are actively looking at and patching those cves and instead they're chaining together credentials from one place with misconfigurations and dangerous product defaults in another to take over an environment a concrete example is by default vcenter backups are not encrypted and so as if an attacker finds vcenter what they'll do is find the backup location and there are specific V sender MTD files where the admin credentials are parsippled in the binaries so you can actually as an attacker find the right MTD file parse out the binary and now you've got the admin credentials for the vcenter environment and now start to log in as admin there's a bad habit by signal officers and Signal practitioners in the in the Army and elsewhere where the the VM notes section of a virtual image has the password for the VM well those VM notes are not stored encrypted and attackers know this and they're able to go off and find the VMS that are unencrypted find the note section and pull out the passwords for those images and then reuse those credentials across the board so I'll pause here and uh you know Patrick love you get some some commentary on on these techniques and other things that you've seen and what we'll do in the last say 10 to 15 minutes is uh is rolled through a little bit more on what do you do about it yeah yeah no I love it I think um I think this is pretty exhaustive what I like about what you've done here is uh you know we've seen we've seen double-digit increases in the number of organizations that are reporting actual breaches year over year for the last um for the last three years and it's often we kind of in the Zeitgeist we pegged that on ransomware which of course is like incredibly important and very top of mind um but what I like about what you have here is you know we're reminding the audience that the the attack surface area the vectors the matter um you know has to be more comprehensive than just thinking about ransomware scenarios yeah right on um so let's build on this when you think about your defense in depth you've got multiple security controls that you've purchased and integrated and you've got that redundancy if a control fails but the reality is that these security tools aren't designed to work together so when you run a pen test what you want to ask yourself is did you detect node zero did you log node zero did you alert on node zero and did you stop node zero and when you think about how to do that every single attacker command executed by node zero is available in an attacker log so you can now see you know at the bottom here vcenter um exploit at that time on that IP how it aligns to minor attack what you want to be able to do is go figure out did your security tools catch this or not and that becomes very important in using the attacker's perspective to improve your defensive security controls and so the way we've tried to make this easier back to like my my my the you know I bleed Green in many ways still from my smoke background is you want to be able to and what our customers do is hey we'll look at the attacker logs on one screen and they'll look at what did Splunk see or Miss in another screen and then they'll use that to figure out what their logging blind spots are and what that where that becomes really interesting is we've actually built out an integration into Splunk where there's a Splunk app you can download off of Splunk base and you'll get all of the pen test results right there in the Splunk console and from that Splunk console you're gonna be able to see these are all the pen tests that were run these are the issues that were found um so you can look at that particular pen test here are all of the weaknesses that were identified for that particular pen test and how they categorize out for each of those weaknesses you can click on any one of them that are critical in this case and then we'll tell you for that weakness and this is where where the the punch line comes in so I'll pause the video here for that weakness these are the commands that were executed on these endpoints at this time and then we'll actually query Splunk for that um for that IP address or containing that IP and these are the source types that surface any sort of activity so what we try to do is help you as quickly and efficiently as possible identify the logging blind spots in your Splunk environment based on the attacker's perspective so as this video kind of plays through you can see it Patrick I'd love to get your thoughts um just seeing so many Splunk deployments and the effectiveness of those deployments and and how this is going to help really Elevate the effectiveness of all of your Splunk customers yeah I'm super excited about this I mean I think this these kinds of purpose-built integration snail really move the needle for our customers I mean at the end of the day when I think about the power of Splunk I think about a product I was first introduced to 12 years ago that was an on-prem piece of software you know and at the time it sold on sort of Perpetual and term licenses but one made it special was that it could it could it could eat data at a speed that nothing else that I'd have ever seen you can ingest massively scalable amounts of data uh did cool things like schema on read which facilitated that there was this language called SPL that you could nerd out about uh and you went to a conference once a year and you talked about all the cool things you were splunking right but now as we think about the next phase of our growth um we live in a heterogeneous environment where our customers have so many different tools and data sources that are ever expanding and as you look at the as you look at the role of the ciso it's mind-blowing to me the amount of sources Services apps that are coming into the ciso span of let's just call it a span of influence in the last three years uh you know we're seeing things like infrastructure service level visibility application performance monitoring stuff that just never made sense for the security team to have visibility into you um at least not at the size and scale which we're demanding today um and and that's different and this isn't this is why it's so important that we have these joint purpose-built Integrations that um really provide more prescription to our customers about how do they walk on that Journey towards maturity what does zero to one look like what does one to two look like whereas you know 10 years ago customers were happy with platforms today they want integration they want Solutions and they want to drive outcomes and I think this is a great example of how together we are stepping to the evolving nature of the market and also the ever-evolving nature of the threat landscape and what I would say is the maturing needs of the customer in that environment yeah for sure I think especially if if we all anticipate budget pressure over the next 18 months due to the economy and elsewhere while the security budgets are not going to ever I don't think they're going to get cut they're not going to grow as fast and there's a lot more pressure on organizations to extract more value from their existing Investments as well as extracting more value and more impact from their existing teams and so security Effectiveness Fierce prioritization and automation I think become the three key themes of security uh over the next 18 months so I'll do very quickly is run through a few other use cases um every host that we identified in the pen test were able to score and say this host allowed us to do something significant therefore it's it's really critical you should be increasing your logging here hey these hosts down here we couldn't really do anything as an attacker so if you do have to make trade-offs you can make some trade-offs of your logging resolution at the lower end in order to increase logging resolution on the upper end so you've got that level of of um justification for where to increase or or adjust your logging resolution another example is every host we've discovered as an attacker we Expose and you can export and we want to make sure is every host we found as an attacker is being ingested from a Splunk standpoint a big issue I had as a CIO and user of Splunk and other tools is I had no idea if there were Rogue Raspberry Pi's on the network or if a new box was installed and whether Splunk was installed on it or not so now you can quickly start to correlate what hosts did we see and how does that reconcile with what you're logging from uh finally or second to last use case here on the Splunk integration side is for every single problem we've found we give multiple options for how to fix it this becomes a great way to prioritize what fixed actions to automate in your soar platform and what we want to get to eventually is being able to automatically trigger soar actions to fix well-known problems like automatically invalidating passwords for for poor poor passwords in our credentials amongst a whole bunch of other things we could go off and do and then finally if there is a well-known kill chain or attack path one of the things I really wish I could have done when I was a Splunk customer was take this type of kill chain that actually shows a path to domain admin that I'm sincerely worried about and use it as a glass table over which I could start to layer possible indicators of compromise and now you've got a great starting point for glass tables and iocs for actual kill chains that we know are exploitable in your environment and that becomes some super cool Integrations that we've got on the roadmap between us and the Splunk security side of the house so what I'll leave with actually Patrick before I do that you know um love to get your comments and then I'll I'll kind of leave with one last slide on this wartime security mindset uh pending you know assuming there's no other questions no I love it I mean I think this kind of um it's kind of glass table's approach to how do you how do you sort of visualize these workflows and then use things like sore and orchestration and automation to operationalize them is exactly where we see all of our customers going and getting away from I think an over engineered approach to soar with where it has to be super technical heavy with you know python programmers and getting more to this visual view of workflow creation um that really demystifies the power of Automation and also democratizes it so you don't have to have these programming languages in your resume in order to start really moving the needle on workflow creation policy enforcement and ultimately driving automation coverage across more and more of the workflows that your team is seeing yeah I think that between us being able to visualize the actual kill chain or attack path with you know think of a of uh the soar Market I think going towards this no code low code um you know configurable sore versus coded sore that's going to really be a game changer in improve or giving security teams a force multiplier so what I'll leave you with is this peacetime mindset of security no longer is sustainable we really have to get out of checking the box and then waiting for the bad guys to show up to verify that security tools are are working or not and the reason why we've got to really do that quickly is there are over a thousand companies that withdrew from the Russian economy over the past uh nine months due to the Ukrainian War there you should expect every one of them to be punished by the Russians for leaving and punished from a cyber standpoint and this is no longer about financial extortion that is ransomware this is about punishing and destroying companies and you can punish any one of these companies by going after them directly or by going after their suppliers and their Distributors so suddenly your attack surface is no more no longer just your own Enterprise it's how you bring your goods to Market and it's how you get your goods created because while I may not be able to disrupt your ability to harvest fruit if I can get those trucks stuck at the border I can increase spoilage and have the same effect and what we should expect to see is this idea of cyber-enabled economic Warfare where if we issue a sanction like Banning the Russians from traveling there is a cyber-enabled counter punch which is corrupt and destroy the American Airlines database that is below the threshold of War that's not going to trigger the 82nd Airborne to be mobilized but it's going to achieve the right effect ban the sale of luxury goods disrupt the supply chain and create shortages banned Russian oil and gas attack refineries to call a 10x spike in gas prices three days before the election this is the future and therefore I think what we have to do is shift towards a wartime mindset which is don't trust your security posture verify it see yourself Through The Eyes of the attacker build that incident response muscle memory and drive better collaboration between the red and the blue teams your suppliers and Distributors and your information uh sharing organization they have in place and what's really valuable for me as a Splunk customer was when a router crashes at that moment you don't know if it's due to an I.T Administration problem or an attacker and what you want to have are different people asking different questions of the same data and you want to have that integrated triage process of an I.T lens to that problem a security lens to that problem and then from there figuring out is is this an IT workflow to execute or a security incident to execute and you want to have all of that as an integrated team integrated process integrated technology stack and this is something that I very care I cared very deeply about as both a Splunk customer and a Splunk CTO that I see time and time again across the board so Patrick I'll leave you with the last word the final three minutes here and I don't see any open questions so please take us home oh man see how you think we spent hours and hours prepping for this together that that last uh uh 40 seconds of your talk track is probably one of the things I'm most passionate about in this industry right now uh and I think nist has done some really interesting work here around building cyber resilient organizations that have that has really I think helped help the industry see that um incidents can come from adverse conditions you know stress is uh uh performance taxations in the infrastructure service or app layer and they can come from malicious compromises uh Insider threats external threat actors and the more that we look at this from the perspective of of a broader cyber resilience Mission uh in a wartime mindset uh I I think we're going to be much better off and and will you talk about with operationally minded ice hacks information sharing intelligence sharing becomes so important in these wartime uh um situations and you know we know not all ice acts are created equal but we're also seeing a lot of um more ad hoc information sharing groups popping up so look I think I think you framed it really really well I love the concept of wartime mindset and um I I like the idea of applying a cyber resilience lens like if you have one more layer on top of that bottom right cake you know I think the it lens and the security lens they roll up to this concept of cyber resilience and I think this has done some great work there for us yeah you're you're spot on and that that is app and that's gonna I think be the the next um terrain that that uh that you're gonna see vendors try to get after but that I think Splunk is best position to win okay that's a wrap for this special Cube presentation you heard all about the global expansion of horizon 3.ai's partner program for their Partners have a unique opportunity to take advantage of their node zero product uh International go to Market expansion North America channel Partnerships and just overall relationships with companies like Splunk to make things more comprehensive in this disruptive cyber security world we live in and hope you enjoyed this program all the videos are available on thecube.net as well as check out Horizon 3 dot AI for their pen test Automation and ultimately their defense system that they use for testing always the environment that you're in great Innovative product and I hope you enjoyed the program again I'm John Furrier host of the cube thanks for watching

foreign okay we're back at Falcon 2022 crowdstrike's big user conference first time in a couple of years obviously because of kova this is thecube's coverage Dave vellante and Dave Nicholson wall-to-wall coverage two days in a row Michael Rogers the series the newly minted vice president of global alliances at crowdstrike Michael first of all congratulations on the new appointment and welcome to the cube thank you very much it's an honor to be here so dial back just a bit like think about your first hundred days in this new role what was it like who'd you talk to what'd you learn wow well the first hundred days were filled with uh excitement uh I would say 18 plus hours a day getting to know the team across the globe a wonderful team across all of the partner types that we cover and um just digging in and spending time with people and understanding uh what the partner needs were and and and and it was just a it was a blur but a blast I agree with any common patterns that you heard that you could sort of coalesce around yeah I mean I think that uh really what a common thing that we hear at crowdstrike whether it's internal is extra external is getting to the market as fast as possible there's so much opportunity and every time we open a door the resource investment we need we continue to invest in resources and that was an area that we identified and quickly pivoted and started making some of those new investments in a structure of the organization how we cover Partners uh how we optimize uh the different routes to Market with our partners and yeah just a just a it's been a wonderful experience and in my 25 years of cyber security uh actually 24 and a half as of Saturday uh I can tell you that I have never felt and had a better experience in terms of culture people and a greater mission for our customers and our partners you'll Max funny a lot of times Dave we talk about this is we you know we learned a lot from Amazon AWS with the cloud you know taking something you did internally pointing it externally to Pizza teams there's shared responsibility model we talk about that and and one of the things is blockers you know Amazon uses that term blocker so were there any blockers that you identified that you're you're sort of working with the partner ecosystem to knock down to accelerate that go to market well I mean if I think about what we had put in place prior and I had the benefit of being vice president of America's prior to the appointment um and had the pleasure of succeeding my dear friend and Mentor Matthew Pauley um a lot of that groundwork was put in place and we work collectively as a leadership team to knock down a lot of those blockers and I think it really as I came into the opportunity and we made new Investments going into the fiscal year it's really getting to Market as fast as possible it's a massive Target addressable market and identifying the right routes and how to how to harness that power of we to drive the most value to the marketplace yeah what is it what does that look like in terms of alliances alliances can take a lot of shape we've we've talked to uh service providers today as an example um our Global Systems integrators in that group also what what is what does the range look like yeah I mean alliances at crowdstrike and it's a great question because a lot of times people think alliances and they only think of Technology alliances and for us it spans really any and all routes to Market it could be your traditional solution providers which might be regionally focused it could be nationally focused larger solution providers or Lars as you noted service providers and telcos global system integrators mssps iot Partners OEM Partners um and store crouchstrike store Partners so you look across that broad spectrum and we cover it all so the mssps we heard a lot about that on the recent earnings call we've heard this is a consistent theme we've interviewed a couple here today what's driving that I mean is it the fact that csos are just you know drowning for talent um and why crowdstrike why is there such an affinity between mssps and crowdstrike yeah a great question we um and you noted that uh succinctly that csos today are faced with the number one challenge is lack of resources and cyber security the last that I heard was you know in the hundreds of thousands like 350 000 and that's an old stat so I would venture to Guess that the open positions in cyber security are north of a half a million uh as we sit here today and um service providers and mssps are focused on providing service to those customers that are understaffed and have that Personnel need and they are harnessing the crowdstrike platform to bring a cloud native best of breed solution to their customers to augment and enhance the services that they bring to those customers so partner survey what tell us about the I love surveys I love data you know this what was the Genesis of the survey who took it give us the breakdown yeah that's a great question no uh nothing is more important than the feedback that we get from our partners so every single year we do a partner survey it reaches all partner types in the uh in the ecosystem and we use the net promoter score model and so we look at ourselves in terms of how we how we uh rate against other SAS solution providers and then we look at how we did last year and in the next year and so I'm happy to say that we increased our net promoter score by 16 percent year over year but my philosophy is there's always room for improvement so the feedback from our partners on the positive side they love the Falcon platform they love the crowdstrike technology they love the people that they work with at crowdstrike and they like our enablement programs the areas that they like us to see more investment in is the partner program uh better and enhanced enablement making it easier to work with crowdstrike and more opportunities to offer services enhance services to their customers dramatic differences between the types of Partners and and if so you know why do you think those were I mean like you mentioned you know iot Partners that's kind of a new area you know so maybe maybe there was less awareness there were there any sort of differences that you noticed by type of partner I would say that you know the areas or the part the partners that identified areas for improvement were the partners that that uh either were new to crowdstrike or they're areas that we're just investing in uh as as we expand as a company and a demand from the market is you know pull this thing into these new routes to Market um not not one in particular I mean iot is something that we're looking to really blow up in the next uh 12 to 18 months um but no no Common Thread uh consistent feedback across the partner base speaking of iot he brought it up before it's is it in a you see it as an adjacency to i-team it seems like it and OT used to never talk to each other and now they're increasingly doing so but they're still it still seems like different worlds what have you found and learned in that iot partner space yeah I mean I think the key and we the way we look at the journey is it starts with um Discovery discovering the assets that are in the OT environment um it then uh transitions to uh detection and response and really prevention and once you can solve that and you build that trust through certifications in the industry um you know it really is a game changer anytime you have Global in your job title first word that comes to mind for me anyway is sovereignty issues is that something that you deal with in this space uh in terms of partners that you're working with uh focusing on Partners in certain regions so that they can comply with any governance or sovereignty yeah that's that's a great question Dave I mean we have a fantastic and deep bench on our compliance team and there are certain uh you know parameters and processes that have been put in place to make sure that we have a solid understanding in all markets in terms of sovereignty and and uh where we're able to play and how that were you North America before or Americas uh Americas America so you're familiar with the sovereignty issue yeah a little already Latin America is certainly uh exposed me plenty of plenty of that yes 100 so you mentioned uh uh Tam before I think it was total available Market you had a different word for the t uh total addressable Mark still addressable Market okay fine so I'm hearing Global that's a tam expansion opportunity iot is definitely you know the OT piece and then just working better um you know better Groove swing with the partners for higher velocity when you think about the total available total addressable market and and accelerating penetration and growing your Tam I've seen the the charts in your investor presentation and you know starts out small and then grows to you know I think it could be 100 billion I do a lot of Tam analysis but just my back a napkin had you guys approaching 100 billion anyway how do you think about the Tam and what role do Partners play in terms of uh increasing your team yeah that's a great question I mean if you think about it today uh George announced on the day after our 11th anniversary as a company uh 20 000 customers and and if you look at that addressable Market just in the SMB space it's north of 50 million companies that are running on Legacy on-prem Solutions and it really provides us an opportunity to provide those customers with uh Next Generation uh threat protection and and detection and and response partners are the route to get there there is no doubt that we cannot cover 50 50 million companies requires a span of of uh of of of a number of service providers and mssps to get to that market and that's where we're making our bets what what's an SMB that is a candidate for crowdstrike like employee size or how do you look at that like what's the sort of minimum range yeah the way we segment out the SMB space it's 250 seats or endpoints and below 250 endpoints yes right and so it's going to be fairly significant so math changes with xdr with the X and xdr being extended the greater number of endpoints means that a customer today when you talk about total addressable Market that market can expand even without expanding the number of net new customers is that a fair yeah Fair assessment yep yeah you got that way in that way but but map that to like company size can you roughly what's the what's the smallest s that would do business with crowdstrike yeah I mean we have uh companies as small as five employees that will leverage crowd strike yeah 100 and they've got hundreds of endpoints oh no I'm sorry five uh five endpoints is oh okay so it's kind of 250 endpoints as well like the app that's the sweets that's it's that's kind of the Top Line we look at and then we focus oh okay when we Define SMB it's below so five to 250 endpoints right yes and so roughly so you're talking to companies with less than 100 employees right yeah yeah so I mean this is what I was talking about before I say I look around the the ecosystem myself it kind of reminds me of service now in 2013 but servicenow never had a SMB play right and and you know very kind of proprietary closed platform not that you don't have a lot of propriety in your platform you do but you they were never going to get down Market there and their Tam is not as big in my view but I mean your team is when you start bringing an iot it's it's mind-boggling it's endless how large it could be yeah all right so what's your vision for the Elevate program partner program well I I look at uh a couple things that we've we've have in place today one is um one is we've we've established for the first time ever at crowdstrike the Alliance program management office apmo and that team is focused on building out our next Generation partner program and that's you know processes it's you know uh it's it's ring fencing but it's most important importantly identifying capabilities for partners to expand to reduce friction and uh grow their business together with crowdstrike we also look at uh what we call program Harmony and that's taking all of the partner types or the majority of the partner types and starting to look at it with the customer in the middle and so multiple partners can play a role on the journey to bringing a customer on board initially to supporting that customer going forward and they can all participate and be rewarded for their contribution to that opportunity so it's really a key area for us going forward Hub and spoke model with the center of the that model is the customer you're saying that's good okay so you're not like necessarily fighting each other for for a sort of ownership of that model but uh cool Michael Rogers thanks so much for coming on thecube it was great to have you my pleasure thank you for having me you're welcome all right keep it right there Dave Nicholson and Dave vellante we'll be right back to Falcon 22 from the Aria in Las Vegas you're watching thecube foreign [Music]

okay we're back digging into trusted infrastructure with paris are good at he's a senior consultant for product marketing and storage at dell technologies pastor welcome to the cube good to see you great to be with you dave yeah coming from hyderabad awesome so i really appreciate you uh coming on the program let's start with talking about your point of view on what cyber security resilience means to to dell generally but storage specifically yeah so for something like storage you know we are talking about the data layer name and if you look at cyber security it's all about securing your data applications and infrastructure it has been a very mature field at the network and application layers and there are a lot of great technologies right from you know enabling zero trust uh advanced authentications uh identity management systems and so on and and in fact you know with the advent of you know the the use of artificial intelligence and machine learning really these detection tools for cyber securities have really evolved in the network and application spaces so for storage what it means is how can you bring them to the data layer right how can you bring you know the principles of zero trust to the data layer uh how can you leverage artificial intelligence and machine learning to look at you know access patterns and make intelligent decisions about maybe an indicator of a compromise and identify them ahead of time just like you know how it's happening and other of of applications and when it comes to cyber resilience it's it's basically a strategy which assumes that a threat is imminent and it's a good assumption with the severity and the frequency of the attacks that are happening and the question is how do we fortify the infrastructure in this rich infrastructure to withstand those attacks and have a plan a response plan where we can recover the data and make sure the business continuity is not affected so that's uh really cyber security and cyber resiliency at storage layer and of course there are technologies like you know network isolation um immutability and all these principles need to be applied at the storage level as well let me have a follow up on that if i may the intelligence that you talked about that ai and machine learning is that do you do you build that into the infrastructure or is that sort of a separate software module that that points at various you know infrastructure components how does that work both dave right at the data storage level we have come up with various data characteristics depending on the nature of data we developed a lot of signals to see what could be a good indicator of a compromise um and there are also additional applications like cloud iq is the best example which is like an infrastructure wide health monitoring system for dell infrastructure and now we have elevated that to include cyber security as well so these signals are being gathered at cloud iq level and other applications as well so that we can make those decisions about compromise and we can either cascade that intelligence and alert stream upstream for uh security teams um so that they can take actions in platforms like sign systems xtr systems and so on but when it comes to which layer the intelligence is it has to be at every layer where it makes sense where we have the information to make a decision and being closest to the data we have we are basically monitoring you know the various parallels data access who is accessing um are they crossing across any geo fencing is there any mass deletion that is happening or a mass encryption that is happening and we are able to uh detect uh those uh patterns and flag them as indicators of compromise and in allowing automated response manual control and so on for i.t teams yeah thank you for that explanation so at dell technologies world we were there in may it was one of the first you know live shows that that we did in the spring certainly one of the largest and i interviewed shannon champion and my huge takeaway from the storage side was the degree to which you guys uh emphasized security uh within the operating systems i mean really i mean power max more than half i think of the features were security related but also the rest of the portfolio so can you talk about the the security aspects of the dell storage portfolio specifically yeah yeah so when it comes to data security and broadly data availability right in the context of cyber resiliency um dell storage uh this you know these elements have been at the core of our um a core strength for the portfolio and a source of differentiation for the storage portfolio you know with almost decades of collective experience of building highly resilient architectures for mission critical data something like power max system which is the most secure storage platform for high-end enterprises um and now with the increased focus on cyber security we are extending those core technologies of high availability and adding modern detection systems modern data isolation techniques to offer a comprehensive solution to the customer so that they don't have to piece together multiple things to ensure data security or data resiliency but a well-designed and well-architected solution by design is uh delivered to them to ensure cyber protection at the data layer got it um you know we were talking earlier to steve kenniston and pete gear about this notion of dell trusted infrastructure how does storage fit into that as a component of that sort of overall you know theme yeah and you know and let me say this if you could adjust because a lot of people might be skeptical that i can actually have security and at the same time not constrict my organizational agility that's old you know not an or it's an and how do you actually do that if you could address both of those that would be great definitely so for dell trusted infrastructure cyber resiliency is a key component of that and just as i mentioned you know uh air gap isolation it really started with you know power protect cyber recovery you know that was the solution more than three years ago we launched and that was first in the industry which paved way to you know kind of data isolation being a core element of data management and you know for data infrastructure and since then we have implemented these technologies within different storage platforms as well so the customers have the flexibility depending on their data landscape they can approach they can do the right data isolation architecture right either natively from the storage platform or consolidate things into the backup platform and isolate from there and and the other key thing we focus in trusted infrastructure delta dell trusted infrastructure is you know the goal of simplifying security for the customers so one good example here is uh you know risk being able to respond to these cyber threats or indicators of compromise is one thing but an i.t security team may not be looking at the dashboard of the storage systems constantly right storage administration admins may be looking at it so how can we build this intelligence and provide this upstream platforms so that they have a single pane of glass to understand security landscape across applications across networks firewalls as well as storage infrastructure and and compute infrastructure so that's one of the key ways where how we are helping simplify the um kind of the ability to uh respond ability to detect and respond these threads uh in real time for security teams and you mentioned you know about zero trust and how it's a balance of you know not uh kind of restricting users or put heavy burden on you know multi-factor authentication and so on and this really starts with you know what we are doing is provide all the tools you know when it comes to advanced authentication uh supporting external identity management systems multi-factor authentication encryption all these things are intrinsically built into these platforms now the question is the customers are actually one of the key steps is to identify uh what are the most critical parts of their business or what are the applications uh that the most critical business operations depend on and similarly identify uh mission critical data where part of your response plan where it cannot be compromised where you need to have a way to recover once you do this identification then the level of security can be really determined uh by uh by the security teams by the infrastructure teams and you know another you know intelligence that gives a lot of flexibility for for even developers to do this is today we have apis um that so you can not only track these alerts at the data infrastructure level but you can use our apis to take concrete actions like blocking a certain user or increasing the level of authentication based on the threat level that has been perceived at the application layer or at the network layer so there is a lot of flexibility that is built into this by design so that depending on the criticality of the data criticality of the application number of users affected these decisions have to be made from time to time and it's as you mentioned it's it's a balance right and sometimes you know if if an organization had a recent attack you know the level of awareness is very high uh against cyber attacks so for a time you know these these settings may be a bit difficult to deal with but then it's a decision that has to be made by security teams as well got it so you're surfacing what may be hidden kpis that are being buried inside for instance the storage system through apis upstream into a dashboard so that somebody you know dig into the storage tunnel extract that data and then somehow you know populate that dashboard you're saying you're automating that that that workflow that's a great example and you may have others but is that the correct understanding absolutely and it's a two-way integration let's say a detector an attack has been detected at a completely different layer right in the application layer or at a firewall we can respond to those as well so it's a two-way integration we can cascade things up as well as uh respond to threats that have been detected elsewhere uh through the api that's great all right api for power skill is the best example for that uh excellent so thank you appreciate that give us the last word put a bow on this and and bring this segment home please absolutely so a dell uh storage portfolio um using advanced data isolation um with air gap having machine learning based algorithms to detect uh indicators of compromise and having ripple mechanisms um with granular snapshots being able to recover data and restore applications to maintain business continuity is what we deliver to customers uh and these are areas where a lot of innovation is happening a lot of product focus as well as you know if you look at the professional services all the way from engineering to professional services the way we build these systems the very we configure and architect these systems cyber security and protection is a key focus uh for all these activities and dell.com securities is where you can learn a lot about these initiatives that's great thank you you know at the recent uh reinforce uh event in in boston we heard a lot uh from aws about you know detent and response and devops and machine learning and some really cool stuff we heard a little bit about ransomware but i'm glad you brought up air gaps because we heard virtually nothing in the keynotes about air gaps that's an example of where you know this the cso has to pick up from where the cloud leaves off but as i was in front and so number one and number two we didn't hear a ton about how the cloud is making the life of the cso simpler and that's really my takeaway is is in part anyway your job and companies like dell so paris i really appreciate the insights thank you for coming on thecube thank you very much dave it's always great to be in these uh conversations all right keep it right there we'll be right back with rob emsley to talk about data protection strategies and what's in the dell portfolio you're watching the cube [Music] you

foreign [Music] Lisa Martin of the cube here hpe and AMD better together with Shi is the name of our segment and I'm here with four guests please welcome Charlie mulrooney Global pre-sales engineering manager at SHI John saw is also of shi joins us Global pre-sales Technical consultant and back with me are Terry Richardson North American Channel Chief and Dr John Fry Chief technologist of sustainable transformation at hpe welcome gang great to have you here all here Thank you Lisa thank you good to be here all right Charlie let's go ahead and start with you keeping the Earth sustainable and minimizing carbon emissions greenhouse gases is a huge priority for businesses right everywhere globally can you talk truly about what Shi is seeing in the marketplace with respect to sustainable I.T sure so starting about a year and a half two years ago we really noticed that our customers certainly our largest Enterprise customers were putting into their annual reports their Chairman's letters their SEC filings that they had sustainability initiatives ranging from achieving carbon neutral uh or carbon zero goals starting with 20 50 dates and then since then we've seen 20 40 and 2030 targets to achieve net neutrality and rfps rfis that we're Fielding certainly all now contain elements of that so this is certainly top of mind for our largest customers our Fortune 250 and Fortune 500 customers for sure where we're seeing an onslaught of requests for this we get into many conversations with the folks that are leading these efforts to understand you know here's what we have today what can we do better what can we do different to help make it an impact on those goals so making an impact top of Mind pretty much for everyone as you mentioned John Sal's let's bring you into the conversation now when you're in customer conversations what are some of the things that you talk about with respect to shi's approach to sustainability sustainable I.T are you seeing more folks that are implementing things tactically versus strategically what's going on in the customer space well so Charlie touched on something really important that you know the the wake-up moment for us was receiving you know proposal requests or customer meeting requests that were around sustainability and it was really around two years ago I suppose for the first time and those requests started coming from european-based companies because they had a bit of a head start uh over the U.S based global companies even um and what we found was that sustainability was already well down the road and that they were doing very interesting things to uh use renewable energy for data centers uh utilized they were already considering sustainability for new technologies as a high priority versus just performance costs and other factors that you typically had at the top so as we started working with them uh I guess that beginning was more tactical because we really had to find a way to respond uh we were starting to be asked about our own efforts and in regards to sustainability we have our headquarters in Somerset and our second Headquarters in Austin Texas um those are the gold certified we've been installing solar panels producing waste across the company recycling efforts and so forth charging stations for electric vehicles all that sort of thing to make our company more sustainable in in uh in our offices and in our headquarters um but it's a lot more than that and what we found was that we wanted to look to our vast number of supply of customers and partners we have over 30 000 partners that would work with globally and tens of thousands of customers and we wanted to find best practices and Technologies and services that we could uh talk about with these customers and apply and help integrate together as a as a really large Global uh reseller and integrator we can have a play there and bring these things together from multiple uh partners that we work with to help solve customer problems and so over time it's become more strategic and we've been uh as a company building the uh the the the forward efforts through organizing a true formal sustainability team and growing that um and then also reporting for CDP echovatus and so forth and it's really that all has been coming about in the last couple of years and we take it very seriously it sounds like it also sounds like from the customer's perspective they're shifting from that tactical maybe early initial approach to being more strategic to really enabling sustainable I.T across their organization and I imagine from a business driver's perspective John saws and Charlie are you hearing customers you talked about it being part of rfps but also where are customers in terms of we need to have a sustainable I.T strategy so that we can attract and retain the right investors we can attract and retain customers Charlie John what are your thoughts on that yeah that's top of mind with uh with all the folks that we're talking to uh I would say there's probably a three-way tie for the importance of uh attracting and retaining investors as you said plus customers customers are shopping their customers are shopping for who has aligned their ESG priorities in sustainable priorities uh with their own and who is going to help them with their own reporting of you know spoke to and ultimately scope three reporting from greenhouse gas emissions and then the attracting and retaining Talent uh it's another element now of when you're bringing on a new talent to your organization they have a choice and they're thinking with their decision to accept a role or not within your organization of what your strategies are and do they align so we're seeing those almost interchangeable in terms of priorities with with the customers we're talking to it was a little surprising because we thought initially this is really focused on investors attracting the investors but it really has become quite a bit more than that and it's been actually very interesting to see the development of that prioritization more comprehensive across the organization let's bring Dr John Fry into the conversation and Terry your neck so stay tuned Dr Frey can you talk about hpe and Shia partnering together what are some of the key aspects of the relationship that help one another support and enable each other's aggressive goals where sustainability is concerned yeah it's a great question and one of the things about the sustainability domain in solving these climate challenges that we all have is we've got to come together and partner to solve them no one company's going to solve them by themselves and for our Collective customers the same way from an hpe perspective we bring the expertise on our products we bring in a sustainable I.T point of view where we've written many white papers on the topic and even workbooks that help companies Implement a sustainable I.T program but our direct sales forces can't reach all of our customers and in many cases we don't have the local knowledge that our business partners like Shi bring to the table so they extend the reach they bring their own expertise their portfolio that they offer to the customer is wider than just Enterprise Products so by working together we can do a better job of helping the customer meet their own needs give them the right Technology Solutions and enhance that customer experience it's because they get more value from us collectively it really is better together which is a very appropriate name for our segment here Terry let's bring you into the conversation talk to us about AMD how is it helping customers to create that sustainable I.T strategy and what are some of the differentiators that what AMD is doing that that are able to be delivered through Partners like Shi well Lisa you use the word enabling um just a short while ago and fundamentally AMD enables hpe and partners like Shi to bring differentiated solutions to customers so in the data center space We Begin our journey in 2017 with some fundamental Design Elements for our processor technology that we're really keenly focused on improving performance but also efficiency so now the the most common measure that we see for the types of customers that Charlie and John were talking about was really that measure of performance per watt and you'll continue to see AMD enable um customers to to try to find ways to to do more in a sustainable way within the constraints that they may be facing whether it's availability of power data center space or just needing to meet overall sustainability goals so we have skills and expertise and tools that we make available to hpe and to Shi to help them have even stronger differentiated conversations with customers sounds like to me Terry that it's that AMD can be even more of an more than an enabler but really an accelerator of what customers are able to do from a strategic perspective on sustainability you're right about that and and we actually have tools greenhouse gas TCO tools that can be leveraged to really quantify the impact of some of the the new technology decisions that customers are making to allow them to achieve their goals so we're really proud of the work that we're doing in partnership with companies like hpe and Shi Better Together as we've said at the beginning and just a minute ago Charlie let's bring you back in talk to us a little bit about what Shi is doing to leverage sustainable I.T and enable your customers to meet their sustainability goals and their initiatives so for quite a while we've had uh some offerings to help customers especially in the end user compute side a lot of customers were interested in I've got assets for you know let's say a large sales force that had been carrying tablets or laptops and you know those need to be refreshed what do I do with those how do I responsibly retire or recycle those and we've been offering solutions for that for quite some time it's within the last year or two when we started offering for them guarantees and Assurance assurances of how they can if that equipment is reusable by somebody else how can we issue them you know credits for uh carving credits for reuse of that equipment somewhere else so it's not necessarily going to be E-Waste it's uh something that can be recycled and reused we have other programs with helping extend the life of of some systems where they look at boy I have an awful lot of data on these machines where historically they might want to just retire those because the the sensitivity of the data needed to be handled very specifically we can help them properly remove the sensitive data and still allow reuse of that equipment so we've been able to accomplish some Creative Solutions specifically around end user compute in the past but we are looking to new ways now to to really help extend that into Data Center infrastructure and Beyond to really help with what are the needs what are the the best ways to help our customers handle the things that are challenging them [Music] that's a great point that you bring up Charlie and the security kind of popped into my head here John saw his question for you when you're in customer conversations and you're talking about or maybe they're talking about help us with waste reduction with recycling where are you having those customer conversations I know sustainability is a board level it's a c-level discussion but where are you having those conversations within the customer organization well so it's a it's a combination of um organizations within the customer these are these Global organizations typically when we're talking about asset like cycle management asset recovery how do you do that in a sustainable Green Way and securely the customers we're dealing with I mean security is top sustainability is right up there too obviously but uh um Charlie touched on a lot of those things and these are Global rollouts tens of thousands of employees typically to to have mobile devices laptops and phones and so forth um and they often are looking for a true managed service around the world that takes into consideration things like the most efficient way to ship products to to the employees and how do you do that in a sustainable way you need to think about that does it all go to a central location um or to each individual's home during the pandemic that made a lot of sense to do it that way I think the reason I wanted to touch on those things is that well for for example one European pharmaceutical that the states and their reports that they are already in scope one in scope two they're fully uh Net Zero at this point and and they say but that only solves three percent of our overall sustainability goals uh 97 is scope three it's travel it's shipping it's it's uh it's all the all these things that are out of their direct control a lot of times but they're coming to us now as a as a supplier and ask and and we're filling out forms and rfps and so forth uh to show that we can be a sustainable supplier in their supply chain because that's their next big goal so sustainable supply chain absolutely Dr John Fry and Terry I want to kind of get your perspectives Charlie talked about from a customer requirements perspective customers coming through RFP saying hey we've got to work with vendors who have clear sustainability initiatives that are well underway hpe and AMD hearing the same thing Dr Fry will start with you and then Terry sure absolutely we receive about 2500 customer questionnaires just on sustainability every year and that's come up from a few hundred so yeah absolutely accelerating then the conversations turn deeper can you help us quantify our carbon emissions and power consumption then the conversation has recently gone even further to when can hpe offer Net Zero or carbon neutral Technology Solutions to the customer so that they don't have to account for those Solutions in their own carbon footprint so the questions are getting more sophisticated the need for the data and the accuracy of the data is climbing and as we see potential regulatory disclosure requirements around carbon emissions I think this trend is just going to continue up yeah and we see the same thing uh we get asked more and more from our customers and partners around our own corporate sustainability goals but the surveying that the survey work that we've done with customers has led us to you know understand that you know approximately 75 percent of customers are going to make sustainability goals a key component of their rfis in 2023 which is right around the corner and you know 60 of those same customers really expect to have business level kpis uh in the new year that are really related to sustainability so this is not just a a kind of a buzzword topic this is this is kind of business imperatives that you know the company the companies like hpe and AMD and the partners like Shi that really stand behind it and really are proactive in getting out in front of customers to help are really going to be ahead of the game that's a great point that you make Terry there that this isn't we're not talking about a buzzword here we're talking about a business imperative for businesses of probably all sizes across all Industries and Dr Farr you mentioned regulations and something that we just noticed is that the SEC recently said it's proposing some rules where companies must disclose greenhouse gas emissions um if they were if that were to to come into play I'm going to come back to Charlie and John saws how would Shi and frankly at hpe and AMD be able to help companies comply if that type of Regulation were to be implemented Charlie yeah so we are in the process right now of building out a service to help customers specifically with that with the reporting we know reporting is a challenge uh the scope 2 reporting is a challenge and scope three that I guess people thought was going to be a ways out now all of a sudden hey if you have made a public statement that you're going to make an impact on your scope three uh targets and you have to report on them so that that has become really important very quickly uh as word about this requirement is rumbling around uh there's concern so we are actually working right now on something it's a little too early to fully disclose but stay tuned because we have something coming that's interesting definitely peaked my ears are are parked here Charlie well stay tuned for that Dr Brian Terry can you talk about together with Shi hpe and AMD enabling customers to manage access to the data obviously which is critical and it's doing nothing but growing and proliferating key folks need access to it we talked a little bit about security but how are from a Better Together perspective Dr Fry will start with you how are you really helping organizations on that sustainability journey to ensure that data can be accessible to those who need it when they need it and these days what is real-time requirements yeah it's an increasing challenge in fact we have changed the HP Story the way we talk about hpe's value proposition to talk about data first modernization so how often do you collect data where do you store it how do you avoid moving it how do you make sure if you're going to collect data you get insights from that data that change your business or add business value and then how long do you retain that data afterward and all of that factors into sustainable I.T because when I talk to technology Executives what they tell me again and again is there's this presumption within their user community that storage is free and so when when they have needs for collecting data for example if if once an hour would do okay but the system would collect it once a minute the default the user asks for of course is once a minute and then are you getting insights from that data or are we moving it that becomes more important when you're moving data back and forth between the public cloud or the edge because there is quite a network penalty for moving that equipment across your network there's huge power and carbon implications of doing that so it's really making a better decision about what do we collect why do we collect it what we're going to do with it when we collect and how we store it and for years customers have really talked about you know modernization and the need to modernize their data center you know I fundamentally believe that sustainability is really that Catalyst to really Drive true modernization and as they think forward um you know when we work with with hpe you know they offer a variety of purpose-built servers that can play a role in you know specific customer workloads from the larger supercomputers down to kind of general purpose servers and when we work with Partners like Shi not only can they deliver the full Suite of um offerings for on-premise deployments they're also very well positioned to leverage the public Cloud infrastructure for those workloads that really belong there and that certainly can help customers kind of achieve an end-to-end sustainability goal that's a great point that that it needs to be strategic but it also needs to be an end-to-end goal we're just about out of time but I wanted to give John saws the last word here take us out John what are some of the things Charlie kind of teased some of the things that are coming out that piqued my interest but what are some of the things that you're excited about as hpe AMD and Shi really help customers achieve their sustainability initiatives sure um a couple of comments here um so Charlie yeah you touched on some upcoming capabilities uh that uh Shi will have around the area of monitoring and management see this is difficult for all customers to be able to report in this formal way this is a train coming at everybody very quickly and um they're not ready most customers aren't ready and if we can help um as as a reseller integrator assessments to be able to understand what they're currently running compared to different scenarios of where they could go to in a future state that seems valuable if we can help in that way that's those are things that we're looking into specifically uh you know greenhouse gas emissions relevant assessments and and um and what in the comments uh of Terry and John around the power per watt and um the vast um uh portfolio of technologies that they that they had to address various workloads is uh is fantastic we'd be able to help point to Technologies like that and move customers in that direction I think as a as an integrator and a technical advisor to customers I saw an article on BBC this morning that I I think if we think about how we're working with our customers and we can help them maybe think differently about how they're using their technology to solve problems um the BBC article mentioned this was ethereum a cryptocurrency and they have a big project called merge and today was a go live date and BBC US news outlets have been reporting on it they basically changed the model from a model called The Power of work which takes a a lot of compute and graphic GPU power and so forth around the world and it's now called a power of stake which means that the people that validate that their actions in this environment are correct they have to put up a stake of their own cryptocurrency and if they're wrong it's taken from them this new model reduces the emissions of their um uh environment by 99 plus percent the June emissions from ethereum were it was 120 uh terawatts per per year terawatt hours per year and they reduced it um actually that's the equivalent of what the Netherlands needed for energy so the comparable to a medium-sized country so if you can think differently about how to solve problems it may be on-prem it may be extremely it may be that may be the public cloud in some cases or other you know interesting Innovative Technologies that the AMD hpe other partners that we can bring in along along with them as well we can solve problems differently there is a lot going on the opportunities that you all talked about to really make such a huge societal impact and impact to our planet are exciting we thank you so much for talking together about how hpe AMD and sha are really working in partnership in Synergy to help your customers across every organization really become much more focused much more collaborative about sustainable I.T guys we so appreciate your time and thank you for your insights Thank you Lisa thank you my pleasure for my guests I'm Lisa Martin in a moment Dan Molina is going to join me he's the co-president and chief technology officer of nth generation you're watching the cube the leader in high tech Enterprise coverage [Music]

foreign welcome back to thecube's coverage of VMware Explorer 2022 Lisa Martin and Dave Nicholson here at Moscone West we're with about seven to ten thousand folks here so really good attendance at this first event since 2019 and the First with the new name Dave and I are pleased to welcome Jeff seraki the senior director of product management at Lumen as our next guest Jeff great to have you thank you for having me welcome so looked at the website I always love to see what taglines are and and lumen's website says welcome to the platform for amazing things talk to the audience a little bit about Lumen it's Mission Vision value prop would love to so much like a lot of the Enterprises that are out there today in the market lumens in the process of transforming we're transforming to a technology company from our Network routes but we also have roots in the I.T infrastructure business so we're bringing those together and creating that platform for amazing things uh we believe that our purpose is if you further human progress through technology and how we do that is we're enabling the fourth Industrial Revolution so moving in to the digital age where everything is it's all about data it's about real-time use of that data you machine learning artificial intelligence autonomous Cars Smart cities so the key tenet that we have around the fourth Industrial Revolution is data you need to acquire it and once you acquire it you need to analyze it then you need to act upon it because when you think about it data is just growing and growing and growing from the phones in your pocket to the devices that are sitting in front of us it's not going to stop and information that data is critical to driving business value and outcomes for customers so um so with that the I totally lost my train of thought sorry um uh the ability to to leverage that is critical um you know driving driving the revenue from that so for example like machine learning you can't have machine learning without data to feed the machine so they can start learning so they can look at pictures like oh look this is a picture of a dog this is a picture of a kangaroo so that's what our platform enables and that's what we're building we're building it brand new sitting on top of the Lumen networking capabilities of Global Network one of the largest IP backbone providers so we're super excited about what we have so these days every company has to be a data company to be competitive to you know well even to survive talk a little bit about enabling lumens customers to become data companies while enabling the fourth Industrial Revolution those two seem to be hand in hand yes so with the services that we provide particularly with our partnership with VMware we provide private cloud services that we can deploy on the customer premises or so whether it's a corporate office manufacturing facility a you know logistical facility so we can provide compute there or we can provide it in one of our plus 60 Edge data centers that are located in plus 60 metros so you don't have to put equipment on premises that's all connected by the Lumen Network Dynamic networking capabilities that connect from a customer Prem to Edge data center third party data center all the way into the public Cloud so we can stitch all of that together so I know you mentioned that you know you're you're you know based on your history you're moving further up the value chain with your customers but I'm still fascinated by kind of the history of lumen and when you when you refer to this Lumen Network um tell us a little more about that because that that's kind of a secret sauce ingredient to what you're doing yes so roots and Telecom roots and fiber and we have one of the largest fiber networks in the world and with that comes not only breath but also capillarity going to the markets we have over a hundred and eighty thousand fiber fed Enterprise buildings so with that imagine if your compute's there or if it's in a one of our Edge data centers how quickly you can transmit information from that Prem to the compute all the way into the cloud to acquire analyze and act on that data so that's really kind of the secret sauce we have that as you mentioned is that is that fiber backbone so I'm going to use the word capillarity at least once a day for the next week that's one of my favorite words awesome awesome word in it because and it actually it's evocative of exactly what I know you're what you're referencing but so you you guys are experts in latency bandwidth throughput those underpinnings of making sure that you can get data where it needs to be you can communicate between between environments um you've got that you've got that down so that's a very very strong Foundation to build off of is I guess the point that I wanted to see if I was correct definitely understanding and um just with that capability it really it comes down to outside the data is the user experience and with application performance you know one of the levers you can pull to drive application performance is is network but also location so you can put more bandwidth at it you can take put it on a network with less hops that's one of the advantages of our large backbone or you move the compo compute closer to the point of digital interaction which is what we're doing with our Edge platform so whether it's an edge data center on-prem yeah one thing one thing at the cube that we like to do is we we dive into those things that sometimes people think are inane and banal because we know how important they are we have a whole series on the question of does Hardware matter and so so we understand that you're delivering higher value to your customers but we also want to acknowledge just how important it is for you to have that Foundation yes underneath yeah and we're I mean the customers that in the marketplace they're expecting more and more services up this stack they don't want to have to worry about speeds and feeds well the way we're looking at it is the network has compute endpoints on it and everything has compute customers want to run their applications they don't want to worry about everything underneath it so that's why we're moving up so we want to be able to create that platform you worry about your applications you worry about development and execution of your applications and we'll take care of everything else talk a little bit about the VMware partnership I see Lumen Edge private Cloud on VCF talk a little bit about that how you guys are working together and some of the value of what's in it for me as a customer okay we've been working with for VMware for decades they're one of our best partners and our Flagship private Cloud product is based upon the cloud Foundation and it's a tried and true platform that the market understands and they have confidence in so it's something that they can relate to and they already have experience in so they're not trying to learn something new like trying to go out and find resources that can manage kubernetes like that's probably one of the hottest jobs out there probably took the wrong career path but anyways it's it's new it's emerging whereas VMware people know it there's a lot of people that know it so why spend time as an Enterprise retooling and learning and going to a different platform so with that VMware brings that foundation and the security of that that cohesive ecosystem that comes with VCF so we can provide that dedicated solution to our customers that they know and they Trust trust is critical right I mean it's it's table Stakes for businesses and their vendors and suppliers you know here we are at the VMware explore event that called uh the center of the multi-cloud universe which just sounds like a Marvel movie to me haven't seen any superheroes yet but there's got to be somebody around here in a costume in any event talk about how Lumen and VMware are enabling customers to navigate the the multi-cloud world that they're in by default and really turn it into a strategic advantage uh sure it's tied to the network um as much as I'm trying to say we opsificate it but it's um network is the critical part to it because you do have to physically connect things and the cloud is their computer somewhere so there is a physical behind everything but with the connectivity that we have and the partnership with VMware and the ability to take that platform and either from on-prem Edge data center third party data center or we can also provide that service with uh vmc and AWS we can provide it in the cloud so you have a ubiquitous platform that looks and feels the same no matter where it is and then that's critical to our customers again that the switching costs of learning it's it's a great product VMware is a great partnership to help bring that all together so what is a delighted customer sound like you're interacting with a delighted customer they're not gonna they're not going to pick up the phone and tell you you know what I love your network what what are they going to be what are they going to tell you they're happy about a delighty customer wouldn't talk about our infrastructure at all our virtual machines work our applications work our software Engineers they can develop against it our costs are optimized that's what they're going to care about if they start talking about oh our virtual machines or servers and that means there's probably something wrong so we need to make sure that platform that we're providing as a service and managing works so it's really if your application if you want to talk to me about your application that's what's top of mind for you we're doing our job now you share that love with the folks in your organization responsible for making sure that that infrastructure works right yes you let them know it's like look no no one is no one is touting what you do but it really still is important it is very you want to make sure keep those folks happy yes very important talk a little bit Jeff about how your customer conversations have evolved over the last couple of years as we saw you know two and a half years ago businesses in every industry scrambling to go digital have you seen priorities shift up the c-suite stock over to the board in terms of the infrastructure and the network that powers these organizations yeah I mean over the past couple years with the proliferation of public cloud you know the edicts of got to go to the cloud we got to go Cloud go to the go to the cloud so everything goes to the cloud it's great it's good for a lot of applications but not for all applications and the customer conversations were having a lot of it are okay what what comes back because with Cloud cream and costs it just yeah if you're looking at a permanent VM basis you know public Cloud works but when you have an entire ecosystem of virtual machines and applications to support entire Enterprise that cost can get out of hand pretty quickly are you saying that we we yeah we hear the term repatriation yes used are you saying a fair fair amount of that yes we're seeing that then the other part that we're seeing is getting out of the data center business that's expensive especially if an Enterprise has their own like that's you're talking about 10 million dollars per megawatt just of capital cost there so and then if they're in a third party you still have physical space and power you have servers there you have to assume someone's optimizing those servers and even if you have a hypervisor sitting on top of it that's a lot of work that's a lot of resources and human capital that our private Cloud solution with VMware takes away so that they can again they can worry about their applications providing business value providing customer experience versus is there anything on this server or not does somebody need this virtual machine what are all these public Cloud spend items we have how's this out of control it allows them to focus so that's kind of how things have have evolved and changed over the years one of the things that VMware talked about this morning in terms of the journey the cloud journey is going from cloud chaos which is where a lot of businesses are now to Cloud smart how does Lumen facilitate that transition of a business from cloud chaos to Cloud smart what is a cloud smart strategy from lumen's lens look like first of all you have to have a strategy as an Enterprise you'd be surprised how many of those that are out there that they don't know what to do and part of not knowing what to do is do we even have the right people looking at this and so what Lumen what we bring is that consultative capability to start breaking down some of those issues so maybe they do have a hybrid Cloud strategy okay have you implemented it no why not we don't have enough people okay those are resources we can bring in because not only you provide network and infrastructure but we also have managed surface capabilities managed Services capabilities we can sit on top of that we have Cloud migration practices we have centers of excellence around sap and other services so let us help dissect your problem let's take a let's look at the landscape you have out there find out where everything's buried and dig it up and then we figure out okay how do we move from one place the other you don't just lift and shift and so that those are the other services that Lumen brings in and that's how we help them and our private Cloud product we have it sitting on our Edge right in those 60 metros they can spin up a private Cloud instance tomorrow and they can start moving virtual machines from their data center to that cloud as a staging point to either keep it there you know move it to another place or move it into the public Cloud if that's where the application needs to live I'm curious about lumen's go to market strategy customers have a finite number of strategic seats at the table when it comes time to planning things out like what you just were referencing you know what what do we do next uh what's lumen's path to a seat at that table are you are you generally seeking to directly engage separately with that end user customer or are you going in partnering with others what does that look like in the real world in the real world it's Partners working together no one single entity can provide everything we have to work together and with our infrastructure layer we want to find the right partners that can help provide vertical specific Solutions that then you know they can be Hardware Partners they can be software Partners but then we can collectively go talk to the market talk to our customers about what we can help them with and then with our managed Services capabilities that's how we can kind of glue it all together so that's the direction we're going in so be very focused we're focused on manufacturing you're focused on retail because we see the largest opportunities there that's where we have a strong customer base strong customer relationships and that's how we're doing it we don't want to have an infrastructure conversation we want to outcome and application conversation that's what every customer is talking about it's all about outcomes is there Jeff a favorite customer story in manufacturing or retail that you think really articulates the value of what Lumen and VMware are delivering together yeah it's a yeah we kind of use this one a lot but it's it's uh it's a really good one um and we've seen um uh clones of this and and other opportunities manufacturing smart manufacturing you need to have the equipment that takes that information again that data from all the iot devices analyze it operate your manufacturing facility because most of it's all automated now so you can run that facility at optimal production with that compute you don't necessarily want that compute you know a thousand miles away you want it as close as possible particularly if you look at what if there's a fiber cut your network goes down okay then your factory goes down that's millions of dollars so with that compute there we allow that smart manufacturing capabilities and that's running on Lumen private cloud based upon VMware on vcloud foundation and it's working great and it's it's an opportunity for us to continue to expand I've seen similar use cases in logistics it's yeah I mean it's phenomenal what we can do when you're in conversations with prospects what's the why what's the pitch that you give them about why they should be working with Lumen to help them really maximize the value of their Edge Solutions it's really the resources we bring to bear like you know we we keep talking a lot about Network and uh trying to get away from the sniper that's my cousin the network is is key to the value proposition but it's not what people look at first but it's those other resources the ability to to manage I.T infrastructure which have been doing for decades a lot of people don't know that but we've been doing this a very long time and then with those areas of expertise managed Services it's providing that all together and with lumen's history the Partnerships we have I mean we have a lot of Partnerships so we have the ability to bring all these resources to provide the best solution for the customer and we like to use the term best execution venue so each application has an optimal place to live and we'll help help customers find that out and it's really I mean it's that simple we just need to sit down and have a conversation we can figure out where we can help you and we can get started as soon as the customer is ready so obviously some some changes coming up for VMware in the next few months or so what are you excited about as you continue this long-standing partnership and evolving it forward I'm most excited about us working together even more because we have not only do we have our private Cloud products uh we're leveraging them for kubernetes but also our sassy product we're partnered with VMware on that so we're really tight at the hip with these Cutting Edge Products that we're taking to Market to help customers solve those problems that we were just talking about so I'm just looking forward us coming together more and just getting out there and helping people threatening of the partnership excellent Jeff thank you for joining Dave and me on the program talking about what's going on with Lumen how you're enabling the fourth Industrial Revolution enabling customers to really become data companies we appreciate your time on your insights thank you for Jeff saraki and Dave Nicholson I'm Lisa Martin you're watching thecube live from VMware Explorer 2022. you're watching thecube the leader in Live tech coverage [Music]

[Music] okay we're back my name is dave vellante and this is thecube's coverage of aws storage day you know coming off of reinforce i wrote that the cloud was a new layer of defense in fact the first line of defense in a cyber security strategy that brings new thinking and models for protecting data data protection specifically traditionally thought of as backup and recovery it's become a critical adjacency to security and a component of a comprehensive cyber security strategy we're here in our studios outside of boston with two cube alums and we're going to discuss this and other topics wayne dusso is the vice president for aws storage edge and data services and nancy wong as general manager of aws backup and data protection services guys welcome great to see you again thanks for coming on of course always a pleasure dave good to see you dave all right so wayne let's talk about how organizations should be thinking about this term data protection it's an expanding definition isn't it it is an expanded definition dave last year we talked about uh data and the importance of data to companies every company um is becoming a data company uh you know the amount of data they generate uh the amount of data they can use to uh create models to do predictive analytics and frankly uh to find ways of innovating uh is is growing uh rapidly and you know there's this tension between access to all that data right getting the value out of that data and how do you secure that data and so this is something we think about with customers all the time so data durability data protection data resiliency and you know trust in their data if you think about running your organization on your data trust in your data is so important so you know you got to trust where you're putting your data you know people who are putting their data on a platform need to trust that platform will in fact ensure its durability security resiliency and you know we see ourselves uh aws as a partner uh in securing their data making their data they're built durable making their data resilient all right so some of that responsibility is on us some of that is on amazon responsibility around data protection data resiliency and you know um we think about forever you know the notion of um you know compromise of your infrastructure but more and more people think about the compromise of their data as data becomes more valuable in fact data is a company's most valuable asset we've talked about this before only second to their people you know the people who are the most valuable asset but right next to that is their data so really important stuff so nancy you talk to a lot of customers but by the way it always comes back to the data we've been saying this for years haven't we so you've got this expanding definition of data protection you know governance is in there you think about access etc when you talk to customers what are you hearing from them how are they thinking about data protection yeah so a lot of the customers that wayne and i have spoken to often come to us seeking thought leadership about you know how do i solve this data challenge how do i solve this data sprawl challenge but also more importantly tying it back to data protection and data resiliency is how do i make sure that data is secure that it's protected against let's say ransomware events right and continuously protected so there's a lot of mental frameworks that come to mind and a very popular one that comes up in quite a few conversations is in this cyber security framework right and from a data protection perspective it's just as important to protect and recover your data as it is to be able to detect different events or be able to respond to those events right so recently i was just having a conversation with a regulatory body of financial institutions in europe where we're designing a architecture that could help them make their data immutable but also continuously protected so taking a step back that's really where i see aws's role in that we provide a wide breadth of primitives to help customers build secure platforms and scaffolding so that they can focus on building the data protection the data governance controls and guardrails on top of that platform and that's always been aws philosophy make sure that developers have access to those primitives and apis so that they can move fast and essentially build their own if that that's in fact what they want to do and as you're saying when data protection is now this adjacency to cyber security but there's disaster recoveries in there business continuance cyber resilience etc so so maybe you could pick up on that and sort of extend how you see aws helping customers build out those resilient services yeah so you know two uh core pillars to a data protection strategy is around their data durability which is really an infrastructural element you know it's it's it's by and large the responsibility of the provided that infrastructure to make sure that data is durable because if it's not durable and everything else doesn't matter um and the second pillar is really about data resiliency so in terms of security controls and governance like these are really important but these are a shared responsibility like the customers working with us with the services that we provide are there to architect the design it's really human factors and design factors that get them resiliency nancy anything you would add to what wayne just said yeah absolutely so customers tell us that they want always on data resiliency and data durability right so oftentimes in those conversations three common themes come up which is they want a centralized solution they want to be able to transcribe their intent into what they end up doing with their data and number three they want something that's policy driven because once you centralize your policies it's much better and easier to establish control and governance at an organizational level so keeping that in mind with policy as our interface there's two managed aws solutions that i recommend you all check out in terms of data resiliency and data durability those are aws backup which is our centralized solution for managing protection recovery and also provides an audit audit capability of how you protect your data across 15 different aws services as well as on-premises vmware and for customers whose mission-critical data is contained entirely on disk we also offer aws elastic disaster recovery services especially for customers who want to fail over their workloads from on-premises to the cloud so you can essentially centralize as a quick follow-up centralize the policy and as you said the intent but you can support a federated data model because you're building out this massive you know global system but you can take that policy and essentially bring it anywhere on the aws cloud is that right exactly and actually one powerful integration i want to touch upon is that aws backup is natively integrated with aws organizations which is our de facto multi-account federated organization model for how aws services work with customers both in the cloud on the edge at the edge and on premises so that's really important because as we talk about all the time on the cube this notion of a decentralized data architecture data mesh but the problem is how do you ensure governance in a federated model so we're clearly moving in that direction when i want to ask you about cyber as a board level discussion years ago i interviewed dr robert gates you know former defense secretary and he sat on a number of boards and i asked him you know how important and prominent is security at the board level is it really a board level discussion he said absolutely every time we meet we talk about cyber security but not every company at the time this was kind of early last decade was doing that that's changed um now ransomware is front and center hear about it all the time what's aws what's your thinking on cyber as a board level discussion and specifically what are you guys doing around ransomware yeah so you know malware in general ransomware being a particular type of malware um it's a hot topic and it continues to be a hot topic and whether at the board level the c-suite level um i had a chance to listen to uh dr gates a couple months ago and uh it was super motivational um but we think about ransomware in the same way that our customers do right because all of us are subject to an incident nobody is uh uh immune to a ransomware incident so we think very much the same way and as nancy said along the lines of the nist framework we really think about you know how do customers identify their critical access how do they plan for protecting those assets right how do they make sure that they are in fact protected and if they do detect a ransomware event and ransomware events come from a lot of different places like there's not one signature there's not one thumb print if you would for ransomware so it's it's there's really a lot of vigilance uh that needs to be put in place but a lot of planning that needs to be put in place and once that's detected and a we have to recover you know we know that we have to take an action and recover having that plan in place making sure that your assets are fully protected and can be restored as you know ransomware is a insidious uh type of malware you know it sits in your system for a long time it figures out what's going on including your backup policies your protection policies and figures out how to get around those with some of the things that nancy talked about in terms of air gapping your capabilities being able to if you would scan your secondary your backup storage for malware knowing that it's a good copy and then being able to restore from that known good copy in the event of an incident is critical so we think about this for ourselves in the same way that we think about these for our customers you've got to have a great plan you've got to have great protection and you've got to be ready to restore in the case of an incident and we want to make sure we provide all the capabilities to do that yeah so i'm glad you mentioned air gapping so at the recent reinforce i think it was kurt kufeld was speaking about ransomware and he didn't specifically mention air gapping i had to leave so i might i might have missed it because i'm doing the cube but that's a that's a key aspect i'm sure there were things in the on the deep dives that addressed air gapping but nancy look aws has the skills it has the resources you know necessary to apply all these best practices and you know share those as customers but but what specific investments is aws making to make the cso's life easier maybe you could talk about that sure so following on to your point about the reinforced keynote dave right cj moses talked about how the events of a ransomware for example incident or event can take place right on stage where you go from detect to respond and to recover and specifically on the recover piece he mentioned aws backup the managed service that protects across 15 different aws services as well as on-premises vmware as automated recovery and that's in part why we've decided to continue that investment and deliver aws backup audit manager which helps customers actually prove their posture against how their protection policies are actually mapping back to their organizational controls based on for example how they tag their data for mission criticality or how sensitive that data is right and so turning to best practices especially for ransomware events since this is very top of mind for a lot of customers these days is i will always try to encourage customers to go through game day simulations for example identifying which are those most critical applications in their environment that they need up and running for their business to function properly for example and actually going through the recovery plan and making sure that their staff is well trained or that they're able to go through for example a security orchestration automation recovery solution to make sure that all of their mission critical applications are back up and running in case of a ransomware event yeah so i love the game date thing i mean we know well just in the history of it you couldn't even test things like disaster recovery be right because it was too dangerous with the cloud you can test these things safely and actually plan out develop a blueprint test your blueprint i love the the game day analogy yeah and actually one thing i love to add is you know we talked about air gapping i just want to kind of tie up that statement is you know one thing that's really interesting about the way that the aws cloud is architected is the identity access and management platform actually allows us to create identity constructs that air gap your data perimeter so that way when attackers for example are able to gain a foothold in your environment you're still able to air gap your most mission critical and also crown jewels from being infiltrated that's key yeah we've learned you know when paying the ransom is not a good strategy right because most of the time many times you don't even get your data back okay so we we're kind of data geeks here we love data um and we're passionate about it on the cube aws and you guys specifically are passionate about it so what excites you wayne you start and then nancy you bring us home what excites you about data and data protection and why you know we are data nerds uh so at the end of the day um you know there's there's expressions we use all the time but data is such a rich asset for all of us some of the greatest innovations that come out of aws comes out of our analysis of our own data like we collect a lot of data on our operations and some of our most critical features for our customers come out of our analysis that data so we are data nerds and we understand how businesses uh view their data because we view our data the same way so you know dave security really started in the data center it started with the enterprises and if we think about security often we talk about securing compute and securing network and you know if you if you secured your compute you secured your data generally but we've separated data from compute so that people can get the value from their data no matter how they want to use it and in doing that we have to make sure that their data is durable and it's resilient to any sort of incident event so this is really really important to us and what do i get excited about um you know again thinking back to this framework i know that we as thought leaders alongside our customers who also thought leaders in their space can provide them with the capabilities they need to protect their data to secure their data to make sure it's compliant and always always always durable you know it's funny you'd say it's not funny it's serious actually steven schmidt uh at reinforce he's the the chief security officer at amazon used to be the c c iso of aws he said that amazon sees quadrillions of data points a month that's 15 zeros okay so that's a lot of data nancy bring us home what's what excites you about data and data protection yeah so specifically and this is actually drawing from conversations that i had with multiple isv partners at aws reinforce is the ability to derive value from secondary data right because traditionally organizations have really seen that as a cost center right you're producing secondary data because most likely you're creating backups of your mission critical workloads but what if you're able to run analytics and insights and derive insights from that secondary data right then you're actually able to let aws do the undifferentiated heavy lifting of analyzing that secondary data as state so that way you as customers or isv partners can build value on the security layers above and that is how we see turning cost into value i love it you're taking the original premise of the cloud taking away the undifferentiated heavy lifting for you know deploying compute storage and networking now bringing up to the data level the analytics level so it continues the cloud continues to expand thank you for watching thecube's coverage of aws storage day 2022

[Music] okay we're back digging into trusted infrastructure with paris our godaddy he's a senior consultant for product marketing and storage at dell technologies parasite welcome to the cube good to see you great to be with you dave yeah coming from hyderabad awesome so i really appreciate you uh coming on the program let's start with talking about your point of view on what cyber security resilience means to to dell generally but storage specifically yeah so for something like storage you know we are talking about the data layer name and if you look at cyber security it's all about securing your data applications and infrastructure it has been a very mature field at the network and application layers and there are a lot of great technologies right from you know enabling zero trust uh advanced authentications uh identity management systems and so on and and in fact you know with the advent of you know the the use of artificial intelligence and machine learning really these detection tools for cyber securities have really evolved in the network and the application spaces so for storage what it means is how can you bring them to the data layer right how can you bring you know the principles of zero trust to the data layer how can you leverage artificial intelligence and machine learning to look at you know access patterns and make intelligent decisions about maybe an indicator of a compromise and identify them ahead of time just like you know how it's happening in other words of of applications and when it comes to cyber resilience it's it's basically a strategy which assumes that a threat is imminent and it's a good assumption with the severity and the frequency of the attacks that are happening and the question is how do we fortify the infrastructure in the switch infrastructure to withstand those attacks and have a plan a response plan where we can recover the data and make sure the business continuity is not affected so that's uh really cyber security and cyber resiliency and storage layer and of course there are technologies like you know um in network isolation um immutability and all these principles need to be applied at the storage level as well let me have a follow up on that if i may the intelligence that you talked about that ai and machine learning is that do you do you build that into the infrastructure or is that sort of a separate software module that that points at various you know infrastructure components how does that work both dave um right at the data storage level um we have come with various data characteristics depending on the nature of data we developed a lot of signals to see what could be a good indicator of a compromise um and there are also additional applications like cloud iq is the best example which is like an infrastructure-wide health monitoring system for dell infrastructure and now we have elevated that to include cyber security as well so these signals are being gathered at cloud iq level and other applications as well so that we can make those decisions about compromise and we can either cascade that intelligence and alert stream upstream for uh security teams um so that they can take actions in platforms like sign systems xtr systems and so on but when it comes to which layer the intelligence is it has to be at every layer where it makes sense where we have the information to make a decision and being closest to the data we have we are basically monitoring you know the various parallels data access who is accessing um are they crossing across any geo fencing is there any mass deletion that is happening or mass encryption that is happening and we are able to uh detect uh those uh patterns and flag them as indicators of compromise and in allowing automated response manual control and so on for iot teams yeah thank you for that explanation so at dell technologies world we were there in may it was one of the first you know live shows that that we did in the spring certainly one of the largest and i interviewed shannon champion and my huge takeaway from the storage side was the degree to which you guys uh emphasized security uh within the operating systems i mean really i mean powermax more than half i think of the features were security related but also the rest of the portfolio so can you talk about the the security aspects of the dell storage portfolio specifically yeah yeah so when it comes to data security and broadly data availability right in the context of cyber resiliency um dell storage uh this you know these elements have been at the core of our um a core strength for the portfolio and a source of differentiation for the storage portfolio you know with almost decades of collective experience of building highly resilient architectures for mission critical data something like power max system which is the most secure storage platform for high-end enterprises um and now with the increased focus on cyber security we are extending those core technologies of high availability and adding modern detection systems modern data isolation techniques to offer a comprehensive solution to the customer so that they don't have to piece together multiple things to ensure data security or data resiliency but a well-designed and well-architected solution by design is delivered to them to ensure cyber protection at the data layer got it um you know we were talking earlier to steve kenniston and pete gear about this notion of dell trusted infrastructure how does storage fit into that as a component of that sort of overall you know theme yeah and you know and let me say this if you could address because a lot of people might be skeptical that i can actually have security and at the same time not constrict my organizational agility that's old you know not an ore it's an end how do you actually do that if you could address both of those that would be great definitely so for dell trusted infrastructure cyber resiliency is a key component of that and just as i mentioned you know uh air gap isolation it really started with you know power protect cyber recovery you know that was the solution more than three years ago we launched and that was first in the industry which paved way to you know kind of data isolation being a core element of data management and uh for data infrastructure and since then we have implemented these technologies within different storage platforms as well so that customers have the flexibility depending on their data landscape they can approach they can do the right data isolation architecture right either natively from the storage platform or consolidate things into the backup platform and isolate from there and and the other key thing we focus in trusted infrastructure dell infra dell trusted infrastructure is you know the goal of simplifying security for the customers so one good example here is uh you know being able to respond to these cyber threats or indicators of compromise is one thing but an i.t security team may not be looking at the dashboard of the storage systems constantly right storage administration admins may be looking at it so how can we build this intelligence and provide this upstream platforms so that they have a single pane of glass to understand security landscape across applications across networks firewalls as well as storage infrastructure and and compute infrastructure so that's one of the key ways where how we are helping simplify the um kind of the ability to uh respond ability to detect and respond these threads uh in real time for security teams and you mentioned you know about zero trust and how it's a balance of you know not uh kind of restricting users or put heavy burden on you know multi-factor authentication and so on and this really starts with you know what we are doing is provide all the tools you know when it comes to advanced authentication uh supporting external identity management systems multi-factor authentication encryption all these things are intrinsically built into these platforms now the question is the customers are actually one of the key steps is to identify uh what are the most critical parts of their business or what are the applications uh that the most critical uh business operations depend on and similarly identify uh mission critical data where part of your response plan where it cannot be compromised where you need to have a way to recover once you do this identification then the level of security can be really determined uh by uh by the security teams by the infrastructure teams and you know another you know intelligence that gives a lot of flexibility uh for for even developers to do this is today we have apis um that so you can not only track these alerts at the data infrastructure level but you can use our apis to take concrete actions like blocking a certain user or increasing the level of authentication based on the threat level that has been perceived at the application layer or at the network layer so there is a lot of flexibility that is built into this by design so that depending on the criticality of the data criticality of the application number of users affected these decisions have to be made from time to time and it's as you mentioned it's it's a balance right and sometimes you know if if an organization had a recent attack you know the level of awareness is very high uh against cyber attacks so for a time you know these these settings may be a bit difficult to deal with but then it's a decision that has to be made by security teams as well got it so you're surfacing what may be hidden kpis that are buried inside for instance the storage system through apis upstream into a dashboard so that somebody could you know dig into the storage tunnel extract that data and then somehow you know populate that dashboard you're saying you're automating that that that workflow that's a great example and you may have others but is that the correct understanding absolutely and it's a two-way integration let's say a detector an attack has been detected at a completely different layer right in the application layer or at a firewall we can respond to those as well so it's a two-way integration we can cascade things up as well as uh respond to uh threats that have been detected elsewhere um through the api that's great all right api for power scale is the best example for that uh excellent so thank you appreciate that give us the last word put a bow on this and and bring this segment home please absolutely so a dell storage portfolio um using advanced data isolation with air gap having machine learning based algorithms to detect uh indicators of compromise and having rigor mechanisms with granular snapshots being able to recover data and restore applications to maintain business continuity is what we deliver to customers uh and these are areas where a lot of innovation is happening a lot of product focus as well as you know if you look at the professional services all the way from engineering to professional services the way we build these systems the way we we configure and architect these systems uh cyber security and protection uh is a key focus uh for all these activities and dell.com securities is where you can learn a lot about these initiatives that's great thank you you know at the recent uh reinforce uh event in in boston we heard a lot uh from aws about you know detent and response and devops and machine learning and some really cool stuff we heard a little bit about ransomware but i'm glad you brought up air gaps because we heard virtually nothing in the keynotes about air gaps that's an example of where you know this the cso has to pick up from where the cloud leaves off that was in front and so number one and number two we didn't hear a ton about how the cloud is making the life of the cso simpler and that's really my takeaway is is in part anyway your job and companies like dell so paris i really appreciate the insights thank you for coming on thecube thank you very much dave it's always great to be in these uh conversations all right keep it right there we'll be right back with rob emsley to talk about data protection strategies and what's in the dell portfolio you're watching the cube [Music] you

[Music] welcome to the great super cloud debate a power panel of three top technology industry analysts maribel lopez is here she's the founder and principal analyst at lopez research keith townsend is ceo and founder of the cto advisor and sanjeev mohan is principal at sanjmo super cloud is a term that we've used to describe the future of cloud architectures the idea is that super clouds are built on top of hyperscaler capex infrastructure and the idea is it goes beyond multi-cloud the premise being that multi-cloud is primarily a symptom of multi-vendor or m a or both and results in more stove we're going to talk about that super cloud's meant to connote a new architecture that leverages the underlying primitives of hyperscale clouds but hides and abstracts that complexity of each of their respective clouds and adds new value on top of that with services and a continuous experience a similar or identical experience across more than one cloud people may say hey that's multi-cloud we're going to talk about that as well so with that as brief background um i'd like to first welcome our painless guys thanks so much for coming on thecube it's great to see you all again great to be here thank you to be here so i'm going to start with maribel you know what i just described what's your reaction to that is it just like what like cloud is supposed to be is that really what multi-cloud is do you agree with the premise that multi-cloud has really been you know what like chuck whitten from dell calls it it's been multi-cloud by default i call it a symptom of multi-vendor what's your take on on what this is oh wow dave another term here we go right more more to define for people but okay the reality is i agree that it's time for something new something evolved right whether we call that super cloud or something else i you know i don't want to really debate the term but we need to move beyond where we are today in multi-cloud and into if we want to call it cloud 5 multi-cloud 2 whatever we want to call it i believe that we're at the next generation that we have to define what that next generation is but if you think about it we went from public to private to hybrid to multi and every time you have a discussion with somebody about cloud you spend 10 minutes defining what you're talking about so this doesn't seem any different to me so let's just go with super cloud for the moment and see where we go and you know if you're interested after everybody else makes their comments i got a few thoughts about what super cloud might mean as well yeah great so i and i agree with you when we like i said in a recent post you could call it cl cloud you know multi-cloud 2.0 but it's something different is happening and sanjeev i know you're not a you're not a big fan of buzz words either but i wonder if you could weigh in on this topic uh you mean by the way sanjeev is at the mit cdo iq conference a great conference uh in boston uh and so he's it's a public place so we're going to have i think you viewed his line when he's not speaking please go ahead yeah so you know i come from a pedigree of uh being an analyst of uh firms that love inventing new terms i am not a big fan of inventing new terms i feel that when we come up with a new term i spend all my time standing on a stage trying to define what it is it takes me away from trying to solve the problem so so i'm you know i find these terms to be uh words of convenience like for example big data you know big data to me may not mean anything but big data connotes some of this modern way of handling vast volumes of data that traditional systems could not handle so from that point of view i'm i'm completely okay with super cloud but just inventing a new term is what i have called in my previous sessions tyranny of jargons where we have just too many jargons and uh and they resonate with i.t people they do not resonate with the business people business people care about the problem they don't care about what we and i t called them yeah and i think this is a really important point that you make and by the way we're not trying to create a new industry category per se yeah we leave that to gartner that's why actually i like super cloud because nobody's going to use that no vendor's going to use the term super cloud it's just too buzzy so so but but but it brings up the point about practitioners and so keith i want to bring you in so the what we've talked about and i'll just sort of share some some thoughts on the problems that we see and and get keith get your practitioner view most clouds most companies use multiple clouds we all kind of agree on that i think and largely these clouds operate in silos and they have their own development environment their own operating environment different apis different primitives and the functionality of a particular cloud doesn't necessarily extend to other clouds so the problem is that increases friction for customers increases cost increases security risk and so there's this promise maribel multi-cloud 2.0 that's going to solve that problem so keith my question to you is is is that an accurate description of the problem that practitioners face today do what did i miss and i wonder if you could elaborate so i think we'll get into some of the detail later on why this is a problem specifically around technologies but if we think about it in the abstract most customers have their hands full dealing with one cloud like we'll you know through m a and such and you zoom in and you look at companies that have multiple clouds or multi-cloud from result of mma mna m a activity you'll see that most of that is in silos so organizationally the customer may have multiple clouds but sub orchid silos they're generally a single silo in a single cloud so as you think about being able to take advantage of of tooling across the multicloud of what dave you guys are calling the super cloud this becomes a serious problem it's just a skill problem it's too much capability uh across too many things that look completely different than another okay so dave can i pick up on that please i'd love i was gonna just go to you maribel please chime in here okay so if we think about what we're talking about with super cloud and what keith just mentioned remember when we went to see tcp ip and the whole idea was like how do we get computers to talk to each other in a more standardized way how do we get data to move in a more standardized way i think that the problem we have with multi-cloud right now is that we don't have that so i think that's sort of a ground level of getting us to your super cloud premise is that and and you know google's tried it with anthony's like everybody every hyperscaler has tried their like right one to run anywhere but that abstraction layer you talk about what whatever we want to call it is super necessary and it's sort of the foundation so if you really think about it we've spent like 15 years or so building out all the various components of cloud and now's the time to take it so that cloud is actually more of an operating model versus a place there's at least a base level of it that is vendor neutral and then to your point the value that's going to be built on top of that you know people been trying to commoditize the basic infrastructure for a while now and i think that's what you're seeing in your super cloud multi-cloud whatever you want to call it the infrastructure is the infrastructure and then what would have been traditionally that past layer and above is where we're going to start to see some real innovation but we still haven't gotten to that point where you can do visibility observability manageability across that really complex cloud stack that we have the reason i the reason i love that tcpip example hm is because it changed the industry and it had an ecosystem effect in sanjiv the the the example that i first example that i used was snowflake a company that you're very familiar with that is sort of hiding all that complexity and right and so we're not there yet but please chime in on this topic uh you gotta you gotta view it again uh after you building upon what maribel said you know to me uh this sounds like a multi-cloud operating system where uh you know you need that kind of a common uh set of primitives and layers because if you go in in the typical multi-cloud process you've got multiple identities and you can't have that you how can you govern if i'm if i have multiple identities i don't have observability i don't know what's going on across my different stacks so to me super cloud is that call it single pane of glass or or one way through which i'm unifying my experience my my technology interfaces my integration and uh and i as an end user don't even care which uh which cloud i'm in it makes no difference to me it makes a difference to the vendor the vendor may say this is coming from aws and this is coming from gcp or azure but to the end user it is a consistent experience with consistent id and and observability and governance so that to me makes it a big difference and so one of floyer's contribution conversation was in order to have a super cloud you got to have a super pass i'm like oh boy people are going to love that but the point being that that allows a consistent developer experience and to maribel's earlier point about tcp it explodes the ecosystem because the ecosystem can now write to that super pass if you will those apis so keith do you do do you buy that number one and number two do you see that industries financial services and healthcare are actually going to be on clouds or what we call super clouds so sanjeev hit on a really key aspect of this is identity let's make this real they you love talk about data collaboration i love senji's point on the business user kind of doesn't care if this is aws versus super cloud versus etc i was collaborating with the client and he wanted to send video file and the video file uh his organization's access control policy didn't allow him to upload or share the file from their preferred platform so he had to go out to another cloud provider and create yet another identity for that data on the cloud same data different identity a proper super cloud will enable me to simply say as a end user here's a set of data or data sets and i want to share a collaboration a collaborator and that requires cross identity across multiple clouds so even before we get to the past layer and the apis we have to solve the most basic problem which is data how do we stop data scientists from shipping snowballs to a location because we can't figure out the identity the we're duplicating the same data within the same cloud because we can't share identity across customer accounts or etc we we have to solve these basic thoughts before we get to supercloud otherwise we get to us a turtles all the way down thing so we'll get into snowflake and what snowflake can do but that's what happens when i want to share my snowflake data across multiple clouds to a different platform yeah you have to go inside the snowflake cloud which leads right so i would say to keith's question sanjeev snowflake i think is solving that problem but then he brings up the other problem which is what if i want to share share data outside the snowflake cloud so that gets to the point of visit open is it closed and so sanji chime in on the sort of snowflake example and in maribel i wonder if there are networking examples because that's that's keith's saying you got to fix the plumbing before you get these higher level abstractions but sanji first yeah so i so i actually want to go and talk a little bit about network but from a data and analytics point of view so i never built upon what what keith said so i i want to give an example let's say i am getting fantastic web logs i and i know who uh uh how much time they're spending on my web pages and which pages they're looking at so i have all of that now all of that is going into cloud a now it turns out that i use google analytics or maybe i use adobe's you know analytics uh suite now that is giving me the business view and i'm trying to do customer journey analytics and guess what i now have two separate identities two separate products two separate clouds if i and i as an id person no problem i can solve any problem by writing tons of code but why would i do that if i can have that super pass or a multi-cloud layout where i've got like a single way of looking at my network traffic my customer metrics and i can do my customer journey analytics it solves a huge problem and then i can share that data with my with my partners so they can see data about their products which is a combination of data from different uh clouds great thank you uh maribel please i think we're having a lord of the rings moment here with the run one room to rule them all concept and i'm not sure that anybody's actually incented to do that right so i think there's two levels of the stack i think in the basic we're talking a lot about we don't have the basic fundamentals of how do you move data authenticate data secure data do data lineage all that stuff across different clouds right we haven't even spoken right now i feel like we're really just talking about the public cloud venue and we haven't even pulled in the fact that people are doing hybrid cloud right so hybrid cloud you know then you're talking about you've got hardware vendors and you've got hyperscaler vendors and there's two or three different ways of doing things so i honestly think that something will emerge like if we think about where we are in technology today it's almost like we need back to that operating system that sanji was talking about like we need a next generation operating system like nobody wants to build the cloud mouse driver of the 21st century over and over again right we need something like that as a foundation layer but then on top of it you know there's obviously a lot of opportunity to build differentiation like when i think back on what happened with cloud amazon remained aws remained very powerful and popular because people invested in building things on amazon right they created a platform and it took a while for anybody else to catch up to that or to have that kind of presence and i still feel that way when i talk to companies but having said that i talked to retail the other day and they were like hey we spent a long time building an abstraction layer on top of the clouds so that our developers could basically write once and run anywhere but they were a massive global presence retailer that's not something that everybody can do so i think that we are still missing a gap i don't know if that exactly answers your question but i i do feel like we're kind of in this chicken and egg thing which comes first and nobody wants to necessarily invest in like oh well you know amazon has built a way to do this so we're all just going to do it the amazon way right it seems like that's not going to work either but i think you bring up a really important point which there is going to be no one ring to rule them all you're going to have you know vmware is going to solve its multi-cloud problem snowflake's going to do a very has a very specific you know purpose-built system for it itself databricks is going to do its thing and it's going to be you know more open source i would companies like aviatrix i would say cisco even is going to go out and solve this problem dell showed at uh at dell tech world a thing called uh project alpine which is basically storage across clouds they're going to be many super clouds we're going to get maybe super cloud stove pipes but but the point is however for a specific problem in a set of use cases they will be addressing those and solving incremental value so keith maybe we won't have that single cloud operating you know system but we'll have multiple ones what are your thoughts on that yeah we're definitely going to have multiple ones uh the there is no um there is no community large enough or influential enough to push a design take maribel's example of the mega retailer they've solved it but they're not going to that's that's competitive that's their competitive advantage they're not going to share that with the rest of us and open source that and force that upon the industry via just agreement from everyone else so we're not going to get uh the level of collaboration either originated by the cloud provider originated from user groups that solves this problem big for us we will get silos in which this problem is solved we'll get groups working together inside of maybe uh industry or subgroups within the industry to say that hey we're going to share or federate identity across our three or four or five or a dozen organizations we'll be able to share data we're going to solve that data problem but in the same individual organizations in another part of the super cloud problem are going to again just be silos i can't uh i can't run machine learning against my web assets for the community group that i run because that's not part of the working group that solved a different data science problem so yes we're going to have these uh bifurcations and forks within the super cloud the question is where is the focus for each individual organization where do i point my smart people and what problems they solve okay i want to throw out a premise and get you guys reaction to it because i think this again i go back to the maribel's tcpip example it changed the industry it opened up an ecosystem and to me this is what digital transformation is all about you've got now industry participants marc andreessen says every company is a software company you've now got industry participants and here's some examples it's not i wouldn't call them true super clouds yet but walmart's doing their hybrid thing with azure you got goldman sachs announced at the last reinvent and it's going to take its tools its software its data and which is on-prem and connect that to the aws cloud and actually deliver a service capital one we saw sanjiv at the snowflake summit is is taking their tooling and doing it now granted just within snowflake and aws but i fully expect them to expand that across other clouds these are industry examples capital one software is the name of the division that are now it's to the re reason why i don't get so worried that we're not solving the lord of the rings problem that maribel mentioned is because it opens up tremendous opportunities for companies we got like just under five minutes left i want to throw that out there and see what you guys think yeah i would just i want to build upon what maribel said i love what she said you're not going to build a mouse driver so if multi-cloud supercloud is a multi-cloud os the mouse driver would be identity or maybe it's data quality and to teach point that data quality is not going to come from a single vendor that is going to come from a different vendor whose job is to to harmonize data because there might be data might be for the same identity but it may be a different granularity level so you cannot just mix and match so you need to have some sort of like resolution and that is is an example of a driver for multi-cloud interesting okay so you know octa might be the identity cloud or z scaler might be the security cloud or calibre has its cloud etc any thoughts on that keith or maribel yeah so let's talk about where the practical challenges run into this we did some really great research that was sponsored by one of the large cloud providers in which we took all we looked at all the vmware cloud solutions when i say vmware cloud vmware has a lot of products across multi-cloud now in the rock broadcloud portfolio but we're talking about the og solution vmware vsphere it would seem like on paper if i put vmware vsphere in each cloud that is therefore a super cloud i think we would all agree to that in principle what we found in our research was that when we put hands on keyboard the differences of the clouds show themselves in the training gap and that skills gap between the clouds show themselves if i needed to expose less our favorite friend a friend a tc pip address to the public internet that is a different process on each one of the clouds that needs to be done on each one of the clouds and not abstracted in vmware vsphere so as we look at the nuance yes we can give the big controls but where the capital ones the uh jp morgan chase just spent two billion dollars on this type of capability where the spin effort is done is taking it from that 80 percent to that 90 95 experience and that's where the effort and money is spent on that last mile maribel we're out of time but please you know bring us home give us your closing thoughts hey i think we're still going to be working on what the multi-cloud thing is for a while and you know super cloud i think is a direction of the future of cloud computing but we got some real problems to solve around authentication uh identity data lineage data security so i think those are going to be sort of the tactical things that we're working on for the next couple years right guys always a pleasure having you on the cube i hope we see you around keith i understand you're you're bringing your airstream to vmworld or vmware explorer putting it on the on the floor i can't wait to see that and uh mrs cto advisor i'm sure we'll be uh by your side so looking forward to that hopefully sanjeev and maribel we'll see you uh on the circuit as well yes hope to see you there right looking forward to hopefully even doing some content with you guys at vmware explorer too awesome looking forward all right keep it right there for more content from super cloud 22 right back [Music] you

welcome back to the cube's presentation of the aws executive summit at re invent 2021 made possible by accenture my name is dave vellante we're going to look at how digital infrastructure is helping to transform consumer experiences specifically how an insurance company is changing its industry by incentivizing and rewarding consumers who change their behavior to live healthier lives a real passion of of mine and getting to the really root cause of health with me now are simon guest who's the chief executive officer of generality vitality gmbh and niels mueller who's the managing director at the cloud first application engineering lead for the european market at accenture gentlemen welcome to the cube thanks for having us you're very welcome simon generally vitality it's a really interesting concept that you guys have envisioned and now put into practice tell us how does it all work sure no problem and thanks for for having us on dave it's a pleasure to be here so look uh generally vitality is in its uh it's core pretty simple concepts so it's uh it's a program that you have on your phone and the idea of this program is that it's a it's a wellness coach for you as an individual and it's going to help you to understand your health and where you are in terms of the state of your health at the moment and it's going to take you on a journey to improve your your lifestyle and your wellness and hopefully help you to lead a healthier and a more sort of mindful life i guess is is the best way of summarizing it from um from our point of view with insurance company of course you know our historical role has always been to uh be the company that's there if something goes wrong you know so if unfortunately you pass away or you have sickness in your in your life or in your family's life that's that's historically been our role but what we see with generality vitality is something a little bit different so it's a program that really is uh supposed to be with you every day of your life to help you to live a healthier life it's something that we already have in in four european markets in fact in five from this week i'm a little bit behind the time so we're live already in in germany in france in austria and italy and in spain and fundamentally what we what we do dave is too is to say to customers look if you want to understand your health if you want to improve it by moving a little bit more by visiting the doctor more by eating healthier by healthy choices on a daily basis we're going to help you to do that and we're going to incentivize you for going on this journey and making healthy choices and we're going to reward you for for doing the same so you know we partner up with with great companies like garmin like adidas like big brands that are let's say invested in this health and wellness space so that we can produce really an ecosystem for customers that's all about live well make good choices be healthy have an insurance company that partners you along that journey and if you do that we're going to reward you for for that so you know we're here not just in the difficult times which of course is one of our main roles but we're here as a partner as a lifetime partner to you too to help you feel better and live a better life i love it i mean it sounds so simple but but it's i'm sure it's very complicated to to make the technology simple for the user you've got mobile involved you've got the back end and we're going to get into some of the tech but first i want to understand the member engagement and some of the lifestyle changes simon that you've analyzed what's the feedback that you're getting from your customers what does the data tell you how do the incentives work as well what what is the incentive for the the member to actually do the right thing sure look i think actually the the covered uh situation that we've had in the last sort of two years has really crystallized the fact that this is something that we really ought to be doing and something that our customers really value so i mean look just to give you a bit of a sort of information about how it works for for customers so what we try to do with them is is to get customers to understand uh their current health situation you know using their phone so uh you know we ask our customers to go through a sort of health assessment around how they live what they eat how they sleep you know and to go through that sort of process uh and to give them what a vitality age which is a sort of uh you know sort of actuarial comparison with their real age so i'm i'm 45 but unfortunately my my vitality age is 49 and it means i have some work to do to bring that back together uh and what we see is that you know two-thirds of our customers take this test every year because they want to see how they are progressing on an annual basis in terms of living a healthier life and if what if what they are doing is having an impact on their life expectancy and their lifespan and their health span so how long are they going to live healthier for so you see them really engaging in this in this approach of understanding their current situation then what we know actually because the program is built around this model that uh really activity and moving and exercise is the biggest contributor to living a healthier life we know that the majority of deaths are caused by lifestyle illness is like you know poor nutrition and smoking and drinking alcohol and not exercising and so a lot of the program is really built around getting people to move more and it's not about being an athlete it's about you know getting off the the underground one station earlier walking home or making sure you do your 10 000 steps a day and what we see is that that sort of 40 of our customers are on a regularly basis linking either their phone or their their exercise device to our program and downloading that data so that they can see how how much they are exercising and at the same time what we do is we set we set our customers weekly challenges to say look if you can move a little bit more than last week we are going to to reward you for that and we see that you know almost half of our customers are achieving this weekly goal every week and it's really a fantastic level of engagement that normally is an insurer uh we don't see the way the rewards work is is pretty simple it's similar in a way to an airline program so every good choice you make every activity you do every piece of good food that you eat when you check your on your health situation we'll give you points and the more points you get you go through through a sort of status approach of starting off at the bottom status and ending up at a gold and then a platinum status and the the higher up you get in the status that the higher the value of the rewards that we give you so almost a quarter of our customers now and this is accelerated through provide they've reached that platinum status so they are the most engaged customers that we we have and those ones who are really engaging in the in the program and what we really try to create is this sort of virtuous circle that says if you live well you make good choices you improve your health you you progress through the program and we give you better and stronger and more uh valuable rewards for for doing that and some of those rewards are are around health and wellness so it might be that you get you get a discount on on gym gear from adidas it might be that you get a discount on a uh on a device from garmin or it might be actually on other things so we also give people amazon vouchers we also give people uh discounts on holidays and another thing that we we did actually in the last year which we found really powerful is that we've given the opportunity for our customers to convert those rewards into charitable donations because we we work in generality with a with a sort of um campaign called the human safety net which is helping out the poorest people in society and some what our customers do a lot of the time is instead of taking those financial rewards for themselves they convert it into a charitable donation so we're actually also thinking wellness and feeling good and insurance and some societal good so we're really trying to create a virtuous circle of uh of engagement with our customers i mean that's a powerful cocktail i love it you got the the data because if i see the data then i can change my behavior you got the gamification piece you actually have you know hard dollar rewards you could give those to charities and and you've got the the most important which is priceless can't put a value on good health i got one more question for simon and niels i'd love you to chime in as well on this question how did you guys decide simon to engage with accenture and aws and the cloud to build out this platform what's the story behind that collaboration was there unique value that you saw that that you wanted to tap that you feel like they bring to the table what was your experience yeah look i mean we worked at accenture as well because the the the sort of construct of this vitality proposition is a pretty a pretty complex one so you mentioned that the idea is simple but the the build is not so uh is not so simple and that that's the case so accenture's been part of that journey uh from the beginning they're one of the partners that we work with but specifically around the topic of rewards uh you know we're we're a primarily european focused organization but when you take those countries that i mentioned even though we're next to each other geographically we're quite diverse and what we wanted to create was really a sustainable and reusable and consistent customer experience that allowed us to go and get to market with an increasing amount of efficiency and and to do that we needed to work with somebody who understood our business has this historical let's say investment in in the vitality concept so so knows how to bring it to life but that what then could really support us in making uh what can be a complex piece of work as simple and as as replicable as possible across multiple markets because we don't want to go reinventing the wheel every time we do we move to a new market so we need to find a balance between having a consistent product a consistent technology offer a consistent customer experience with the fact that we we operate in quite diverse markets so this was let's say the the reason for more deeply engaging with accenture on this journey thank you very much niels why don't you comment on on that as well i'd love to to get your thoughts and and really really it's kind of your role here i mean accenture global si deep expertise in industry but also technology what are your thoughts on this topic yeah i'd love to love to comment so when we started the journey it was pretty clear from the outset that we would need to build this on cloud in order to get this scalability and this ability to roll out to different markets have a central solution that can act as a template for the different markets but then also have the opportunity to localize different languages different partners for the rewards there's different reward partners in the different markets so we needed to build in an asset basically that could work as a tempos centrally standardizing things but also leaving enough flexibility to to then localize in the individual markets and if we talk about some of the more specific requirements so one one thing that gave us headaches in the beginning was the authentication of the users because each of the markets has their own systems of record where the basically the authentication needs to happen and we somehow needed to still find a holistic solution that comes through the central platform and we were able to do that at the end through the aws cognito service sort of wrapping the individual markets uh local idp systems and by now we've even extended that solution to have a standalone cloud native kind of idp solution in place for markets that do not have a local idp solution in place or don't want to use it for for this purpose yeah so you had you had data you have you had the integration you've got local laws you mentioned the flexibility you're building ecosystems that are unique to the to the local uh both language and and cultures uh please you had another comment i interrupted you yeah i know i just wanted to expand basically on the on the requirements so that was the central one being able to roll this out in a standardized way across the markets but then there were further requirements for example like being able to operate that platform with very low operations overhead there is no large i.t team behind generally vitality that you know works to serve us or can can act as this itis backbone support so we needed to have basically a solution that runs itself that runs on autopilot and that was another big big driver for first of all going to cloud but second of all making specific choices within cloud so we specifically chose to build this as a cloud native solution using for example manage database services you know with automatic backup with automatic ability to restore data that scales automatically that you know has all this built in which usually maybe a database administrator would take care of and we applied that concept basically to every component to everything we looked at we we applied this requirement of how can this run on autopilot how can we make this as much managed by itself within the cloud as possible and then land it on these services and for example we also used the the api gateway from from aws for our api services that also came in handy when for example we had some response time issues with the third party we needed to call and then we could just with a flick of a button basically introduce caching on the level of the api gateway and really improve the user experience because the data you know wasn't updated so much so it was easier to cache so these are all experiences i think that that proved in the end that we made the right choices here and the requirements that that drove that to to have a good user experience niels would you say that the architecture is is a sort of a data architecture specifically is it a decentralized data architecture with sort of federated you know centralized governance or is it more of a centralized view what if you could talk about that yeah it's it's actually a centralized platform basically so the core product is the same for all the markets and we run them as different tenants basically on top of that infrastructure so the data is separated in a way obviously by the different tenants but it's in a central place and we can analyze it in a central fashion if if the need arises from from the business and the reason i ask that simon is because essentially i look at this as a as largely a data offering for your customers and so niels you were talking about the local language and simon as well i would imagine that that the local business lines have specific requirements and specific data requirements and so you've got to build an architecture that is flexible enough to meet those needs yet at the same time can ensure data quality and governance and security that's not a trivial challenge i wonder if you both could comment on that yeah maybe maybe i'll give a start and then simon can chime in so um what we're specifically doing is managing the rewards experience right so so our solution will take care of tracking what rewards have been earned for what customer what rewards have been redeemed what rewards can be unlocked on the next level and we we foreshadow a little bit to to motivate to incentivize the customer and as that data sits in an aws database in a tenant by tenant fashion and you can run analysis on top of that maybe what you're getting into is also the let's say the exercise data the fitness device tracking data that is not specifically part of what my team has built but i'm sure simon can comment a little bit on that angle as well yeah please yeah sure sure yeah sure so look i think them the topic of data and how we use it uh in our business is a very is very interesting one because it's um it's not historically being seen let's say as the remit of insurers to go beyond the you know the the data that you need to underwrite policies or process claims or whatever it might be but actually we see that this is a whole point around being able to create some shared value in in this kind of product and and what i mean by that is uh look if you are a customer and you're buying an insurance policy it might be a life insurance or health insurance policy from from generali and we are giving you access to this uh to this program and through that program you are living a healthier life and that might have a you know a positive impact on generali in terms of you know maybe we're going to increase our market share or maybe we're going to lower claims or we're going to generate value out of that then one of the points of this program is that we then share that value back with customers through the rewards on the platform that we that we've built here and of course being able to understand that data and to quantify it and to value that data is an important part of the of the the different stages of how you of how much value you are creating and it's also interesting to know that you know in a couple of our markets we we operate in the corporate space so not with retail customers but with with organizations and one of the reasons that those companies give vitality to their employees is that they want to see things like the improved health of a workforce they want to see higher presenteeism lower absenteeism of employees and of course being able to demonstrate that there's a sort of correlation between participation in the vitality program and things like that is also is also important and as we've said the markets are very different so we need to be able to to take the data uh that we have out of the vitality program uh and be able in in the company that that i'm managing to to interpret that data so that in our insurance businesses we are able to make good decisions about the kind of insurance products we i think what's interesting to uh to make clear is that actually that the kind of health data that we generate stays purely within the vitality business itself and what we do inside the vitality business is to analyze that data and say okay is this is this also helping our insurance businesses to to drive uh yeah you know better top line and bottom line in the in the relevant business lines and this is different per company and per mark so yeah being able to interrogate that data understand it apply it in different markets and different uh distribution systems and different kinds of approaches to insurance is an is an important one yes it's an excellent example of a digital business in in you know we talk about digital transformation what does that mean this is what it means i i'd love i mean it must be really interesting board discussions because you're transforming an industry you're lowering overall cost i mean if people are getting less sick that's more profit for your company and you can choose to invest that in new products you can give back some to your corporate clients you can play that balancing act you can gain market share and and you've got some knobs to turn some levers uh for your stakeholders which is which is awesome neil something that i'm interested in i mean it must have been really important for you to figure out how to determine and measure success i mean you're obviously removed it's up it's up to generality vitality to get adoption for for their customers but at the same time the efficacy of your solution is going to determine you know the ease of of of delivery and consumption so so how did you map to the specific goals what were some of the key kpis in terms of mapping to their you know aggressive goals besides the things we already touched on i think one thing i would mention is the timeline right so we we started the team ramping in january or february and then within six months basically we had the solution built and then we went through a extensive test phase and within the next six months we had the product rolled out to three markets so this speed to value speed to market that we were able to achieve i think is one of the key um key criteria that also simon and team gave to us right there was a timeline and that timeline was not going to move so we needed to make a plan adjust to that timeline and i think it's both a testament to to the team's work that they did that we made this timeline but it also is enabled by technologies like cloud i have to say if i go back five years ten years if if you had to build in a solution like this on a corporate data center across so many different markets and each managed locally there would have been no way to do this in 12 months right that's for sure yeah i mean simon you're a technology company i mean insurance has always been a tech heavy company but but as niels just mentioned if you had to do that with it departments in each region so my question is is now you've got this it's almost like non-recurring engineering costs you've got that it took one year to actually get the first one done how fast are you able to launch into new markets just from a technology perspective not withstanding any you know local regulations and figuring out to go to market is that compressed yeah so if you are specifically technology-wise i think we would be able to set up a new market including localizations that often involves translation of because in europe you have all the different languages and so on at i would say four to six weeks we probably could stand up a localized solution in reality it takes more like six to nine months to get it rolled out because there's many other things involved obviously but just our piece of the solution we can pretty quickly localize it to a new market but but simon that means that you can spend time on those other factors you don't have to really worry so much about the technology and so you've launched in multiple european markets what do you see for the future of this program come to america you know you can fight you can find that this program in america dave but with one of our competitors we're not we're not operating so much in uh but you can find it if you want to become a customer for sure but yes you're right so look i think from from our perspective uh you know to put this kind of business into a new market it's not it's not an easy thing because what we're doing is not offering it just as a as a service on a standalone basis to customers we want to link it with with insurance business in the end we are an insurance business and we want to to see the value that comes from that so there's you know there's a lot of effort that has to go into making sure that we land it in the right way also from a customer publishing point of view with our distribution and they are they are quite different so so yeah look coming to the question of what's next i mean it comes in three stages for me so as i mentioned we are uh in five markets already uh in next in the first half of 2022 we'll also come to to the czech republic and poland uh which we're excited to to do and that will that will basically mean that we we have this business in in the seven main uh general markets in europe related to life and health business which is the most natural uh let's say fit for something like vitality then you know the next the sort of second part of that is to say okay look we have a program that's very heavily focused around uh activity and rewards and that that's a good place to start but you know wellness these days is not just about you know can you move a bit more than you did historically it's also about mental well-being it's about sleeping good it's about mindfulness it's about being able to have a more holistic approach to well-being and and covert has taught us and customer feedback has taught us actually that this is something where we need to to go and here we need to have the technology to move there as well so to be able to work with partners that are not just based on on on physical activity but also also on mindfulness so this is how one other way we'll develop the proposition and i think the third one which is more strategic and and we are you know really looking into is there's clearly something in the whole uh perception of incentives and rewards which drives a level of engagement between an insurer like generali and its customers that it hasn't had historically so i think we need to learn you know forget you know forgetting about the specific one of vitality being a wellness program but if there's an insurer there's a role for us to play where we offer incentives to customers to do something in a specific way and reward them for doing that and it creates value for us as an insurer then then this is probably you know a place we want to investigate more and to be able to do that in in other areas means we need to have the technology available that is as i said before replicable faster market can adapt quickly to to other ideas that we have so we can go and test those in in different markets so yes we have to we have to complete our scope on vitality we have to get that to scale and be able to manage all of this data at scale all of those rewards at real scale and uh to have the technology that allows us to do that without without thinking about it too much and then to say okay how do we widen the proposition and how do we take the concept of vitality that sits behind vitality to see if we can apply it to other areas of our business and that's really what the future is is going to look like for us you know the the isolation era really taught us that if you're not a digital business you're out of business and pre-kov a lot of these stories were kind of buried uh but the companies that have invested in digital are now thriving and this is an awesome example jeff another point is that jeff amebacher one of the founders of cloudera early facebook employee famously said about 10 12 years ago the best and greatest engineering minds of our my generation are trying to figure out how to get people to click on ads and this is a wonderful example of how to use data to change people's lives so guys congratulations best of luck really awesome example of applying technology to create an important societal outcome really appreciate you your time on the cube thank you thanks bye-bye all right and thanks for watching this segment of thecube's presentation of the aws executive summit at reinvent 2021 made possible by accenture keep it right there for more deep dives [Music] you

welcome everybody to this cube conversation my name is dave vellante and we're joined today by richard goodwin who's the group director of i.t at ultraleap and abhishek kumar who manages dell's power store product line just directs that product line along with several other lines for the company gentlemen welcome to the cube hey dave hi that's me so richard ultra leap very cool company tracks hand movements and so forth tell us about the company and the technology are really interested in how it's used yeah we have many uh product lines uh obviously we're very innovative uh innovative um and the organization was spun up from phd a number of phd students who were the co-founders for ultra leap and initially with mid-air haptics as many people may have seen but also hand tracking mid-air touch uh sense and feel uh so yeah it's it's it's quite impressive um what we have produced and the number of sectors and markets that we are in um and obviously to to push us to where we are we have relied upon lots of the dell technology both software and hardware and what's your role at the company i'm the group i t director and i'm responsible for the it and business platforms um all infrastructure network hardware software um and also the transition of those platforms to ensure that we're scalable and we are able to develop our software and hardware um as rapidly as possible awesome yeah a lot of data behind that too i bet um okay avashek you direct a number of products at dell across the portfolio unity extreme io the sc series and of course power vault it's quite the portfolio that you look after so let's get into the case study if we can a bit uh richard maybe you could paint a picture of of your environment uh some of the key applications that you're supporting and maybe what your infrastructure looks like give us a high level view sure uh so um pre uh powerschool we had um quite a a disparate uh architecture so um a fairly significant split and siding on the side of uh cloud uh not as hybrid as we would like and not uh not as much as on-prem as we would have liked and hey that has changed quite significantly um so we now have a number of servers and storage and storage arrays that we have on on-premise um and then we host ourselves so we are moving quite rapidly you know as a startup and then moving to a scale-up we needed that that scalability and that versatility and also the whole op-ex versus capex and also not being driven by lots of um sas products and architecture and infrastructure where we needed to be in control because of our development cycles and our products product development so wait okay so so too much cloud i'm hearing you run a little bit a dose of on-prem explain that a little bit more the cloud wasn't doing it for you in terms of your development cycle your control can you double click on that yeah some of the some of the control and you know there's always a balance because there's certain elements of uh our development cycles and our engineering uh software engineering where we need a very high parallelism uh for some of the work that we're doing which then you know the capex investment makes things very very challenging and not commercially the right thing to do however uh there are some of our information some of our ip um some of the secure things that we do we also do not want upgrades as an example or any outages or certain types of server and spec that we need to be quite bespoke and unique and that needs to be within our control got it okay thank you for that abhishek we're going to talk about powerstor today so set it up please tell us about powerstor what it is you know why it's important to this conversation sure so power store is a product that we launched may of 2020 roughly a little bit more than a year now and it's a brand new architecture that dell technologies released and at the end of the day i'll talk about a few unique aspects of the product but at the end of the day the where we start with it's a storage platform right so uh where we see similar to what richard is saying here uh uh in terms of being able to consolidate the customer's environment whether it is block file v-balls physical virtual environments uh and and it's as i said it's a brand new architecture where we leveraged pieces of existing products where it made sense uh and it's a it's we are using all the latest and greatest technologies delivering the best performance based data reduction uh and and where we see a lot of traction is the options that it brings to the table for our customers in terms of flexibility whether they want to add capacity compute uh whether in fact uh we have a apps on dev deployment model where customers can consolidate their compute as well on the storage platform if needed so a lot of innovation from a platform perspective itself and it's not just about the platform itself but what comes along with it right so we referred it as an ecosystem part of it where we work with ansible playbook csi plug-in you name it right and it's the storage platform by itself doesn't that doesn't stand by itself in a customer's environment there are other aspects of the infrastructure that it needs to integrate with as well right so if they're using ansible playbooks we want to make sure the integration is there got it and last perhaps uh not the least is uh the intelligence built into the platform right so as we are building these capabilities into the product uh there is intelligence built into the product as well as outside the product where things like cloud iq things like uh technologies built into power store itself makes it that much easier for the pro for the customers to manage the infrastructure and go from there thank you for that so richard what was the workload so actually you started with sort of a green field on-prem if i understand it correctly what was the workload that you were sort of building around or workloads sorry we had a um a number of different applications some of which we cannot really talk about too much um and then we engaged them regarding um the storage uh issue that we had and we engaged the our account lead accounting exec and a number of solution architects were working with us to ensure that we had the optimal solution dell were selected over the competitors there's a many reasons you know the new technology the deduplication the compression the data overall data reduction um and the guarantee uh that also came uh came with that the four to one data reduction guarantee which was significant to us because of the amount of data that we hold and we have you know as i mentioned we're pulling further further data of ours back um into our hosted environments which will end up on the power store especially with the deduplication that we're now getting we've now actually hit nine to one which is you know significant we were expecting four to one maybe five to one with some of the data types and what was excellent dell where that confident that they did not even review our data types prior and they were willing to stand by that guarantee of four to one and we've excelled that you know we've got significant different data types on on that array and we've hit nine to one and that's gradually grown over the last nine months you know we were kind of at six and we moved to seven and now we're hitting nine to one ratios that's great so you get a little free storage that's interesting what you're saying richard because i just assumed that a company that's guarantees four to one is going to say okay let us let us inspect your workload first and then and then we'll do the deal uh so avashek what's the tech behind that data reduction that you're able to with such confidence not have to and pre-inspect the workload in this case anyway yes sir so it goes back to the technologies that goes behind the product right so so we stand behind the technology and we want to make it simpler for our customers as well where again we don't want to spend weeks looking at all the data scanning all the data before giving the guarantee so we stand behind the technology where we understand that as the data is coming in we are always going to duplicate it we are always going to compress it there is technology within the product where we are offloading some of that to the uh outside the cpu so it is not impacting the performance that the applications are going to see so data reduction by itself is not going good enough performance by itself is not good enough both of them have to be together right so and that's what powerstroke brings to the table yeah thank you so richard i'm interested i mean i remember the power store announcement uh i sort of saw it leading up to it and one of the big thrusts from dell the way i phrase it is essentially trying to create a cloud-like experience on-prem so really focus on simplicity so my question to you is let's start with just the deployment you know how complicated was it to install what was that process like you know how many clicks not that you have to tell me how many clicks but you know what i'm asking is is how difficult was it to get from zero to you know up and running well we actually stepped down a very difficult challenge um we were in quite a difficult situation where we'd pretty much gone off of a cliff in terms of our iops performance um so the rfp was quite rapid and then we needed to get which whoever which vendor was successful we need to get that deployed rather rapidly and on the floor in our data center and server rooms uh which we did um and it was very very simplistic within three weeks of placing the order we had that array in our server rack and we had begun the migration it was very simple to set up um and the management of that array has been we we've seen a i think 40 reduction in terms of effort to be able to manage our storage because it is very self-contained um you know even from a reporting perspective the deployment the migration was all very very very simplistic and you know we we've done some works recently where we had to also um do some work on the array and some other migrations that we were doing and the resilience came came to came to the forefront of where you know the the dual architecture and no single point of failure enabled us to do some things that we needed to do quite rapidly because of the the dual nodes and the resilience within within the unit within the power store itself was considerable where we kept performance up it will also prioritize any disk rebuilds keeps the incoming ingest rates uh high and prioritizes the you know the workloads which is you know really impressive especially when we are moving so quickly with our technology we don't really have much time to you know micromanage the estate can you can you just repeat what you said on the percent reduction i think i heard you you cut out there a little bit a potent reduction on on management on on on the labor side yeah so our uh our lead storage engineer is estimated around 40 less management wow okay so that's that's good so actually i love this conversation because uh you know in the early days of automation people like ah that's my job provisioning luns i'm really good at it but i think people are realizing that it's actually you know not something that you want to be really good at it's something that you want to eliminate so now maybe it's a he that storage engineer got his or her nights and weekends back uh but but what do they do now when they get that extra time what do you what do you put them on you know more strategic initiatives or you know other other things in the to-do list what's that like the last thing uh you know any of my team whether it's the the storage leads or some of the infrastructure team that are also involved and engaged because you know the organization we have to be quite versatile as a team in our skill sets we don't want to be doing those bau uh mundane tasks even the storage engineer does not want to be you know allocating luns and allocating storage to physical servers vms etc we want all of that to be automated and that you know those engineers are now working on you know some of the cutting edge things that we're trying to do with machine learning is as an example um which is much more interesting it's what they want to be doing um you know that aids the obvious things like retention interest and personal development we don't want to be you know that base i.t infrastructure management is is not not where you know any of the engineers want to be in terms of the decision to go with dell power store i'm definitely hearing there was a relationship there was an existing relationship with dell i'm sure that played into it um there were many things so you know the relationship wasn't really part of this even though i mentioned the end user compute you know in any sector or anything that we're procuring we want best of breed and you know a best of set and that was done on you know cost is definitely a driver the technology you know is of interest to us we're a tech company new technology to us is also fascinating not only our own uh but also the storage guarantee the simplicity um the resilience with it within the uh unit also the ability which was key to us because of what we're trying to do with our hybrid model and bring bring back and repatriate some of the data as it were from the cloud we needed that ability to with ease to be able to scale up and scale out and the uh power stall gave us that when you say cost uh i want to dig into that price or you know the the the price tag or the the cost i mean when you do the business case and i wonder if we could add a little color to that yeah there's two elements to this so they're not either the cost and the price tag uh but then also cost of ownership and the comparisons that we were running against the other vendors but also the comparisons that we were running from a capex investment against opex and what we have in the cloud and also the performance you know the performance that we get from um the cloud and our cloud storage and the resilience within that and then also the initial price tag and then comparing the capex investment to the opex were all elements that were key to us making our decision and you know that there has to be some credit taken by the dow account team and that their relationship towards the final throws of that rfp you know were key initially not all we were just looking for the best possible storage uh solution for ultralite and to to determine that on your end was that like a feature because it's sometimes fuzzy what the business impact is going to be like that 40 you mentioned or the data reduction at nine to one when there's a promise of four to one did you what did you do did you kind of do a feature function analysis and sort of line that up and and say okay i'm gonna map that to our business pro our processes our i.t processes and try to predict what the impact would be is that how you did it or did you take a different approach we did so we did that obviously between vendors as you'd expect in an rfp but then also mapping to how that would impact the business and that that is not an easy and easy process to go through and we've seen more games even comparing one vendor to another some of that because of the the technology the terminology is very very different and sometimes you have to bring that upper level and also gain a much more detailed understanding which at times can be challenging but we did a very like for like comparison um and also lots of research but you're quite right the the the business analysis to what we needed um we had quite a good forecast uh and from some of our historical information and data and also our engineering and business and strategic roadmap we were able to map those two together not the easiest of experiences not one that i want to repeat but we got yeah a little bit of art and science involved avishak maybe you could talk about power store what you know give us the commercial what makes it different from other products in the market uh things like cloud iq uh maybe you could talk about that a little bit sure so uh so again from uh it's music to my ears when richard talks about the ease of deployment and the management because there is a lot of focus on that but even as i said earlier from a technology perspective a lot of goodness built in in terms of being able to consolidate uh customers environment into onto the platform so that's more from a storage point of view give the best performance give the best data reduction storage efficiencies uh the second part of course the the flexibility the options that power store gives to the customers in terms of sort of disaggregating the storage and the compute aspects of it so if as a customer i want to start with different points in terms of what our customer requirements are today but going forward as your requirements change from a compute capacity perspective you can use the scale up and scale out capabilities um and and then the intelligence built in right so as you scale out your cluster being able to move storage around right as needed uh being able to do that non-disruptively so instead of saying that mr customer your uh your storage is going to you're at 90 capacity being able to say that based on your historical trending uh we expect you run out of capacity in six months some small things like that right and of course uh if the uh the dial home the support assist capabilities are enabled cloud iq brings a lot of intelligence to the table as well in addition to that as i mentioned earlier there is apps on capability that gives another level of flexibility to the customers to integrate your storage infrastructure into a virtual environment if the customer chooses to do that and last but not the least it's not just about the product right so it's about the the programs that we have put around it anytime upgrade is a big differentiator for us where it's an investment protection program for customers where if they want to have the peace of mind in terms of three months nine months three years down the line if we come out with new technologies being able to be upgrade to that non-destructively is a big part of it as well so it's a peace of mind for the customers that yes i'm getting into the power store architecture today but going forward i am i'm protected from that point of view so anytime upgrade it's a new business program that we put around leveraging the architectural benefits of power store uh whether your computer requirement your storage requirements change your your you're covered from that point of view so again a very quick overview of uh of what power store is why it is different and again that's where that comes from thank you for that richard are you are you actively using cloud iq do you get what kind of value do you get from it not currently um however we have we have had plans to to do that the um uptake and how basically our our internal work node is not allowed us to to do that but one of the other key reasons for selecting powersupport was the the non-disruptive element you know with other sas products other providers and other issues that we have experienced that was one that was a a key decision for us from a um a power store perspective one of the other you know i i to go back to the conversation slightly with in terms of performance you know we are getting getting now you know there's a 400 percent speed of improvement of publishing uh we've got 80 percent faster code coverage and our firmware built 1 300 quicker than they were previously and the time savings of the storage engineer and you know as a director of it i often ask for certain reports from from the storage array when we're working out for um storage forecasts performance forecasts and you know when we're coming close to product releases and code drops um that we're trying to manage the the reporting on the power store is is impressive whereas previously my storage engineer would not be the uh the most happiest of people when i would be trying to pull you know month-end quarterly reports etc uh whereas now it's it's ease and we have live dashboards running we can easily extract that information i love that uh because you know so often we talk about the 40 reduction in it labor uh which okay that that's cool but then your cfo's gonna say yeah but it's not like we're getting rid of people we you know we're still spending that money and okay they're getting you're now into soft dollars but when you talk about 400 percent 18 1300 percent you're talking about business impact and that's telephone numbers to a cfo so i i love those metrics thank you for sharing yeah but when they obviously some of our dashboards when they're visualized that they are very hard-hitting you know the impact you know you're quite right to see if it does chase down you know the availability and the resource profile however we're on a huge upward trajectory so having the right resilience and infrastructure in places is exactly what we need and as i mentioned before those engineers are all reallocated to much more interesting work and you know the areas that will actually drive our business forward speaking of resilience are you doing any replication uh not currently however there uh we've actually got a meeting regarding this today with some of the dell's enterprise and some of their storage specialists in a couple of hours time actually because that is very high on the agenda for us to be able to replicate and have a high availability um cluster and another uh potentially power stone made because so i was going to ask you kind of where you want to take this thing i'm hearing you you're looking at cloud iq really try to exploit that so you got some headroom here in terms of the value that you can get out of this platform uh to to do replication faster recovery etc maybe protect against you know events guys thanks so much for your time really appreciate your insights and thank you for watching this cube conversation this is dave vellante and we'll see you next time you

>>Hey, welcome to this continuing coverage of the H P E Aruba. Pensando announcement. I'm lisa martin. Hopefully you've seen by now the announcement from john and Antonio, we're going to get into some technical details. Now I've got two guests joining me. Please welcome Krishna Otopeni, the VP of engineering at Pensando and frank Reich stein, senior Director platform engineering from HP Aruba guys welcome to the program. >>Hi lisa. >>Hi lisa. Thanks for having us. >>Sure. So we're going to, we're going to dig in here. You guys are tasked with bringing these two worlds together, christian. Let's go ahead and start with you talk to me about the announcement why this is so significant and then we'll dig into the technical details. >>Yeah. So as you know, right, Pensando has been in the market for a couple of years right now. Um, and we heard a lot of success with the cloud providers and we're also working with be a million project Montreat. Um, so what we learned in the last couple of years, we're trying to take all the lessons and I was a little bit going to what, what we learned with the crop, your providers. So we took a dsC card, which is a B C, a form factor, the customer takes dsC card inserts into the, into server with various forces and hypervisors. So it's really exciting that the BSE is in production with some of the providers already and some of them were taking to production in this calendar quarter and we also have in connection with that first generation BSC cards a couple of years and some of the biggest banks and storage platform providers. So, so this is kind of a big deal for us because we are starting with what we call a D P U. Uh that Pensando is bailing which is the latest generation of it is called code named Alba which delivers the software in silicon program ability while matching the performance of hardware. So internally the DPU has the tight integration between special purpose processors that consent of what we call mps and a general purpose processor like arm course where we do the management and control software and with tied together with offload engines like encryption and compression. The key takeaway from this platform. Their consent of belt. It's it's programmable at all layers Either by Pensando or our customers whether it's in data plane using P four or control and management plane. All right. So what we learned while developing this platform and taking this production with the public cloud providers, we realize that the platform and architecture is not only very highly scalable with very high performance with respect to, you know, packets per second or stable connections per second or NBA me I ops but it's also adaptable like a very rapid paced. And another key lesson that we learn from our cloud partners is that the new devoPS model operations is as important as functionality. For example, the importance of creating the DPU pipeline the subsequent guarantees or providing Hatch uh first fateful connections so that in some cases the component fails, there is hardware or software customer doesn't have any disruption in his network or storage operations. So we took all the ski lessons that we learned over the last few years. And then we are building a new platform partnering with Aruba team which is very high scale with very high performance at the same time, tied with very good operations um that you know it comes the best of both both platforms from the pew side and from the Aruba side frank they want to add on the Aruba platform side. >>Sure, yeah. So the Aruba networking team has been building network switches for the past 25 years and we've been following all of the trends and evolutions over that time frame. And as we've gone through a few years ago we decided to make an evolution of our operating system to scale it up for the modern needs of the modern world. And this included doing things like designing with a micro services oriented architecture to provide for a high degree of resiliency throughout the product line. And then being able to extend that single network operating system from the core to the edge of the network. As we've been partnering with Pensando, it came very clear that the evolution of the network the next step was this form of a deep, you integrated into that top of rack switch to provide a deeper and richer feature set and what has traditionally been available in your top of rack switch. And so this partnership has enabled us to leapfrog but has been traditional top of rack functionality and add to it. Things that previously were not attainable in that layer of the network >>frank. Continuing on with you. Talk to me about some of the technology requirements and challenges of designing and engineering and delivering the industry's first distributed service switch. What were some of those? >>Sure, sure. So a lot of the challenges around integrating this type of solution come down to how to ensure that you have the highest performance possible and maintaining high speed of performance when you're now introducing an additional pay hop within the network topology inside of the switch, a lot of that came down to integrating the background and skill setting capabilities that come along with osc x that were made it quick for us to enable a new piece of functionality within the architecture and then a lot of credit has to go to the Pensando team for the richness of the feature setting capability set that they have within that DPU product as it stands >>christian, let's go ahead and dig through some of those core features and capabilities that are really going to be benefiting customers. >>Yeah, so basically right, uh taking a little bit of step back, we started with the dsc market from Pensando perspective where we wanted to put gPU in every survey and we obviously have success in enterprise customers and cloud customers that we discussed earlier. But we also learned a few lessons while deploying DSC and enterprise markets in the sense that enterprise markets do not need the performance of every DSC at 200 G full duplex network services for every survey. And also you know what makes historic key is that you know, there are a lot of brownfield service in current enterprise data centers where customers do not want to open up a server to put the DSC in. So we wanted to give a product with the form factor that frank is talking about and technology that's very familiar to every IT department given the Aruba Lois uh in a deployment in data centers. And also as I said earlier, what we lessons that we learned, we came up with this taking this production very deep you software and hardware which is deployed in public clouds. And combined with those features that that have been rapidly evolving uh through multiple Aruba releases into enterprise data centers in a switch form factors. So what we think is by doing this taking the best of both worlds. We're creating a new product category that is not that is for the features and capabilities are not available in the market from any vendor specifically providing state full services at every tour without the complexity of the service redirection because today's data centers if you want to install services. It's a it's a lot of effort operator to bring in those services. This obviously also has a great operational model, great TCO and the functionality that customers that you never see in tar before. For example, in the first release we are providing state full firewall with the visibility at every floor level that goes through the tower which never existed in the market before. >>New product category. That's a big deal christian. Talk to me a little bit about how long you guys have been at this, you were in stealth mode crack that open for us. >>I mean it has been a less than a year but of development that both teams have been doing and we work very closely together and we meet I mean for sure at least more than a week uh you know, more than once the once a week between uh frank's team and you know, and send it to them and there's a coordination between the sales team and the marketing team and the go to market team and then how we sell it and the manufacturing team, there's a lot goes on in building this product. I mean we believe this is the fastest uh tard new generational product that we built because because we could do that because the experience of both the teams trying they want anything more to this one. >>Yeah, I think that that really goes to the point here. The capabilities and maturity of the deep you solution that Pensando was bringing into the solution really allowed for a very fast and seamless integration on top of that Aruba, OsC X and the platform that we built there with automated Api generation and integration with our Aruba fabric composer orchestration layer really created the capability to make things go as fast as possible for this development effort And so to really take a new product and define a new product space within a 12 month time frame has been a really exciting and impressive feat by both teams. >>Very impressive considering the challenges and the dynamics in the market and the global market that we've had frank. How big of a lead do you think you have on incumbents here? >>I think we have a substantial lead on the incumbents here. I think what we're doing is a fundamentally different take on how you do a top of rack switch and the capabilities that we're bringing to bear at the top of rack are fundamentally new and differentiated from what the competition has been thinking about. So I believe we have a substantial lead on the competition. >>Excellent chris to talk to me about what's next? What's the future? I have some secret sources that tell me that john and Antonio are meeting regularly pushing you guys, what does the future hold. >>Yeah. So I mean obviously this is the start of an exciting journey. There's a first platform you're bringing to the market jointly and obviously we like a bunch of form factors without upcoming road map. So additionally I mean the software in silicon performance that with all the services that we deliver a software means that scope and scale of the state will services that we can deliver and evolve over time whether you talk about security or encryption or state flat or load balancing or d does all of the services and then you know hybrid connectivity. So obviously you know there's a lot that we can do with this platform that will be driven by with the partnership with our customers. We also see that you know the market of all where you know all the customers we'll have some customers will have deep us in the service and some customers will use the new platform that we're bringing together. So we won't have all the management start to make sure all of them can be managed uniformly and any time you know you this is a major step for a new category of platform and architecture we're developing jointly with the rubber and I believe this will be a huge opportunity for both the companies and our customers and this is exciting times ahead for us >>and talk to me both of your opinions here where can customers go to find more information, how can they get started frank will go ahead and start with you. >>Yeah you can jump straight to Aruba networks dot com and dig into the feature sets and packages that we have available with the Aruba 10-K product line direct from there. >>Fantastic christian anything to add >>that is correct actually. So we are treating it as one product coming from both the companies. All the documentation is where you know, frank pointed out in Aruba website, we put all the documentation at the same place and we're supporting it as one unified product from both the companies. >>Are you seeing any? We've seen so much change in the last year and a half. Last question. I'm just wondering if if either of the HPV riverside or the pence underside is seeing any industries that might be really prime to take advantage of knowing how many industries all have been affected by the events of the last year and a half christian any thoughts there? >>Yeah, I mean if you look at it right and obviously all of us are working from home and now everything happens, you know, mostly at the edge, right? You know, and we are in that this platform will help us get there where we get security to the edge and we get more visibility and more services to the edge. Right? So I mean that's what you know Pensando is all about and hoping that you know, this is uh this journey that we started with the D. P us, we go with this platform and it will ever all and it will help customers, our customers and our partners leverage all the functionality that, you know, Pensando and the rubber can bring together. >>Well guys, congratulations on an enormous feat accomplished in not just a 12 month time period, but a very challenging 12 month time period. We appreciate you guys breaking down the HP Aruba Pensando announcement and more technical detail. Those can go to learn more information and again, congratulations. >>Thank you. >>Thank you very much lisa >>for my guests. I'm lisa martin. You're watching this HP Aruba Pensando announcement. Thanks for watching. >>Mhm >>mm.

welcome back to los angeles lisa martin here with dave nicholson day three of the cube's coverage of kubecon cloud native con north america 2020 we've been having some great comp live conversations in the last three days with actual guests on set we're very pleased to welcome to for the first time to our program shimon ben david the cto of weka welcome hey nice to be here nice to be here great to be at an in-person event isn't it no it's awesome they've done a great job i think you're green you're green like we're green fully green which is fantastic actually purple and hearts wake up yeah good to know green means you're shaking hands and maybe the occasional hug so talk to us about weka what's going on we'll kind of dig into what you guys are doing with kubernetes but give us that overview of what's going on at weka io okay so weka has been around for several years already uh we actually jade our product of 2016 so it's been out there uh actually eight of the fortune 50 are using weka um for those of you that don't know weka by the way we're a fully software defined parallel file system cloud native i know it's a mouthful and it's buzzword compliant but we actually baked all of that into the product from day one because we did other storage companies in the past and we actually wanted to take the best of all worlds and put that into one storage that is is not another me too it's not another compromise so we built the the environment we built weka to actually accommodate for upcoming technologies so we identified also that cloud technology is upcoming network actually exploded in a good way one gig 10 gig 100 gig 200 gig came out so we knew that that's going to be a trend and also cloud we saw cloud being utilized more and more and we kind of like bet that being able to be a parallel file system for the cloud would be amazing and it does how are you not on me too tell me tell us that when you're talking with customers what are the like the top three things that really differentiate weka speed scale and simplicity speed skills i like how fast you said that like quicker so speed sorry you see a lot of file system a lot of storage environments that are very um throughput oriented so speed how many gigabytes can you do to be honest a lot of storage environments are saying we can do that in that many gigabytes when we designed weka actually we wanted to provide an environment that would actually be faster than your local nvme on your local server because that's what we see are actually customers using for performance they're copying the data for their local to their local nvmes and process it we created an environment that is actually throughput oriented iops oriented latency sensitive and metadata performance so it's kind of like the best of all worlds and it's just not just a claim we actually showed it in many benchmarks uh top 500s supercomputing centers can talk for hours about performance but that's performance um scalability we actually are able to scale uh and we did show that we scaled to multiple petabytes we actually uh took some projects from scale-out nas appliances that actually got to their limit of their scale out and we we just continued from there double digit triple digits petabytes upcoming um and also scale is also how many clients can you service at once so it's not only how much capacity but also how many clients can you can you work with concurrently and simplicity all of that we from the initial design points were let's make something that is usable by users and not like so my mother can really use it right and so we have a very simple intuitive user interface but it's also api driven so you can automate around it so simplicity speed and scale love it so shimon it's interesting you said that your company was founded in 2016 in that in that time period because uh before jade ga ga 2016. um but but in those in in those surrounding years uh there were a lot of companies that were coming out at sort of the tail end of the legacy storage world yeah trying to just cannibalize that business you came out looking into the future where are we in that future now because you could argue that you guys maybe started a little early you could have taken a couple of years off and waited for uh for for the wave in the world of containerization as an example to come through but this is really this is like your time to shine isn't it exactly and being fully software defined we can always um adapt and we're always adapting so we bet on new technologies networking flash environments and these keep just keep on going and improving right when we went out we were like in 10 gig environments with ssds but we already knew that we're going to go to 100 and we also designed already for nvmes so kind like hardware constantly improved uh cpus for example the new intel cpus the new amd cpus we just accommodated for them because being software defined means that we actually bypass most of their inner workings and do things ourselves so that's awesome and then the cloud environment is growing massively and containers we see containers now in everyday uh use cases where initially it was maybe vms maybe bare metal but now everything is containerized and we're actually starting to see more and more kubernetes orchestrated environment uh coming out as well i still have a feeling that this is still a bit of dev property hey i'm a developer i'm a devops engineer i'm going to do it uh and it's there is i actually saw a lot of exciting things here um taking it to the next level to the it environment so um that's where we will show benefit as well so talk about how kubernetes users are are working with weka what is what superpower does that give them so um i think if you look at the current storage solutions that you have for kubernetes um they're interesting but they're more of like the let's take what we have today and plug it in right um so what kind of has a csi uh plug-in so it's easy to integrate and work with but also when you look at it um block is still being used in in kubernetes environments that i'm familiar with block was still being used for high performance so i i used uh pvs and pvcs to manage my pods uh claims and then but then i mounted them as read write once right because i couldn't share them then if a pod failed i had to reclaim the pvc and connect it to multiple environments because i wanted block storage because it's fast and then nfs environments was were used as read write many uh to be a shared environment but low performance so by being able to say hey we now have an environment that is fully covered kubernetes integrated and it provides all the performance aspects that you need you don't need to choose just run your fleet of pods your cluster of pods read write many you don't need to to manage old reclamations just to create new pods you get the best of all words ease of use and also uh the performance additionally because there's always more right we now see more and more uh cloud environments right so weka also has the ability and i didn't focus on that but it's it's really uh amazing it has the ability to move data around between different environments so imagine and we see that imagine on-prem environments that are now using weka you're in the terabytes or petabyte scale obviously you can copy and rsync and rclone right but nobody really does it because it doesn't work for these capacities so weka has the ability to say hey i can move data around between different environments so create more copies or simply burst so we see customers that are working on-prem throwing data to the cloud we see customers working on the cloud and and then we actually now see customers starting to bridge the gap because cloud bursting is again is a very nice buzzword we see some customers exploring it we don't really see customers doing it at the moment but the customers that are exploring it are exploring uh throwing the compute out to the cloud using the kubernetes cluster and throwing the data to the cloud using the weka cluster so there's and and one last thing because that's another interesting use case weka can be run converged on the same kubernetes cluster so there is no need to have even it's so in essence it's a zero footprint storage you don't need to even add more servers so i don't need to buy a box and connect my cluster to that box i just run it on the same servers and if i want more compute nodes i add more nodes and i'll add more storage by doing that so it's that simple so i was just looking at the website and see that waka was just this was just announced last week a visionary in the gartner mq for what's the mq4 distributed file systems and object storage talk to me talk talk to us about that what does that distinction mean for the company and how does the voice of the customer validate that great so actually this is interesting this is a culmination of a lot of hard work that all of the team did writing the product and all of the customers by adopting the product because it was in order to get to that i know we don't know if anybody is familiar with the criteria but you need to have a large footprint a distinguished footprint worldwide so we worked hard on getting that and we see that and we see that in multiple markets by the way financials we see a massive amounts of aiml projects containerized kubernetes orchestrated so getting to that was a huge achievement you could see other storage devices not being there because not not every storage appliance is is a parallel file system usually i think uh when you look at parallel file systems you you you attribute complexity and i need an army of people to manage it and to tweak it so that's again one of the things that we did and that's why we really think that we're a cool vendor in that magikarp magic quarter right because you it's that simple to manage uh you don't have any uh find you you cannot you don't need to find unity in like a bazillion different ways just install it we work it works you map it to your containers simple so we're here at kubecon a lot of talk about cloud native a lot of projects a lot of integration a lot of community development you've described installing weka into a kubernetes cluster where you know are there are there integrations that are being worked on what are the is there connective tissue between essentially this parallel file system that's spanning you say you have five nodes you have weka running on those five nodes you have a kubernetes cluster spanning those five nodes um what kinds of things are happening in the community maybe that you're supporting or that you're participating in to connect those together so right now you you don't uh we only have the csi plugin we didn't invest in in anything more actually one of the reasons that i'm here is to get to know the community a bit more and to get more involved and we're definitely looking into how more can we help customers utilize kubernetes and and enjoy the worker storage uh do we need to do some sort of integration i'm actually exploring that and i think you'll see some well so we got interesting so we got you at a good time now exactly yeah because you can say with with it with an api approach um you have the you have the connectivity and you're providing this storage layer that provides all the attributes that you described but you are here live living proof green wristband and all showing that the future will be even more interesting voting on the future yeah and and seeing how we can help the community and what can we do together and actually i'm really impressed by the the conference it's been amazing we've been talking about that all week being impressed with the fact that there's we've been hearing between 2 700 and 3 100 people here which is amazing in person of course there's many more that are participating virtually but they've done a great job of these green wristbands by the way we've talked about these a minute ago um this you have a red yellow or green option to to tell others are you comfortable with contact handshakes hugs etc i love that the fact that i am i'm sandwiched by two grains but they've done a great job of making this safe and i hope that this is a message this is a big community um the cncf has 138 000 contributors i hope this is a message that shows that you can do these events we can get together in person again because there's nothing like the hallway track you can't replicate that on video exactly grabbing people in the hallway in the hotel in the lobby talking about their problems seeing what they need what we do it's amazing right so so give us a little bit in our last few minutes here about the go to market what is the the gtm strategy for weka so that's an interesting question so being fully software defined when we started we we thought do we do another me too another storage appliance even though we're storage defined could we just go to market with our own boxes and we actually uh decided to go differently because our market was actually the storage vendors sorry the server vendors we actually decided to go and enable other bare metal environments manufacturers to now create storage solutions so we now have a great partnership with hpe with supermicro with hitachi uh and and more as well with aws because again being software defined we we can run on the cloud we do have massive projects on the clouds some of the we're all familiar with some but i can't mention um so and we we chose that as our go to market because we we are fully software defined we don't need any specific hardware for we just need a server with nvmes or an instance with nvmes and that's it there's no usually when i talk about what we need is as a product i also talk about the list of what we don't need is longer we don't need j bar j buffs servers ups we don't need all of that raid arrays we just need the servers so a lot of the server vendors actually identify that and then when we approach them and say hey this is what we can do on your bare metal on your environment is that valuable of course so so that's mostly our go to market another thing is that we chose to to focus on the markets that we're going after we're not another me too we're not another storage for your home directories even though obviously we are in some cases uh by customers but we're the storage where if you could shrink your wall clock time of your pipeline from two weeks to four hours and we did that's like 84 times faster if you could do that how valuable is that that's what we do that we see that more and more in modern enterprises so when we started doing that people were saying hey so your go to market is only hpc uh no all if you look at ai email life science um financials and the list goes on right modern environments are now being what hpc was a few years ago so there's massive amounts of data so our go to market is to be very targeted toward uh these markets and then we can say that they also uh push us to to other sides of the hey i have a worker so i might put my vmware on it i might put my i'll do my distributed compilation on this it's it's growing organically so that's fun to see awesome tremendous amount of growth i love that you talked about it very clearly simplicity speed and scale i think you did a great job of articulating why waka is not a me too last question are there any upcoming webinars or events or announcements that that folks can go to learn more about weka uh great question um i didn't come with my marketing hat but we we constantly have events and uh we usually what we usually do we we talk about the markets that we go after so for example a while ago we were in bioit so we published some uh life science articles um i need to see what's in the pipeline and definitely share it with you well i know you guys are going to be at re invent we do so hopefully we'll see you re-invent we're very in super computing as well if you'll be there fantastic i see that on your website there um i don't think we're there but we will see you we're a strong believer of of these conferences of these communities of being on the ground talking with people obviously if you can do it we'll do it with zoom but this is prices yeah it is there's nothing like it shimon it's been great to have you on the program thank you so much for giving us an update on weka sharing what you guys are doing how you're helping kubernetes users and what differentiates the technology we appreciate all your insights and your energy too no it's not me it's the product ah i love it for dave nicholson i'm lisa martin coming to you live from los angeles this is kubecon cloudnativecon north america 21 coverage on the cube wrapping up three days of wall-to-wall coverage we thank you for watching we hope you stay well