>>Hi, I'm John Ferry with the Cube. We're here for a special exclusive conversation with David Geria, the CEO of Mongo MongoDB. Well established leading platform. It's been around for, I mean, decades. So continues to become the platform of choice for high performance data. This modern data stack that's emerging, a big part of the story here at a reinvent 2022 on top of an already performing a cloud with, you know, chips and silicon specialized instances, the world's gonna be getting faster, smaller, higher performance, lower cost specialized. Dave, thanks for taking the time with me today, >>John. It's great to be here. Thank you for having me. >>Do you see yourself as a ISV or you just go with that, because that's kind of a nomenclature >>When, when I think of the term isv, I think of the notion of someone building an end solution for customer to get something done. Or what we're building is essentially a developer data platform and we have thousands of ISVs who build software applications on our platform. So how could we be an isv? Because by definition I, you know, we enable people to do so many different things and you know, they can be the, you know, the largest companies of the world trying to transform their business or startups who are trying to disrupt either existing industries or create new ones. And so that's, and, and that's how our customers view MongoDB and, and the whole Atlas platform basically enables them to do some amazing things. The reason for that is, you know, you know, we believe that what we are enabling developers to do is be able to reduce the friction and the work required to build modern applications through the document model, which is really intuitive to the way developers think and code through the distributed nature of platforms. >>So, you know, things like charting no other company on the planet offers the capabilities we do to enable people to build the most highly performant and scalable applications. And also what we also do is enable people to, you know, run different types of workloads on our platform. So we have obviously transactional, we have search, we have time series, we enable people to do things like sophisticated device synchronization from Edge to the back end. We do graph, we do real time analytics. So being able to consolidate all that with developers on one elegant unified platform really makes, you know, it attractive for developers to build on long >>Db. You know, you guys are a feature partner of aws and I would speculate, I don't know if you can comment on this, but I would imagine that you probably produce a lot of revenue for Amazon because you really can't turn off EC two when you do a database work. So, you know, you kind of crank it all the time. You guys are a top partner. How long have you guys been a partner with aws? What's the relationship? >>The relationship's been strong, actually, Amazon spoke at one of our first user conferences in 2013. And since then we've been working together. We've been at reinvent since essentially 2015. And we've been a premier partner, an Emerald sponsor for the last Nu you know, I think four or five years. And so we're very committed to the relationship and I think there's some things that we have a lot, we have a lot of things in common. We care a lot about customers and for us, our customers, our developers, we care a lot about removing friction from their day to day work to move, be able to move fast and be able to, in order to seize new opportunities and respond to new threats. And so consequently, I think the partnership, obviously by nature of our, our common objectives has really come together. >>Talk about the journey of Mongo. I mean, you look back at the history, I, you go back the old lamp stack days, right? So you know, the day developer traction is just really kind of stuck at the none. I mean, it's, it's really well known. And I remember over the conversations, Dave Mongo doesn't scale. I mean, every year we heard something along those lines cuz it just kept scaling. I heard the same thing with AWS back in 2013 timeframe. You, oh, it's just, it's really not for a real prime time. It's, it's for hobbyists, not so much builders, maybe startup cloud, but that developer traction is translated. Can you take us through the journey of Mongo where it is now and, and kinda look back and, and, and take us through what's the state of the art now, >>Right? So just for those of you who, who, those, you know, those in your audience who don't know too much about Mon Be I'll just, you know, start with the background. The company was astounded by developers. It was basically the CTO and some key developers from Double Click who really saw the challenges and the limitations of the relational database architecture because they're trying to serve billions of ads per day and they constantly need to work on the constraints and relational database. And so they essentially decided, why don't we just build a database that we'd want to use? And that was a catalyst to starting MongoDB. The first thing they focused on was, rather than having a tabler data structure, they focused on a document data structure. Why documents? Because there's much more natural and intuitive to work with data and documents in terms of you can set parent child relationships and how you just think about the relationship with data is much more natural in a document than trying to connect data in a, you know, in hundreds of different tables. >>And so that enabled developers to just move so much faster. The second thing they focused on was building a truly distributed architecture, not kind of some adjunct, you know, you know, architecture that maybe made the existing architecture a little bit more scalable. They really took from the ground up a truly distributed architecture. So where you can do native replication, you can do charting and you can do it on a global basis. And so that was the, the other profound, you know, thing that they did. And then since then, what we've also done is, you know, the document model is truly a super set of other models. So we enabled other capabilities like search you can do joins, so you can do very transaction intensive use case among be where fully asset compliant. So you have the highest forms of data guarantees you can do very sophisticated things like time series, you can do device synchronization, you can do real time analytics because we can carve off read only nodes to be able to read and query data in real time rather than have to offload that data into a data warehouse. >>And so that enables developers to just build a wide variety of, of application longing to be, and they get one unified developer interface. It's highly elegant and seamless. And so essentially the cost and tax of matching multiple point tools goes away when, when I think of the term isv, I think of the notion of someone building an end solution for a customer to get something done. Or what we're building is essentially a developer data platform and we have thousands of ISVs who build software applications on our platform. So how could we be an isv? Because by definition I, you know, we enable people to do so many different things and you know, they can be the, you know, the largest companies in the world trying to transform their business or startups or trying to disrupt either existing industries or create new ones. And so that's, and and that's how our customers view MongoDB and, and the whole Atlas platform basically enables them to do some amazing things. >>Yeah, we're seeing a lot of activity on the Atlas. Do you see yourself as a ISV or you just go with that because that's kind of a nomenclature? >>No, we don't view ourselves as ISV at all. We view ourselves as a developer data platform. And the reason for that is, you know, you know, we believe that what we are enabling developers to do is be able to reduce the friction and the work required to build modern applications through the document model, which is really intuitive to the way developers think and code through the distributed nature of platforms. So, you know, things like sharding, no other company on the planet offers the capabilities we do to enable people to build the most highly performant and scalable applications. And also what we also do is enable people to, you know, run different types of workflows on our platform. So we have obviously transactional, we have search, we have time series, we enable people to do things like sophisticated device synchronization from Edge to the back end. We do graph, we do real time analytics. So being able to consolidate all that with developers on one elegant unified platform really makes, you know, it attractive for developers to build on long ndb. >>You know, the cloud adoption really is putting a lot of pressure on these systems and you're seeing companies in the ecosystem and AWS stepping up, you guys are doing great job, but we're seeing a lot more acceleration around it, on staying on premise for certain use cases. Yet you got the cloud as well growing for workloads and, and you get this hybrid steady state as an operational mode. I call that 10 of the classic cloud adoption track record. You guys are an example of multiple iterations in cloud. You're doing a lot more, we're starting to see this tipping point with others and customers coming kind of on that same pattern. Building platforms on top of aws on top of the primitives, more horsepower, higher level services, industry specific capabilities with data. I mean this is a new kind of cloud, kind of a next generation, you knows next gen you got the classic high performance infrastructure, it's getting better and better, but now you've got this new application platform, you know, reminds me of the old asp, you know, if you will. I mean, so are you seeing customers doing things differently? Can you share your, your reaction to this role of, you know, this new kind of SaaS platform that just isn't an application, it's, it's more, it's deeper than that. What's going on here? We call it super cloud, but >>Like what? Yeah, so essentially what what, you know, a lot of our customers doing, and by the way we have over 37,000 customers of all shapes and sizes from the largest companies in the world to cutting edge startups who are building applications among B, why do they choose MongoDB? Because essentially it's the, you know, the fastest way to innovate and the reason it's the fastest way to innovate is because they can work with data so much easier than working with data on other types of architecture. So the document model is profoundly a breakthrough way to work with data to make it very, very easy. So customers are essentially building these modern applications, you know, applications built on microservices, event driven architectures, you know, addressing sophisticated use cases like time series to, and then ultimately now they're getting into machine learning. We have a bunch of companies building machine learning applications on top of MongoDB. And the reason they're doing that is because one, they get the benefits of being able to, you know, build and work with, with data so much easier than any other platform. And it's highly scale and performant in a way that no other platform is. So literally they can run their, you know, workloads both locally and one, you know, autonomous zone or they can basically be or available zone or they could be basically, you know, anywhere in the world. And we also offer multicloud capabilities, which I can get into later. >>Let's talk about the performance side. I know I was speaking with some Amazon folks every year it's the same story. They're really working on the physics, they're getting the chips, they wanna squeeze as much energy out of that. I've never met a developer that said they wanna run their workload on a slower platform or slower hardware. We know said no developer, right? No one wants to do that. >>Correct. >>So you guys have a lot of experience tuning in with Graviton instances, we're seeing a lot more AWS EC two instances, we're seeing a lot more kind of integrated end to end stories. Data is now security, it's tied into data stacks or data modern kind of data hybrid stack. A lot going on around the hardware performance specialization, the role of data, kind of a modern data stack emerging. What, what's your thoughts on the that that Yeah, >>I, I think if you had asked me, you know, when the cloud started going vogue, like you know, the, you know, the, the later part of the last decade and told me, you know, sitting here 12, 15 years later, would you know, would we be talking about, you know, chip processing speeds? I'd probably thought, nah, we would've moved on by then. But what's really clear is that customers, to your point, customers care about performance, they care about price performance, right? So AWS's investments in Graviton, we have actually deployed a significant portion of our at fleet on Amazon now runs on Graviton. You know, they've built other chip sets like train and, and inferential for like, you know, training models and running inferences. They're doing things like Nitro. And so what that really speaks to is that the cloud providers are focusing on the price performance of their, as you call it, their primitives and their infrastructure and the infrastructure layer that are still very, very important. >>And, and you know, if you look at their revenue, about 60 to 70% of the revenue comes from that pure infrastructure. So to your point, they can't offer a second class solution and still win. So given that now they're seeing a lot of competition from Azure, Azure's building their own chip sets, Google's already obviously doing that and and building specialized chip sets for machine learning. You're seeing these cloud providers compete. So they have to really compete to make their platform the most performant, the most price competitive in the marketplace. Which gives us a great platform to build on to enable developers to build these incredibly highly performant applications that customers are now demand. >>I think that's a really great point. I mean, you know, it's so funny Dave, because you know, I remember those, we don't talk speeds and feeds anymore. We're not talking about boxes. I mean that's old kind of school thinking because it was a data center mentality, speeds and feeds and that was super important. But we're kind of coming back to that in the cloud now in distributed architecture, as you put your platforms out there for developers, you have to run fast. You gotta, you can't give the developer subpar or any kind of performance that's, they'll, they'll go somewhere else. I mean that's the reality of what developers, no one, again, no one says I wanna go on the slower platform unless it's some sort of policy based on price or some sort of thing. But, but for the most part it's gotta run fast. So you got the tail of two clouds going on here, you got Amazon classic ias, keep making it faster under the hood. >>And then you got the new abstraction layers of the higher level services. That's where you guys are bridging this new, new generational shift where it's like, hey, you know what? I can go, I can run a headless application, I can run a SAS app that's refactored with data. So you've seen a lot more innovation with developers, you know, running stuff in, in the C I C D pipeline that was once it, and you're seeing security and data operations kind of emerging as a structural change of how companies are, are are transforming on the business side. What's your reaction to that business transformation and the role of the developer? >>Right, so I mean I have to obviously give amazing kudos to the, you know, to AWS and the Amazon team for what they've built. Obviously they're the ones who kind of created the cloud industry and they continue to push the innovation in the space. I mean today they have over 300 services and you know, obviously, you know, no star today is building anything not on the cloud because they have so many building blocks to start with. But what we though have found from our talking to our customers is that in some ways there is still, you know, the onus is on the customer to figure out which building block to use to be able to stitch together the applications and solutions they wanna build. And what we have done is taken essentially an opinionated point of view and said we will enable you to do that. >>You know, using one data model. You know, Amazon today offers I think 17 or 18 different types of databases. We don't think like, you know, having a tool for every job makes sense because over time the tax and cost of learning, managing and supporting those different applications just don't make a lot of sense or just become cost prohibitive. And so we think offering one data model, one, you know, elegant user experience, you know, one way to address the broadest set of of use cases is that we think is a better way. But clearly customers have choice. They can use Amazon's primitives and those second layer services as you as you described, or they can use us. Unfortunately we've seen a lot of customers come to us with our approach and so does Amazon. And I have to give obviously again kudos and Amazon is very customer obsessed and so we have a great relationship with them, both technically in terms of the product integrations we do as well as working with 'em in the field, you know, on joint customer opportunities. >>Speaking of, while you mentioned that, I wanna just ask you, how is that marketplace relationship going with aws? Some of the partners are really seeing great economic and joint selling or them selling your, your stuff. So there's a real revenue pop there in that religion. Can you comment on that? >>So we had been working the partner in the marketplace for many years now, more from a field point of view where customers could leverage their existing commitments to AWS and leverage essentially, you know, using Atlas and applying in an atlas towards their commits. There was also some sales incentives for people in the field to basically work together so that, you know, everyone won should we collectively win a customer? What we recently announced is as pay as you Go initiative, where literally a customer on the Amazon marketplace can basically turn up, you know, an Alice instance with no commitment. So it's so easy. So we're just pushing the envelope to just reduce the friction for people to use Atlas on aws. And it's working really very well. The uptake has been been very strong and and we feel like we're just getting started because we're so excited about the results we're >>Seeing. You know, one of the things that's kind of not core in the keynote theme, but I think it's underlying message is clear in the industry, is the developer productivity. You said making things easy is a big deal, self-service, getting in and trying, these are what developer friendly tools are like and platform. So I have to ask you, cuz this comes up a lot in our kind of business conversation, is, is if you take digital transformation concept to its completion, assuming now you know, as a thought exercise, you completely transform a company with technology that's, that is the business transformation outcome. Take it to completion. What does that look like? I mean, if you go there you'd say, okay, the company is the app, the company is the data, it's not a department serving the business, it's the business. And so I think this is kind of what we're seeing as the next big mountain climb, which is companies that do transform there, they are technology companies, they're not a department like it. So I think a lot of companies are kind of saying, wait a minute, why would we have a department? It should be the company. What's your your your view on this because this >>Yeah, so I I've had the for good fortune of being able to talk to thousand customers all over the world. And you know, one thing John, they never tell me, they never tell me that they're innovating too quickly. In fact, they always tell me the reverse. They tell me all the obstacles and impediments they have to be able to be able to be able to move fast. So one of the reasons they gravitate to MongoDB is just the speed that they wish they can build applications to, to your point, developer productivity. And by definition, developer productivity is a proxy for innovation. The faster you can make your developers, you know, move, the faster they can push out code, the faster they can iterate and build new solutions or add more capabilities on the existing applications, the faster you can innovate either to, again, seize new opportunities or to respond to new threats in your business. >>And so that resonates with every C level executive. And to your point, the developers not some side hustle that they kind of think about once in a while. It's core to the business. So developers have amassed enormous amount of power and influence. You know, their, their, their engineering teams are front and center in terms of how they think about building capabilities and and building their business. And that's also obviously enabled, you know, to your point, every software company, every company's not becoming a software company because it all starts with softwares, software enables, defines or creates almost every company's value proposition. >>You know, it makes me smile because I love operating systems as one of my hobbies in college was, you know, systems programming and I remember those network kind of like the operating systems, the cloud. So, you know, everything's got specialized capabilities and that's a big theme here at Reinvent. If you look at the announcements Monday night with Peter DeSantis, you got, you got new instances, new chips. So this whole engine kind of specialized component is like an engine. You got a core and you got other subsystems. This is gonna be an integral part of how companies architect their platform or you know, Adam calls it the landing zone or whatever they wanna call it. But you gotta start seeing a new architectural thinking for companies. What's your, can you share your experience on how companies should look at this opportunity as a plethora of more goodness on the hardware? On hardware, but like chips and instances? Cause now you can mix and match. You've got, you've got, you got everything you need to kind of not roll your own but like really build foundational high performance capabilities. >>Yeah, so I I, so I think this is where I think Amazon is really enabling all companies, including, you know, companies like Mon db, you know, push the envelope and innovation. So for example, you know, the, the next big hurdle for us, I think we've seen two big platform shifts over the last 15 years of platform shifts, you know, to mobile and the platform shift to cloud. I believe the next big platform shift is going from dumb apps to smart apps, which you're building in, you know, machine learning and you know, AI and just very sophisticated automation. And when you start automating human decision making, rather than, you know, looking at a dashboard and saying, okay, I see the data now, now I have to do this. You can automate that into your applications and make your applications leveraging real time data become that much more smart. And that ultimately then becomes a developer challenge. And so we feel really good about our position in taking advantage of those next big trends and software leveraging the price performance curves that, you know, Amazon continues to push in terms of their hardware performance, networking performance, you know, you know, price, performance and storage to build those next generation of modern applications. >>Okay, so let me get this straight. You have next generation intelligent smart apps and you have AI generative solutions coming out around the corner. This is like pretty good position for Mongo to be in with data. I mean, this is what you do, you're in that exactly of the action. What's it like? I mean, you must be like trying to shake the world and wake up. The world's starting to wake up now through this. So what's, what's it like? >>Well, I mean we're really excited and bullish about the future. We think that we're well positioned because we know as to your point, you know, we have amassed amazing amount of developer mindshare. We are the most popular modern data platform out there in the world. There's developers in almost every corner of the planet using us to do something. And to your point, leveraging data and these advances in machine learning ai. And we think the more AI becomes democratized, not, you know, done by a bunch of data scientists sitting in some corner office, but essentially enabling developers to have the tools to build these very, very sophisticated, smart applications will, you know, will position as well. So that's, you know, obviously gonna be a focus for us over the, frankly, I think this is gonna be like a 10 year, 10 15 year run and we're just getting started in this whole >>Area. I think you guys are really well positioned. I think that's a great point. And Adam mentioned to me and, and Mike interviewed, he said on stage talk about it, the role of a data analyst kind of goes away. Everyone's a data analyst, right? You'll still see specialization on, on core data engineering, which is kind of like an SRE role for data. So data ops and data as code is a big deal making data applications. So again, exciting times and you guys are well positioned. If you had to bumper sticker the event this week here at Reinvent, what would you, how would you categorize this this point in time? I mean, Adam's great leader, he is gonna help educate customers how to use technology to, for business advantage and transformation. You know, Andy did a great job making technology great and innovative and setting the table, Adam's gotta bring it to the enterprises and businesses. So it's gonna be an interesting point in time we're in now. What, how would you categorize this year's reinvent, >>Right? I think the, the, the tech world is pivoting towards what I'd call rationalization or cost optimization. I think people obviously in, you know, the last 10 years have, you know, it's all about speed, speed, speed. And I think people still value speed, but they wanna do it at some sort of predictable cost model. And I think you're gonna see a lot more focus around cost and cost optimization. That's where we think having one platform is by definition of vendor consolidation way for people to cut costs so that they can basically, you know, still move fast but don't have to incur the tax of using a whole bunch of different point tools. And so we think we're well positioned. So the bumper sticker I think about is essentially, you know, do more for less with MongoDB. >>Yeah. And the developers on the front lines. Great stuff. You guys are great partner, a top partner at AWS and great reflection on, on where you guys been, but really where you are now and great opportunity. David Didier, thank you so much for spending the time and it's been great following Mongo and the continued rise of, of developers of the on the front lines really driving the business and that, and they are, I know, driving the business, so, and I think they're gonna continue Smart apps, intelligent apps, ai, generative apps are coming. I mean this is real. >>Thanks John. It's great speaking with >>You. Yeah, thanks. Thanks so much. Okay.

(outro music) >> Hey, I'm John Furrier, here with an exclusive interview with Ali Ghodsi, who's the CEO of Databricks. Ali, great to see you. Preview for reinvent. We're going to launch this story, exclusive Databricks material on the notes, after the keynotes prior to the keynotes and after the keynotes that reinvent. So great to see you. You know, you've been a partner of AWS for a very, very long time. I think five years ago, I think I first interviewed you, you were one of the first to publicly declare that this was a place to build a company on and not just post an application, but refactor capabilities to create, essentially a platform in the cloud, on the cloud. Not just an ISV; Independent Software Vendor, kind of an old term, we're talking about real platform like capability to change the game. Can you talk about your experience as an AWS partner? >> Yeah, look, so we started in 2013. I swiped my personal credit card on AWS and some of my co-founders did the same. And we started building. And we were excited because we just thought this is a much better way to launch a company because you can just much faster get time to market and launch your thing and you can get the end users much quicker access to the thing you're building. So we didn't really talk to anyone at AWS, we just swiped a credit card. And eventually they told us, "Hey, do you want to buy extra support?" "You're asking a lot of advanced questions from us." "Maybe you want to buy our advanced support." And we said, no, no, no, no. We're very advanced ourselves, we know what we're doing. We're not going to buy any advanced support. So, you know, we just built this, you know, startup from nothing on AWS without even talking to anyone there. So at some point, I think around 2017, they suddenly saw this company with maybe a hundred million ARR pop up on their radar and it's driving massive amounts of compute, massive amounts of data. And it took a little bit in the beginning just us to get to know each other because as I said, it's like we were not on their radar and we weren't really looking, we were just doing our thing. And then over the years the partnership has deepened and deepened and deepened and then with, you know, Andy (indistinct) really leaning into the partnership, he mentioned us at Reinvent. And then we sort of figured out a way to really integrate the two service, the Databricks platform with AWS . And today it's an amazing partnership. You know, we directly connected with the general managers for the services. We're connected at the CEO level, you know, the sellers get compensated for pushing Databricks, we're, we have multiple offerings on their marketplace. We have a native offering on AWS. You know, we're prominently always sort of marketed and you know, we're aligned also vision wise in what we're trying to do. So yeah, we've come a very, very long way. >> Do you consider yourself a SaaS app or an ISV or do you see yourself more of a platform company because you have customers. How would you categorize your category as a company? >> Well, it's a data platform, right? And actually the, the strategy of the Databricks is take what's otherwise five, six services in the industry or five, six different startups, but do them as part of one data platform that's integrated. So in one word, the strategy of data bricks is "unification." We call it the data lake house. But really the idea behind the data lake house is that of unification, or in more words it's, "The whole is greater than the sum of its parts." So you could actually go and buy five, six services out there or actually use five, six services from the cloud vendors, stitch it together and it kind of resembles Databricks. Our power is in doing those integrated, together in a way in which it's really, really easy and simple to use for end users. So yeah, we're a data platform. I wouldn't, you know, ISV that's a old term, you know, Independent Software Vendor. You know, I think, you know, we have actually a whole slew of ISVs on top of Databricks, that integrate with our platform. And you know, in our marketplace as well as in our partner connect, we host those ISVs that then, you know, work on top of the data that we have in the Databricks, data lake house. >> You know, I think one of the things your journey has been great to document and watch from the beginning. I got to give you guys credit over there and props, congratulations. But I think you're the poster child as a company to what we see enterprises doing now. So go back in time when you guys swiped a credit card, you didn't need attending technical support because you guys had brains, you were refactoring, rethinking. It wasn't just banging out software, you had, you were doing some complex things. It wasn't like it was just write some software hosted on server. It was really a lot more. And as a result your business worth billions of dollars. I think 38 billion or something like that, big numbers, big numbers of great revenue growth as well, billions in revenue. You have customers, you have an ecosystem, you have data applications on top of Databricks. So in a way you're a cloud on top of the cloud. So is there a cloud on top of the cloud? So you have ISVs, Amazon has ISVs. Can you take us through what this means and at this point in history, because this seems to be an advanced version of benefits of platforming and refactoring, leveraging say AWS. >> Yeah, so look, when we started, there was really only one game in town. It was AWS. So it was one cloud. And the strategy of the company then was, well Amazon had this beautiful set of services that they're building bottom up, they have storage, compute, networking, and then they have databases and so on. But it's a lot of services. So let us not directly compete with AWS and try to take out one of their services. Let's not do that because frankly we can't. We were not of that size. They had the scale, they had the size and they were the only cloud vendor in town. So our strategy instead was, let's do something else. Let's not compete directly with say, a particular service they're building, let's take a different strategy. What if we had a unified holistic data platform, where it's just one integrated service end to end. So think of it as Microsoft office, which contains PowerPoint, and Word, and Excel and even Access, if you want to use it. What if we build that and AWS has this really amazing knack for releasing things, you know services, lots of them, every reinvent. And they're sort of a DevOps person's dream and you can stitch these together and you know you have to be technical. How do we elevate that and make it simpler and integrate it? That was our original strategy and it resonated with a segment of the market. And the reason it worked with AWS so that we wouldn't butt heads with AWS was because we weren't a direct replacement for this service or for that service, we were taking a different approach. And AWS, because credit goes to them, they're so customer obsessed, they would actually do what's right for the customer. So if the customer said we want this unified thing, their sellers would actually say, okay, so then you should use Databricks. So they truly are customer obsessed in that way. And I really mean it, John. Things have changed over the years. They're not the only cloud anymore. You know, Azure is real, GCP is real, there's also Alibaba. And now over 70% of our customers are on more than one cloud. So now what we hear from them is, not only want, do we want a simplified, unified thing, but we want it also to work across the clouds. Because those of them that are seriously considering multiple clouds, they don't want to use a service on cloud one and then use a similar service on cloud two. But it's a little bit different. And now they have to do twice the work to make it work. You know, John, it's hard enough as it is, like it's this data stuff and analytics. It's not a walk in the park, you know. You hire an administrator in the back office that clicks a button and its just, now you're a data driven digital transformed company. It's hard. If you now have to do it again on the second cloud with different set of services and then again on a third cloud with a different set of services. That's very, very costly. So the strategy then has changed that, how do we take that unified simple approach and make it also the same and standardize across the clouds, but then also integrate it as far down as we can on each of the clouds. So that you're not giving up any of the benefits that the particular cloud has. >> Yeah, I think one of the things that we see, and I want get your reaction to this, is this rise of the super cloud as we call it. I think you were involved in the Sky paper that I saw your position paper came out after we had introduced Super Cloud, which is great. Congratulations to the Berkeley team, wearing the hat here. But you guys are, I think a driver of this because you're creating the need for these things. You're saying, okay, we went on one cloud with AWS and you didn't hide that. And now you're publicly saying there's other clouds too, increased ham for your business. And customers have multiple clouds in their infrastructure for the best of breed that they have. Okay, get that. But there's still a challenge around the innovation, growth that's still around the corner. We still have a supply chain problem, we still have skill gaps. You know, you guys are unique at Databricks as other these big examples of super clouds that are developing. Enterprises don't have the Databricks kind of talent. They need, they need turnkey solutions. So Adam and the team at Amazon are promoting, you know, more solution oriented approaches higher up on the stack. You're starting to see kind of like, I won't say templates, but you know, almost like application specific headless like, low code, no code capability to accelerate clients who are wanting to write code for the modern error. Right, so this kind of, and then now you, as you guys pointed out with these common services, you're pushing the envelope. So you're saying, hey, I need to compete, I don't want to go to my customers and have them to have a staff or this cloud and this cloud and this cloud because they don't have the staff. Or if they do, they're very unique. So what's your reaction? Because this kind is the, it kind of shows your leadership as a partner of AWS and the clouds, but also highlights I think what's coming. But you share your reaction. >> Yeah, look, it's, first of all, you know, I wish I could take credit for this but I can't because it's really the customers that have decided to go on multiple clouds. You know, it's not Databricks that you know, push this or some other vendor, you know, that, Snowflake or someone who pushed this and now enterprises listened to us and they picked two clouds. That's not how it happened. The enterprises picked two clouds or three clouds themselves and we can get into why, but they did that. So this largely just happened in the market. We as data platforms responded to what they're then saying, which is they're saying, "I don't want to redo this again on the other cloud." So I think the writing is on the wall. I think it's super obvious what's going to happen next. They will say, "Any service I'm using, it better work exactly the same on all the clouds." You know, that's what's going to happen. So in the next five years, every enterprise will say, "I'm going to use the service, but you better make sure that this service works equally well on all of the clouds." And obviously the multicloud vendors like us, are there to do that. But I actually think that what you're going to see happening is that you're going to see the cloud vendors changing the existing services that they have to make them work on the other clouds. That's what's goin to happen, I think. >> Yeah, and I think I would add that, first of all, I agree with you. I think that's going to be a forcing function. Because I think you're driving it. You guys are in a way, one, are just an actor in the driving this because you're on the front end of this and there are others and there will be people following. But I think to me, I'm a cloud vendor, I got to differentiate. Adam, If I'm Adam Saleski, I got to say, "Hey, I got to differentiate." So I don't wan to get stuck in the middle, so to speak. Am I just going to innovate on the hardware AKA infrastructure or am I going to innovate at the higher level services? So what we're talking about here is the tail of two clouds within Amazon, for instance. So do I innovate on the silicon and get low level into the physics and squeeze performance out of the hardware and infrastructure? Or do I focus on ease of use at the top of the stack for the developers? So again, there's a channel of two clouds here. So I got to ask you, how do they differentiate? Number one and number two, I never heard a developer ever say, "I want to run my app or workload on the slower cloud." So I mean, you know, back when we had PCs you wanted to go, "I want the fastest processor." So again, you can have common level services, but where is that performance differentiation with the cloud? What do the clouds do in your opinion? >> Yeah, look, I think it's pretty clear. I think that it's, this is, you know, no surprise. Probably 70% or so of the revenue is in the lower infrastructure layers, compute, storage, networking. And they have to win that. They have to be competitive there. As you said, you can say, oh you know, I guess my CPUs are slower than the other cloud, but who cares? I have amazing other services which only work on my cloud by the way, right? That's not going to be a winning recipe. So I think all three are laser focused on, we going to have specialized hardware and the nuts and bolts of the infrastructure, we can do it better than the other clouds for sure. And you can see lots of innovation happening there, right? The Graviton chips, you know, we see huge price performance benefits in those chips. I mean it's real, right? It's basically a 20, 30% free lunch. You know, why wouldn't you, why wouldn't you go for it there? There's no downside. You know, there's no, "got you" or no catch. But we see Azure doing the same thing now, they're also building their own chips and we know that Google builds specialized machine learning chips, TPU, Tenor Processing Units. So their legs are focused on that. I don't think they can give up that or focused on higher levels if they had to pick bets. And I think actually in the next few years, most of us have to make more, we have to be more deliberate and calculated in the picks we do. I think in the last five years, most of us have said, "We'll do all of it." You know. >> Well you made a good bet with Spark, you know, the duke was pretty obvious trend that was, everyone was shut on that bandwagon and you guys picked a big bet with Spark. Look what happened with you guys? So again, I love this betting kind of concept because as the world matures, growth slows down and shifts and that next wave of value coming in, AKA customers, they're going to integrate with a new ecosystem. A new kind of partner network for AWS and the other clouds. But with aws they're going to need to nurture the next Databricks. They're going to need to still provide that SaaS, ISV like experience for, you know, a basic software hosting or some application. But I go to get your thoughts on this idea of multiple clouds because if I'm a developer, the old days was, old days, within our decade, full stack developer- >> It was two years ago, yeah (John laughing) >> This is a decade ago, full stack and then the cloud came in, you kind had the half stack and then you would do some things. It seems like the clouds are trying to say, we want to be the full stack or not. Or is it still going to be, you know, I'm an application like a PC and a Mac, I'm going to write the same application for both hardware. I mean what's your take on this? Are they trying to do full stack and you see them more like- >> Absolutely. I mean look, of course they're going, they have, I mean they have over 300, I think Amazon has over 300 services, right? That's not just compute, storage, networking, it's the whole stack, right? But my key point is, I think they have to nail the core infrastructure storage compute networking because the three clouds that are there competing, they're formidable companies with formidable balance sheets and it doesn't look like any of them is going to throw in the towel and say, we give up. So I think it's going to intensify. And given that they have a 70% revenue on that infrastructure layer, I think they, if they have to pick their bets, I think they'll focus it on that infrastructure layer. I think the layer above where they're also placing bets, they're doing that, the full stack, right? But there I think the demand will be, can you make that work on the other clouds? And therein lies an innovator's dilemma because if I make it work on the other clouds, then I'm foregoing that 70% revenue of the infrastructure. I'm not getting it. The other cloud vendor is going to get it. So should I do that or not? Second, is the other cloud vendor going to be welcoming of me making my service work on their cloud if I am a competing cloud, right? And what kind of terms of service are I giving me? And am I going to really invest in doing that? And I think right now we, you know, most, the vast, vast, vast majority of the services only work on the one cloud that you know, it's built on. It doesn't work on others, but this will shift. >> Yeah, I think the innovators dilemma is also very good point. And also add, it's an integrators dilemma too because now you talk about integration across services. So I believe that the super cloud movement's going to happen before Sky. And I think what explained by that, what you guys did and what other companies are doing by representing advanced, I call platform engineering, refactoring an existing market really fast, time to value and CAPEX is, I mean capital, market cap is going to be really fast. I think there's going to be an opportunity for those to emerge that's going to set the table for global multicloud ultimately in the future. So I think you're going to start to see the same pattern of what you guys did get in, leverage the hell out of it, use it, not in the way just to host, but to refactor and take down territory of markets. So number one, and then ultimately you get into, okay, I want to run some SLA across services, then there's a little bit more complication. I think that's where you guys put that beautiful paper out on Sky Computing. Okay, that makes sense. Now if you go to today's market, okay, I'm betting on Amazon because they're the best, this is the best cloud win scenario, not the most robust cloud. So if I'm a developer, I want the best. How do you look at their bet when it comes to data? Because now they've got machine learning, Swami's got a big keynote on Wednesday, I'm expecting to see a lot of AI and machine learning. I'm expecting to hear an end to end data story. This is what you do, so as a major partner, how do you view the moves Amazon's making and the bets they're making with data and machine learning and AI? >> First I want to lift off my hat to AWS for being customer obsessed. So I know that if a customer wants Databricks, I know that AWS and their sellers will actually help us get that customer deploy Databricks. Now which of the services is the customer going to pick? Are they going to pick ours or the end to end, what Swami is going to present on stage? Right? So that's the question we're getting. But I wanted to start with by just saying, their customer obsessed. So I think they're going to do the right thing for the customer and I see the evidence of it again and again and again. So kudos to them. They're amazing at this actually. Ultimately our bet is, customers want this to be simple, integrated, okay? So yes there are hundreds of services that together give you the end to end experience and they're very customizable that AWS gives you. But if you want just something simply integrated that also works across the clouds, then I think there's a special place for Databricks. And I think the lake house approach that we have, which is an integrated, completely integrated, we integrate data lakes with data warehouses, integrate workflows with machine learning, with real time processing, all these in one platform. I think there's going to be tailwinds because I think the most important thing that's going to happen in the next few years is that every customer is going to now be obsessed, given the recession and the environment we're in. How do I cut my costs? How do I cut my costs? And we learn this from the customers they're adopting the lake house because they're thinking, instead of using five vendors or three vendors, I can simplify it down to one with you and I can cut my cost. So I think that's going to be one of the main drivers of why people bet on the lake house because it helps them lower their TCO; Total Cost of Ownership. And it's as simple as that. Like I have three things right now. If I can get the same job done of those three with one, I'd rather do that. And by the way, if it's three or four across two clouds and I can just use one and it just works across two clouds, I'm going to do that. Because my boss is telling me I need to cut my budget. >> (indistinct) (John laughing) >> Yeah, and I'd rather not to do layoffs and they're asking me to do more. How can I get smaller budgets, not lay people off and do more? I have to cut, I have to optimize. What's happened in the last five, six years is there's been a huge sprawl of services and startups, you know, you know most of them, all these startups, all of them, all the activity, all the VC investments, well those companies sold their software, right? Even if a startup didn't make it big, you know, they still sold their software to some vendors. So the ecosystem is now full of lots and lots and lots and lots of different software. And right now people are looking, how do I consolidate, how do I simplify, how do I cut my costs? >> And you guys have a great solution. You're also an arms dealer and a innovator. So I have to ask this question, because you're a professor of the industry as well as at Berkeley, you've seen a lot of the historical innovations. If you look at the moment we're in right now with the recession, okay we had COVID, okay, it changed how people work, you know, people working at home, provisioning VLAN, all that (indistinct) infrastructure, okay, yeah, technology and cloud health. But we're in a recession. This is the first recession where the Amazon and the other cloud, mainly Amazon Web Services is a major economic puzzle in the piece. So they were never around before, even 2008, they were too small. They're now a major economic enabler, player, they're serving startups, enterprises, they have super clouds like you guys. They're a force and the people, their customers are cutting back but also they can also get faster. So agility is now an equation in the economic recovery. And I want to get your thoughts because you just brought that up. Customers can actually use the cloud and Databricks to actually get out of the recovery because no one's going to say, stop making profit or make more profit. So yeah, cut costs, be more efficient, but agility's also like, let's drive more revenue. So in this digital transformation, if you take this to conclusion, every company transforms, their company is the app. So their revenue is tied directly to their technology deployment. What's your reaction and comment to that because this is a new historical moment where cloud and scale and data, actually could be configured in a way to actually change the nature of a business in such a short time. And with the recession looming, no one's got time to wait. >> Yeah, absolutely. Look, the secular tailwind in the market is that of, you know, 10 years ago it was software is eating the world, now it's AI's going to eat all of software software. So more and more we're going to have, wherever you have software, which is everywhere now because it's eaten the world, it's going to be eaten up by AI and data. You know, AI doesn't exist without data so they're synonymous. You can't do machine learning if you don't have data. So yeah, you're going to see that everywhere and that automation will help people simplify things and cut down the costs and automate more things. And in the cloud you can also do that by changing your CAPEX to OPEX. So instead of I invest, you know, 10 million into a data center that I buy, I'm going to have headcount to manage the software. Why don't we change this to OPEX? And then they are going to optimize it. They want to lower the TCO because okay, it's in the cloud. but I do want the costs to be much lower that what they were in the previous years. Last five years, nobody cared. Who cares? You know what it costs. You know, there's a new brave world out there. Now there's like, no, it has to be efficient. So I think they're going to optimize it. And I think this lake house approach, which is an integration of the lakes and the warehouse, allows you to rationalize the two and simplify them. It allows you to basically rationalize away the data warehouse. So I think much faster we're going to see the, why do I need the data warehouse? If I can get the same thing done with the lake house for fraction of the cost, that's what's going to happen. I think there's going to be focus on that simplification. But I agree with you. Ultimately everyone knows, everybody's a software company. Every company out there is a software company and in the next 10 years, all of them are also going to be AI companies. So that is going to continue. >> (indistinct), dev's going to stop. And right sizing right now is a key economic forcing function. Final question for you and I really appreciate you taking the time. This year Reinvent, what's the bumper sticker in your mind around what's the most important industry dynamic, power dynamic, ecosystem dynamic that people should pay attention to as we move from the brave new world of okay, I see cloud, cloud operations. I need to really make it structurally change my business. How do I, what's the most important story? What's the bumper sticker in your mind for Reinvent? >> Bumper sticker? lake house 24. (John laughing) >> That's data (indistinct) bumper sticker. What's the- >> (indistinct) in the market. No, no, no, no. You know, it's, AWS talks about, you know, all of their services becoming a lake house because they want the center of the gravity to be S3, their lake. And they want all the services to directly work on that, so that's a lake house. We're Bumper see Microsoft with Synapse, modern, you know the modern intelligent data platform. Same thing there. We're going to see the same thing, we already seeing it on GCP with Big Lake and so on. So I actually think it's the how do I reduce my costs and the lake house integrates those two. So that's one of the main ways you can rationalize and simplify. You get in the lake house, which is the name itself is a (indistinct) of two things, right? Lake house, "lake" gives you the AI, "house" give you the database data warehouse. So you get your AI and you get your data warehousing in one place at the lower cost. So for me, the bumper sticker is lake house, you know, 24. >> All right. Awesome Ali, well thanks for the exclusive interview. Appreciate it and get to see you. Congratulations on your success and I know you guys are going to be fine. >> Awesome. Thank you John. It's always a pleasure. >> Always great to chat with you again. >> Likewise. >> You guys are a great team. We're big fans of what you guys have done. We think you're an example of what we call "super cloud." Which is getting the hype up and again your paper speaks to some of the innovation, which I agree with by the way. I think that that approach of not forcing standards is really smart. And I think that's absolutely correct, that having the market still innovate is going to be key. standards with- >> Yeah, I love it. We're big fans too, you know, you're doing awesome work. We'd love to continue the partnership. >> So, great, great Ali, thanks. >> Take care (outro music)

(outro music) >> Hey, I'm John Furrier, here with an exclusive interview with Ali Ghodsi, who's the CEO of Databricks. Ali, great to see you. Preview for reinvent. We're going to launch this story, exclusive Databricks material on the notes, after the keynotes prior to the keynotes and after the keynotes that reinvent. So great to see you. You know, you've been a partner of AWS for a very, very long time. I think five years ago, I think I first interviewed you, you were one of the first to publicly declare that this was a place to build a company on and not just post an application, but refactor capabilities to create, essentially a platform in the cloud, on the cloud. Not just an ISV; Independent Software Vendor, kind of an old term, we're talking about real platform like capability to change the game. Can you talk about your experience as an AWS partner? >> Yeah, look, so we started in 2013. I swiped my personal credit card on AWS and some of my co-founders did the same. And we started building. And we were excited because we just thought this is a much better way to launch a company because you can just much faster get time to market and launch your thing and you can get the end users much quicker access to the thing you're building. So we didn't really talk to anyone at AWS, we just swiped a credit card. And eventually they told us, "Hey, do you want to buy extra support?" "You're asking a lot of advanced questions from us." "Maybe you want to buy our advanced support." And we said, no, no, no, no. We're very advanced ourselves, we know what we're doing. We're not going to buy any advanced support. So, you know, we just built this, you know, startup from nothing on AWS without even talking to anyone there. So at some point, I think around 2017, they suddenly saw this company with maybe a hundred million ARR pop up on their radar and it's driving massive amounts of compute, massive amounts of data. And it took a little bit in the beginning just us to get to know each other because as I said, it's like we were not on their radar and we weren't really looking, we were just doing our thing. And then over the years the partnership has deepened and deepened and deepened and then with, you know, Andy (indistinct) really leaning into the partnership, he mentioned us at Reinvent. And then we sort of figured out a way to really integrate the two service, the Databricks platform with AWS . And today it's an amazing partnership. You know, we directly connected with the general managers for the services. We're connected at the CEO level, you know, the sellers get compensated for pushing Databricks, we're, we have multiple offerings on their marketplace. We have a native offering on AWS. You know, we're prominently always sort of marketed and you know, we're aligned also vision wise in what we're trying to do. So yeah, we've come a very, very long way. >> Do you consider yourself a SaaS app or an ISV or do you see yourself more of a platform company because you have customers. How would you categorize your category as a company? >> Well, it's a data platform, right? And actually the, the strategy of the Databricks is take what's otherwise five, six services in the industry or five, six different startups, but do them as part of one data platform that's integrated. So in one word, the strategy of data bricks is "unification." We call it the data lake house. But really the idea behind the data lake house is that of unification, or in more words it's, "The whole is greater than the sum of its parts." So you could actually go and buy five, six services out there or actually use five, six services from the cloud vendors, stitch it together and it kind of resembles Databricks. Our power is in doing those integrated, together in a way in which it's really, really easy and simple to use for end users. So yeah, we're a data platform. I wouldn't, you know, ISV that's a old term, you know, Independent Software Vendor. You know, I think, you know, we have actually a whole slew of ISVs on top of Databricks, that integrate with our platform. And you know, in our marketplace as well as in our partner connect, we host those ISVs that then, you know, work on top of the data that we have in the Databricks, data lake house. >> You know, I think one of the things your journey has been great to document and watch from the beginning. I got to give you guys credit over there and props, congratulations. But I think you're the poster child as a company to what we see enterprises doing now. So go back in time when you guys swiped a credit card, you didn't need attending technical support because you guys had brains, you were refactoring, rethinking. It wasn't just banging out software, you had, you were doing some complex things. It wasn't like it was just write some software hosted on server. It was really a lot more. And as a result your business worth billions of dollars. I think 38 billion or something like that, big numbers, big numbers of great revenue growth as well, billions in revenue. You have customers, you have an ecosystem, you have data applications on top of Databricks. So in a way you're a cloud on top of the cloud. So is there a cloud on top of the cloud? So you have ISVs, Amazon has ISVs. Can you take us through what this means and at this point in history, because this seems to be an advanced version of benefits of platforming and refactoring, leveraging say AWS. >> Yeah, so look, when we started, there was really only one game in town. It was AWS. So it was one cloud. And the strategy of the company then was, well Amazon had this beautiful set of services that they're building bottom up, they have storage, compute, networking, and then they have databases and so on. But it's a lot of services. So let us not directly compete with AWS and try to take out one of their services. Let's not do that because frankly we can't. We were not of that size. They had the scale, they had the size and they were the only cloud vendor in town. So our strategy instead was, let's do something else. Let's not compete directly with say, a particular service they're building, let's take a different strategy. What if we had a unified holistic data platform, where it's just one integrated service end to end. So think of it as Microsoft office, which contains PowerPoint, and Word, and Excel and even Access, if you want to use it. What if we build that and AWS has this really amazing knack for releasing things, you know services, lots of them, every reinvent. And they're sort of a DevOps person's dream and you can stitch these together and you know you have to be technical. How do we elevate that and make it simpler and integrate it? That was our original strategy and it resonated with a segment of the market. And the reason it worked with AWS so that we wouldn't butt heads with AWS was because we weren't a direct replacement for this service or for that service, we were taking a different approach. And AWS, because credit goes to them, they're so customer obsessed, they would actually do what's right for the customer. So if the customer said we want this unified thing, their sellers would actually say, okay, so then you should use Databricks. So they truly are customer obsessed in that way. And I really mean it, John. Things have changed over the years. They're not the only cloud anymore. You know, Azure is real, GCP is real, there's also Alibaba. And now over 70% of our customers are on more than one cloud. So now what we hear from them is, not only want, do we want a simplified, unified thing, but we want it also to work across the clouds. Because those of them that are seriously considering multiple clouds, they don't want to use a service on cloud one and then use a similar service on cloud two. But it's a little bit different. And now they have to do twice the work to make it work. You know, John, it's hard enough as it is, like it's this data stuff and analytics. It's not a walk in the park, you know. You hire an administrator in the back office that clicks a button and its just, now you're a data driven digital transformed company. It's hard. If you now have to do it again on the second cloud with different set of services and then again on a third cloud with a different set of services. That's very, very costly. So the strategy then has changed that, how do we take that unified simple approach and make it also the same and standardize across the clouds, but then also integrate it as far down as we can on each of the clouds. So that you're not giving up any of the benefits that the particular cloud has. >> Yeah, I think one of the things that we see, and I want get your reaction to this, is this rise of the super cloud as we call it. I think you were involved in the Sky paper that I saw your position paper came out after we had introduced Super Cloud, which is great. Congratulations to the Berkeley team, wearing the hat here. But you guys are, I think a driver of this because you're creating the need for these things. You're saying, okay, we went on one cloud with AWS and you didn't hide that. And now you're publicly saying there's other clouds too, increased ham for your business. And customers have multiple clouds in their infrastructure for the best of breed that they have. Okay, get that. But there's still a challenge around the innovation, growth that's still around the corner. We still have a supply chain problem, we still have skill gaps. You know, you guys are unique at Databricks as other these big examples of super clouds that are developing. Enterprises don't have the Databricks kind of talent. They need, they need turnkey solutions. So Adam and the team at Amazon are promoting, you know, more solution oriented approaches higher up on the stack. You're starting to see kind of like, I won't say templates, but you know, almost like application specific headless like, low code, no code capability to accelerate clients who are wanting to write code for the modern error. Right, so this kind of, and then now you, as you guys pointed out with these common services, you're pushing the envelope. So you're saying, hey, I need to compete, I don't want to go to my customers and have them to have a staff or this cloud and this cloud and this cloud because they don't have the staff. Or if they do, they're very unique. So what's your reaction? Because this kind is the, it kind of shows your leadership as a partner of AWS and the clouds, but also highlights I think what's coming. But you share your reaction. >> Yeah, look, it's, first of all, you know, I wish I could take credit for this but I can't because it's really the customers that have decided to go on multiple clouds. You know, it's not Databricks that you know, push this or some other vendor, you know, that, Snowflake or someone who pushed this and now enterprises listened to us and they picked two clouds. That's not how it happened. The enterprises picked two clouds or three clouds themselves and we can get into why, but they did that. So this largely just happened in the market. We as data platforms responded to what they're then saying, which is they're saying, "I don't want to redo this again on the other cloud." So I think the writing is on the wall. I think it's super obvious what's going to happen next. They will say, "Any service I'm using, it better work exactly the same on all the clouds." You know, that's what's going to happen. So in the next five years, every enterprise will say, "I'm going to use the service, but you better make sure that this service works equally well on all of the clouds." And obviously the multicloud vendors like us, are there to do that. But I actually think that what you're going to see happening is that you're going to see the cloud vendors changing the existing services that they have to make them work on the other clouds. That's what's goin to happen, I think. >> Yeah, and I think I would add that, first of all, I agree with you. I think that's going to be a forcing function. Because I think you're driving it. You guys are in a way, one, are just an actor in the driving this because you're on the front end of this and there are others and there will be people following. But I think to me, I'm a cloud vendor, I got to differentiate. Adam, If I'm Adam Saleski, I got to say, "Hey, I got to differentiate." So I don't wan to get stuck in the middle, so to speak. Am I just going to innovate on the hardware AKA infrastructure or am I going to innovate at the higher level services? So what we're talking about here is the tail of two clouds within Amazon, for instance. So do I innovate on the silicon and get low level into the physics and squeeze performance out of the hardware and infrastructure? Or do I focus on ease of use at the top of the stack for the developers? So again, there's a channel of two clouds here. So I got to ask you, how do they differentiate? Number one and number two, I never heard a developer ever say, "I want to run my app or workload on the slower cloud." So I mean, you know, back when we had PCs you wanted to go, "I want the fastest processor." So again, you can have common level services, but where is that performance differentiation with the cloud? What do the clouds do in your opinion? >> Yeah, look, I think it's pretty clear. I think that it's, this is, you know, no surprise. Probably 70% or so of the revenue is in the lower infrastructure layers, compute, storage, networking. And they have to win that. They have to be competitive there. As you said, you can say, oh you know, I guess my CPUs are slower than the other cloud, but who cares? I have amazing other services which only work on my cloud by the way, right? That's not going to be a winning recipe. So I think all three are laser focused on, we going to have specialized hardware and the nuts and bolts of the infrastructure, we can do it better than the other clouds for sure. And you can see lots of innovation happening there, right? The Graviton chips, you know, we see huge price performance benefits in those chips. I mean it's real, right? It's basically a 20, 30% free lunch. You know, why wouldn't you, why wouldn't you go for it there? There's no downside. You know, there's no, "got you" or no catch. But we see Azure doing the same thing now, they're also building their own chips and we know that Google builds specialized machine learning chips, TPU, Tenor Processing Units. So their legs are focused on that. I don't think they can give up that or focused on higher levels if they had to pick bets. And I think actually in the next few years, most of us have to make more, we have to be more deliberate and calculated in the picks we do. I think in the last five years, most of us have said, "We'll do all of it." You know. >> Well you made a good bet with Spark, you know, the duke was pretty obvious trend that was, everyone was shut on that bandwagon and you guys picked a big bet with Spark. Look what happened with you guys? So again, I love this betting kind of concept because as the world matures, growth slows down and shifts and that next wave of value coming in, AKA customers, they're going to integrate with a new ecosystem. A new kind of partner network for AWS and the other clouds. But with aws they're going to need to nurture the next Databricks. They're going to need to still provide that SaaS, ISV like experience for, you know, a basic software hosting or some application. But I go to get your thoughts on this idea of multiple clouds because if I'm a developer, the old days was, old days, within our decade, full stack developer- >> It was two years ago, yeah (John laughing) >> This is a decade ago, full stack and then the cloud came in, you kind had the half stack and then you would do some things. It seems like the clouds are trying to say, we want to be the full stack or not. Or is it still going to be, you know, I'm an application like a PC and a Mac, I'm going to write the same application for both hardware. I mean what's your take on this? Are they trying to do full stack and you see them more like- >> Absolutely. I mean look, of course they're going, they have, I mean they have over 300, I think Amazon has over 300 services, right? That's not just compute, storage, networking, it's the whole stack, right? But my key point is, I think they have to nail the core infrastructure storage compute networking because the three clouds that are there competing, they're formidable companies with formidable balance sheets and it doesn't look like any of them is going to throw in the towel and say, we give up. So I think it's going to intensify. And given that they have a 70% revenue on that infrastructure layer, I think they, if they have to pick their bets, I think they'll focus it on that infrastructure layer. I think the layer above where they're also placing bets, they're doing that, the full stack, right? But there I think the demand will be, can you make that work on the other clouds? And therein lies an innovator's dilemma because if I make it work on the other clouds, then I'm foregoing that 70% revenue of the infrastructure. I'm not getting it. The other cloud vendor is going to get it. So should I do that or not? Second, is the other cloud vendor going to be welcoming of me making my service work on their cloud if I am a competing cloud, right? And what kind of terms of service are I giving me? And am I going to really invest in doing that? And I think right now we, you know, most, the vast, vast, vast majority of the services only work on the one cloud that you know, it's built on. It doesn't work on others, but this will shift. >> Yeah, I think the innovators dilemma is also very good point. And also add, it's an integrators dilemma too because now you talk about integration across services. So I believe that the super cloud movement's going to happen before Sky. And I think what explained by that, what you guys did and what other companies are doing by representing advanced, I call platform engineering, refactoring an existing market really fast, time to value and CAPEX is, I mean capital, market cap is going to be really fast. I think there's going to be an opportunity for those to emerge that's going to set the table for global multicloud ultimately in the future. So I think you're going to start to see the same pattern of what you guys did get in, leverage the hell out of it, use it, not in the way just to host, but to refactor and take down territory of markets. So number one, and then ultimately you get into, okay, I want to run some SLA across services, then there's a little bit more complication. I think that's where you guys put that beautiful paper out on Sky Computing. Okay, that makes sense. Now if you go to today's market, okay, I'm betting on Amazon because they're the best, this is the best cloud win scenario, not the most robust cloud. So if I'm a developer, I want the best. How do you look at their bet when it comes to data? Because now they've got machine learning, Swami's got a big keynote on Wednesday, I'm expecting to see a lot of AI and machine learning. I'm expecting to hear an end to end data story. This is what you do, so as a major partner, how do you view the moves Amazon's making and the bets they're making with data and machine learning and AI? >> First I want to lift off my hat to AWS for being customer obsessed. So I know that if a customer wants Databricks, I know that AWS and their sellers will actually help us get that customer deploy Databricks. Now which of the services is the customer going to pick? Are they going to pick ours or the end to end, what Swami is going to present on stage? Right? So that's the question we're getting. But I wanted to start with by just saying, their customer obsessed. So I think they're going to do the right thing for the customer and I see the evidence of it again and again and again. So kudos to them. They're amazing at this actually. Ultimately our bet is, customers want this to be simple, integrated, okay? So yes there are hundreds of services that together give you the end to end experience and they're very customizable that AWS gives you. But if you want just something simply integrated that also works across the clouds, then I think there's a special place for Databricks. And I think the lake house approach that we have, which is an integrated, completely integrated, we integrate data lakes with data warehouses, integrate workflows with machine learning, with real time processing, all these in one platform. I think there's going to be tailwinds because I think the most important thing that's going to happen in the next few years is that every customer is going to now be obsessed, given the recession and the environment we're in. How do I cut my costs? How do I cut my costs? And we learn this from the customers they're adopting the lake house because they're thinking, instead of using five vendors or three vendors, I can simplify it down to one with you and I can cut my cost. So I think that's going to be one of the main drivers of why people bet on the lake house because it helps them lower their TCO; Total Cost of Ownership. And it's as simple as that. Like I have three things right now. If I can get the same job done of those three with one, I'd rather do that. And by the way, if it's three or four across two clouds and I can just use one and it just works across two clouds, I'm going to do that. Because my boss is telling me I need to cut my budget. >> (indistinct) (John laughing) >> Yeah, and I'd rather not to do layoffs and they're asking me to do more. How can I get smaller budgets, not lay people off and do more? I have to cut, I have to optimize. What's happened in the last five, six years is there's been a huge sprawl of services and startups, you know, you know most of them, all these startups, all of them, all the activity, all the VC investments, well those companies sold their software, right? Even if a startup didn't make it big, you know, they still sold their software to some vendors. So the ecosystem is now full of lots and lots and lots and lots of different software. And right now people are looking, how do I consolidate, how do I simplify, how do I cut my costs? >> And you guys have a great solution. You're also an arms dealer and a innovator. So I have to ask this question, because you're a professor of the industry as well as at Berkeley, you've seen a lot of the historical innovations. If you look at the moment we're in right now with the recession, okay we had COVID, okay, it changed how people work, you know, people working at home, provisioning VLAN, all that (indistinct) infrastructure, okay, yeah, technology and cloud health. But we're in a recession. This is the first recession where the Amazon and the other cloud, mainly Amazon Web Services is a major economic puzzle in the piece. So they were never around before, even 2008, they were too small. They're now a major economic enabler, player, they're serving startups, enterprises, they have super clouds like you guys. They're a force and the people, their customers are cutting back but also they can also get faster. So agility is now an equation in the economic recovery. And I want to get your thoughts because you just brought that up. Customers can actually use the cloud and Databricks to actually get out of the recovery because no one's going to say, stop making profit or make more profit. So yeah, cut costs, be more efficient, but agility's also like, let's drive more revenue. So in this digital transformation, if you take this to conclusion, every company transforms, their company is the app. So their revenue is tied directly to their technology deployment. What's your reaction and comment to that because this is a new historical moment where cloud and scale and data, actually could be configured in a way to actually change the nature of a business in such a short time. And with the recession looming, no one's got time to wait. >> Yeah, absolutely. Look, the secular tailwind in the market is that of, you know, 10 years ago it was software is eating the world, now it's AI's going to eat all of software software. So more and more we're going to have, wherever you have software, which is everywhere now because it's eaten the world, it's going to be eaten up by AI and data. You know, AI doesn't exist without data so they're synonymous. You can't do machine learning if you don't have data. So yeah, you're going to see that everywhere and that automation will help people simplify things and cut down the costs and automate more things. And in the cloud you can also do that by changing your CAPEX to OPEX. So instead of I invest, you know, 10 million into a data center that I buy, I'm going to have headcount to manage the software. Why don't we change this to OPEX? And then they are going to optimize it. They want to lower the TCO because okay, it's in the cloud. but I do want the costs to be much lower that what they were in the previous years. Last five years, nobody cared. Who cares? You know what it costs. You know, there's a new brave world out there. Now there's like, no, it has to be efficient. So I think they're going to optimize it. And I think this lake house approach, which is an integration of the lakes and the warehouse, allows you to rationalize the two and simplify them. It allows you to basically rationalize away the data warehouse. So I think much faster we're going to see the, why do I need the data warehouse? If I can get the same thing done with the lake house for fraction of the cost, that's what's going to happen. I think there's going to be focus on that simplification. But I agree with you. Ultimately everyone knows, everybody's a software company. Every company out there is a software company and in the next 10 years, all of them are also going to be AI companies. So that is going to continue. >> (indistinct), dev's going to stop. And right sizing right now is a key economic forcing function. Final question for you and I really appreciate you taking the time. This year Reinvent, what's the bumper sticker in your mind around what's the most important industry dynamic, power dynamic, ecosystem dynamic that people should pay attention to as we move from the brave new world of okay, I see cloud, cloud operations. I need to really make it structurally change my business. How do I, what's the most important story? What's the bumper sticker in your mind for Reinvent? >> Bumper sticker? lake house 24. (John laughing) >> That's data (indistinct) bumper sticker. What's the- >> (indistinct) in the market. No, no, no, no. You know, it's, AWS talks about, you know, all of their services becoming a lake house because they want the center of the gravity to be S3, their lake. And they want all the services to directly work on that, so that's a lake house. We're Bumper see Microsoft with Synapse, modern, you know the modern intelligent data platform. Same thing there. We're going to see the same thing, we already seeing it on GCP with Big Lake and so on. So I actually think it's the how do I reduce my costs and the lake house integrates those two. So that's one of the main ways you can rationalize and simplify. You get in the lake house, which is the name itself is a (indistinct) of two things, right? Lake house, "lake" gives you the AI, "house" give you the database data warehouse. So you get your AI and you get your data warehousing in one place at the lower cost. So for me, the bumper sticker is lake house, you know, 24. >> All right. Awesome Ali, well thanks for the exclusive interview. Appreciate it and get to see you. Congratulations on your success and I know you guys are going to be fine. >> Awesome. Thank you John. It's always a pleasure. >> Always great to chat with you again. >> Likewise. >> You guys are a great team. We're big fans of what you guys have done. We think you're an example of what we call "super cloud." Which is getting the hype up and again your paper speaks to some of the innovation, which I agree with by the way. I think that that approach of not forcing standards is really smart. And I think that's absolutely correct, that having the market still innovate is going to be key. standards with- >> Yeah, I love it. We're big fans too, you know, you're doing awesome work. We'd love to continue the partnership. >> So, great, great Ali, thanks. >> Take care (outro music)

hello I'm John Furrier with thecube and welcome to this special presentation of the cube and Horizon 3.ai they're announcing a global partner first approach expanding their successful pen testing product Net Zero you're going to hear from leading experts in their staff their CEO positioning themselves for a successful Channel distribution expansion internationally in Europe Middle East Africa and Asia Pacific in this Cube special presentation you'll hear about the expansion the expanse partner program giving Partners a unique opportunity to offer Net Zero to their customers Innovation and Pen testing is going International with Horizon 3.ai enjoy the program [Music] welcome back everyone to the cube and Horizon 3.ai special presentation I'm John Furrier host of thecube we're here with Jennifer Lee head of Channel sales at Horizon 3.ai Jennifer welcome to the cube thanks for coming on great well thank you for having me so big news around Horizon 3.aa driving Channel first commitment you guys are expanding the channel partner program to include all kinds of new rewards incentives training programs help educate you know Partners really drive more recurring Revenue certainly cloud and Cloud scale has done that you got a great product that fits into that kind of Channel model great Services you can wrap around it good stuff so let's get into it what are you guys doing what are what are you guys doing with this news why is this so important yeah for sure so um yeah we like you said we recently expanded our Channel partner program um the driving force behind it was really just um to align our like you said our Channel first commitment um and creating awareness around the importance of our partner ecosystems um so that's it's really how we go to market is is through the channel and a great International Focus I've talked with the CEO so you know about the solution and he broke down all the action on why it's important on the product side but why now on the go to market change what's the what's the why behind this big this news on the channel yeah for sure so um we are doing this now really to align our business strategy which is built on the concept of enabling our partners to create a high value high margin business on top of our platform and so um we offer a solution called node zero it provides autonomous pen testing as a service and it allows organizations to continuously verify their security posture um so we our company vision we have this tagline that states that our pen testing enables organizations to see themselves Through The Eyes of an attacker and um we use the like the attacker's perspective to identify exploitable weaknesses and vulnerabilities so we created this partner program from a perspective of the partner so the partner's perspective and we've built It Through The Eyes of our partner right so we're prioritizing really what the partner is looking for and uh will ensure like Mutual success for us yeah the partners always want to get in front of the customers and bring new stuff to them pen tests have traditionally been really expensive uh and so bringing it down in one to a service level that's one affordable and has flexibility to it allows a lot of capability so I imagine people getting excited by it so I have to ask you about the program What specifically are you guys doing can you share any details around what it means for the partners what they get what's in it for them can you just break down some of the mechanics and mechanisms or or details yeah yep um you know we're really looking to create business alignment um and like I said establish Mutual success with our partners so we've got two um two key elements that we were really focused on um that we bring to the partners so the opportunity the profit margin expansion is one of them and um a way for our partners to really differentiate themselves and stay relevant in the market so um we've restructured our discount model really um you know highlighting profitability and maximizing profitability and uh this includes our deal registration we've we've created deal registration program we've increased discount for partners who take part in our partner certification uh trainings and we've we have some other partner incentives uh that we we've created that that's going to help out there we've we put this all so we've recently Gone live with our partner portal um it's a Consolidated experience for our partners where they can access our our sales tools and we really view our partners as an extension of our sales and Technical teams and so we've extended all of our our training material that we use internally we've made it available to our partners through our partner portal um we've um I'm trying I'm thinking now back what else is in that partner portal here we've got our partner certification information so all the content that's delivered during that training can be found in the portal we've got deal registration uh um co-branded marketing materials pipeline management and so um this this portal gives our partners a One-Stop place to to go to find all that information um and then just really quickly on the second part of that that I mentioned is our technology really is um really disruptive to the market so you know like you said autonomous pen testing it's um it's still it's well it's still still relatively new topic uh for security practitioners and um it's proven to be really disruptive so um that on top of um just well recently we found an article that um that mentioned by markets and markets that reports that the global pen testing markets really expanding and so it's expected to grow to like 2.7 billion um by 2027. so the Market's there right the Market's expanding it's growing and so for our partners it's just really allows them to grow their revenue um across their customer base expand their customer base and offering this High profit margin while you know getting in early to Market on this just disruptive technology big Market a lot of opportunities to make some money people love to put more margin on on those deals especially when you can bring a great solution that everyone knows is hard to do so I think that's going to provide a lot of value is there is there a type of partner that you guys see emerging or you aligning with you mentioned the alignment with the partners I can see how that the training and the incentives are all there sounds like it's all going well is there a type of partner that's resonating the most or is there categories of partners that can take advantage of this yeah absolutely so we work with all different kinds of Partners we work with our traditional resale Partners um we've worked we're working with systems integrators we have a really strong MSP mssp program um we've got Consulting partners and the Consulting Partners especially with the ones that offer pen test services so we they use us as a as we act as a force multiplier just really offering them profit margin expansion um opportunity there we've got some technology partner partners that we really work with for co-cell opportunities and then we've got our Cloud Partners um you'd mentioned that earlier and so we are in AWS Marketplace so our ccpo partners we're part of the ISP accelerate program um so we we're doing a lot there with our Cloud partners and um of course we uh we go to market with uh distribution Partners as well gotta love the opportunity for more margin expansion every kind of partner wants to put more gross profit on their deals is there a certification involved I have to ask is there like do you get do people get certified or is it just you get trained is it self-paced training is it in person how are you guys doing the whole training certification thing because is that is that a requirement yeah absolutely so we do offer a certification program and um it's been very popular this includes a a seller's portion and an operator portion and and so um this is at no cost to our partners and um we operate both virtually it's it's law it's virtually but live it's not self-paced and we also have in person um you know sessions as well and we also can customize these to any partners that have a large group of people and we can just we can do one in person or virtual just specifically for that partner well any kind of incentive opportunities and marketing opportunities everyone loves to get the uh get the deals just kind of rolling in leads from what we can see if our early reporting this looks like a hot product price wise service level wise what incentive do you guys thinking about and and Joint marketing you mentioned co-sell earlier in pipeline so I was kind of kind of honing in on that piece sure and yes and then to follow along with our partner certification program we do incentivize our partners there if they have a certain number certified their discount increases so that's part of it we have our deal registration program that increases discount as well um and then we do have some um some partner incentives that are wrapped around meeting setting and um moving moving opportunities along to uh proof of value gotta love the education driving value I have to ask you so you've been around the industry you've seen the channel relationships out there you're seeing companies old school new school you know uh Horizon 3.ai is kind of like that new school very cloud specific a lot of Leverage with we mentioned AWS and all the clouds um why is the company so hot right now why did you join them and what's why are people attracted to this company what's the what's the attraction what's the vibe what do you what do you see and what what do you use what did you see in in this company well this is just you know like I said it's very disruptive um it's really in high demand right now and um and and just because because it's new to Market and uh a newer technology so we are we can collaborate with a manual pen tester um we can you know we can allow our customers to run their pen test um with with no specialty teams and um and and then so we and like you know like I said we can allow our partners can actually build businesses profitable businesses so we can they can use our product to increase their services revenue and um and build their business model you know around around our services what's interesting about the pen test thing is that it's very expensive and time consuming the people who do them are very talented people that could be working on really bigger things in the in absolutely customers so bringing this into the channel allows them if you look at the price Delta between a pen test and then what you guys are offering I mean that's a huge margin Gap between street price of say today's pen test and what you guys offer when you show people that they follow do they say too good to be true I mean what are some of the things that people say when you kind of show them that are they like scratch their head like come on what's the what's the catch here right so the cost savings is a huge is huge for us um and then also you know like I said working as a force multiplier with a pen testing company that offers the services and so they can they can do their their annual manual pen tests that may be required around compliance regulations and then we can we can act as the continuous verification of their security um um you know that that they can run um weekly and so it's just um you know it's just an addition to to what they're offering already and an expansion so Jennifer thanks for coming on thecube really appreciate you uh coming on sharing the insights on the channel uh what's next what can we expect from the channel group what are you thinking what's going on right so we're really looking to expand our our Channel um footprint and um very strategically uh we've got um we've got some big plans um for for Horizon 3.ai awesome well thanks for coming on really appreciate it you're watching thecube the leader in high tech Enterprise coverage [Music] [Music] hello and welcome to the Cube's special presentation with Horizon 3.ai with Raina Richter vice president of emea Europe Middle East and Africa and Asia Pacific APAC for Horizon 3 today welcome to this special Cube presentation thanks for joining us thank you for the invitation so Horizon 3 a guy driving Global expansion big international news with a partner first approach you guys are expanding internationally let's get into it you guys are driving this new expanse partner program to new heights tell us about it what are you seeing in the momentum why the expansion what's all the news about well I would say uh yeah in in international we have I would say a similar similar situation like in the US um there is a global shortage of well-educated penetration testers on the one hand side on the other side um we have a raising demand of uh network and infrastructure security and with our approach of an uh autonomous penetration testing I I believe we are totally on top of the game um especially as we have also now uh starting with an international instance that means for example if a customer in Europe is using uh our service node zero he will be connected to a node zero instance which is located inside the European Union and therefore he has doesn't have to worry about the conflict between the European the gdpr regulations versus the US Cloud act and I would say there we have a total good package for our partners that they can provide differentiators to their customers you know we've had great conversations here on thecube with the CEO and the founder of the company around the leverage of the cloud and how successful that's been for the company and honestly I can just Connect the Dots here but I'd like you to weigh in more on how that translates into the go to market here because you got great Cloud scale with with the security product you guys are having success with great leverage there I've seen a lot of success there what's the momentum on the channel partner program internationally why is it so important to you is it just the regional segmentation is it the economics why the momentum well there are it's there are multiple issues first of all there is a raising demand in penetration testing um and don't forget that uh in international we have a much higher level in number a number or percentage in SMB and mid-market customers so these customers typically most of them even didn't have a pen test done once a year so for them pen testing was just too expensive now with our offering together with our partners we can provide different uh ways how customers could get an autonomous pen testing done more than once a year with even lower costs than they had with with a traditional manual paint test so and that is because we have our uh Consulting plus package which is for typically pain testers they can go out and can do a much faster much quicker and their pain test at many customers once in after each other so they can do more pain tests on a lower more attractive price on the other side there are others what even the same ones who are providing um node zero as an mssp service so they can go after s p customers saying okay well you only have a couple of hundred uh IP addresses no worries we have the perfect package for you and then you have let's say the mid Market let's say the thousands and more employees then they might even have an annual subscription very traditional but for all of them it's all the same the customer or the service provider doesn't need a piece of Hardware they only need to install a small piece of a Docker container and that's it and that makes it so so smooth to go in and say okay Mr customer we just put in this this virtual attacker into your network and that's it and and all the rest is done and within within three clicks they are they can act like a pen tester with 20 years of experience and that's going to be very Channel friendly and partner friendly I can almost imagine so I have to ask you and thank you for calling the break calling out that breakdown and and segmentation that was good that was very helpful for me to understand but I want to follow up if you don't mind um what type of partners are you seeing the most traction with and why well I would say at the beginning typically you have the the innovators the early adapters typically Boutique size of Partners they start because they they are always looking for Innovation and those are the ones you they start in the beginning so we have a wide range of Partners having mostly even um managed by the owner of the company so uh they immediately understand okay there is the value and they can change their offering they're changing their offering in terms of penetration testing because they can do more pen tests and they can then add other ones or we have those ones who offer 10 tests services but they did not have their own pen testers so they had to go out on the open market and Source paint testing experts um to get the pen test at a particular customer done and now with node zero they're totally independent they can't go out and say okay Mr customer here's the here's the service that's it we turn it on and within an hour you're up and running totally yeah and those pen tests are usually expensive and hard to do now it's right in line with the sales delivery pretty interesting for a partner absolutely but on the other hand side we are not killing the pain testers business we do something we're providing with no tiers I would call something like the foundation work the foundational work of having an an ongoing penetration testing of the infrastructure the operating system and the pen testers by themselves they can concentrate in the future on things like application pen testing for example so those Services which we we're not touching so we're not killing the paint tester Market we're just taking away the ongoing um let's say foundation work call it that way yeah yeah that was one of my questions I was going to ask is there's a lot of interest in this autonomous pen testing one because it's expensive to do because those skills are required are in need and they're expensive so you kind of cover the entry level and the blockers that are in there I've seen people say to me this pen test becomes a blocker for getting things done so there's been a lot of interest in the autonomous pen testing and for organizations to have that posture and it's an overseas issue too because now you have that that ongoing thing so can you explain that particular benefit for an organization to have that continuously verifying an organization's posture yep certainly so I would say um typically you are you you have to do your patches you have to bring in new versions of operating systems of different Services of uh um operating systems of some components and and they are always bringing new vulnerabilities the difference here is that with node zero we are telling the customer or the partner package we're telling them which are the executable vulnerabilities because previously they might have had um a vulnerability scanner so this vulnerability scanner brought up hundreds or even thousands of cves but didn't say anything about which of them are vulnerable really executable and then you need an expert digging in one cve after the other finding out is it is it really executable yes or no and that is where you need highly paid experts which we have a shortage so with notes here now we can say okay we tell you exactly which ones are the ones you should work on because those are the ones which are executable we rank them accordingly to the risk level how easily they can be used and by a sudden and then the good thing is convert it or indifference to the traditional penetration test they don't have to wait for a year for the next pain test to find out if the fixing was effective they weren't just the next scan and say Yes closed vulnerability is gone the time is really valuable and if you're doing any devops Cloud native you're always pushing new things so pen test ongoing pen testing is actually a benefit just in general as a kind of hygiene so really really interesting solution really bring that global scale is going to be a new new coverage area for us for sure I have to ask you if you don't mind answering what particular region are you focused on or plan to Target for this next phase of growth well at this moment we are concentrating on the countries inside the European Union Plus the United Kingdom um but we are and they are of course logically I'm based into Frankfurt area that means we cover more or less the countries just around so it's like the total dark region Germany Switzerland Austria plus the Netherlands but we also already have Partners in the nordics like in Finland or in Sweden um so it's it's it it's rapidly we have Partners already in the UK and it's rapidly growing so I'm for example we are now starting with some activities in Singapore um um and also in the in the Middle East area um very important we uh depending on let's say the the way how to do business currently we try to concentrate on those countries where we can have um let's say um at least English as an accepted business language great is there any particular region you're having the most success with right now is it sounds like European Union's um kind of first wave what's them yes that's the first definitely that's the first wave and now we're also getting the uh the European instance up and running it's clearly our commitment also to the market saying okay we know there are certain dedicated uh requirements and we take care of this and and we're just launching it we're building up this one uh the instance um in the AWS uh service center here in Frankfurt also with some dedicated Hardware internet in a data center in Frankfurt where we have with the date six by the way uh the highest internet interconnection bandwidth on the planet so we have very short latency to wherever you are on on the globe that's a great that's a great call outfit benefit too I was going to ask that what are some of the benefits your partners are seeing in emea and Asia Pacific well I would say um the the benefits is for them it's clearly they can they can uh talk with customers and can offer customers penetration testing which they before and even didn't think about because it penetrates penetration testing in a traditional way was simply too expensive for them too complex the preparation time was too long um they didn't have even have the capacity uh to um to support a pain an external pain tester now with this service you can go in and say even if they Mr customer we can do a test with you in a couple of minutes within we have installed the docker container within 10 minutes we have the pen test started that's it and then we just wait and and I would say that is we'll we are we are seeing so many aha moments then now because on the partner side when they see node zero the first time working it's like this wow that is great and then they work out to customers and and show it to their typically at the beginning mostly the friendly customers like wow that's great I need that and and I would say um the feedback from the partners is that is a service where I do not have to evangelize the customer everybody understands penetration testing I don't have to say describe what it is they understand the customer understanding immediately yes penetration testing good about that I know I should do it but uh too complex too expensive now with the name is for example as an mssp service provided from one of our partners but it's getting easy yeah it's great and it's great great benefit there I mean I gotta say I'm a huge fan of what you guys are doing I like this continuous automation that's a major benefit to anyone doing devops or any kind of modern application development this is just a godsend for them this is really good and like you said the pen testers that are doing it they were kind of coming down from their expertise to kind of do things that should have been automated they get to focus on the bigger ticket items that's a really big point so we free them we free the pain testers for the higher level elements of the penetration testing segment and that is typically the application testing which is currently far away from being automated yeah and that's where the most critical workloads are and I think this is the nice balance congratulations on the international expansion of the program and thanks for coming on this special presentation really I really appreciate it thank you you're welcome okay this is thecube special presentation you know check out pen test automation International expansion Horizon 3 dot AI uh really Innovative solution in our next segment Chris Hill sector head for strategic accounts will discuss the power of Horizon 3.ai and Splunk in action you're watching the cube the leader in high tech Enterprise coverage foreign [Music] [Music] welcome back everyone to the cube and Horizon 3.ai special presentation I'm John Furrier host of thecube we're with Chris Hill sector head for strategic accounts and federal at Horizon 3.ai a great Innovative company Chris great to see you thanks for coming on thecube yeah like I said uh you know great to meet you John long time listener first time caller so excited to be here with you guys yeah we were talking before camera you had Splunk back in 2013 and I think 2012 was our first splunk.com and boy man you know talk about being in the right place at the right time now we're at another inflection point and Splunk continues to be relevant um and continuing to have that data driving Security in that interplay and your CEO former CTO of his plug as well at Horizon who's been on before really Innovative product you guys have but you know yeah don't wait for a breach to find out if you're logging the right data this is the topic of this thread Splunk is very much part of this new international expansion announcement uh with you guys tell us what are some of the challenges that you see where this is relevant for the Splunk and Horizon AI as you guys expand uh node zero out internationally yeah well so across so you know my role uh within Splunk it was uh working with our most strategic accounts and so I looked back to 2013 and I think about the sales process like working with with our small customers you know it was um it was still very siled back then like I was selling to an I.T team that was either using this for it operations um we generally would always even say yeah although we do security we weren't really designed for it we're a log management tool and we I'm sure you remember back then John we were like sort of stepping into the security space and and the public sector domain that I was in you know security was 70 of what we did when I look back to sort of uh the transformation that I was witnessing in that digital transformation um you know when I look at like 2019 to today you look at how uh the IT team and the security teams are being have been forced to break down those barriers that they used to sort of be silent away would not commute communicate one you know the security guys would be like oh this is my box I.T you're not allowed in today you can't get away with that and I think that the value that we bring to you know and of course Splunk has been a huge leader in that space and continues to do Innovation across the board but I think what we've we're seeing in the space and I was talking with Patrick Coughlin the SVP of uh security markets about this is that you know what we've been able to do with Splunk is build a purpose-built solution that allows Splunk to eat more data so Splunk itself is ulk know it's an ingest engine right the great reason people bought it was you could build these really fast dashboards and grab intelligence out of it but without data it doesn't do anything right so how do you drive and how do you bring more data in and most importantly from a customer perspective how do you bring the right data in and so if you think about what node zero and what we're doing in a horizon 3 is that sure we do pen testing but because we're an autonomous pen testing tool we do it continuously so this whole thought I'd be like oh crud like my customers oh yeah we got a pen test coming up it's gonna be six weeks the week oh yeah you know and everyone's gonna sit on their hands call me back in two months Chris we'll talk to you then right not not a real efficient way to test your environment and shoot we saw that with Uber this week right um you know and that's a case where we could have helped oh just right we could explain the Uber thing because it was a contractor just give a quick highlight of what happened so you can connect the doctor yeah no problem so um it was uh I got I think it was yeah one of those uh you know games where they would try and test an environment um and with the uh pen tester did was he kept on calling them MFA guys being like I need to reset my password we need to set my right password and eventually the um the customer service guy said okay I'm resetting it once he had reset and bypassed the multi-factor authentication he then was able to get in and get access to the building area that he was in or I think not the domain but he was able to gain access to a partial part of that Network he then paralleled over to what I would assume is like a VA VMware or some virtual machine that had notes that had all of the credentials for logging into various domains and So within minutes they had access and that's the sort of stuff that we do you know a lot of these tools like um you know you think about the cacophony of tools that are out there in a GTA architect architecture right I'm gonna get like a z-scale or I'm going to have uh octum and I have a Splunk I've been into the solar system I mean I don't mean to name names we have crowdstriker or Sentinel one in there it's just it's a cacophony of things that don't work together they weren't designed work together and so we have seen so many times in our business through our customer support and just working with customers when we do their pen tests that there will be 5 000 servers out there three are misconfigured those three misconfigurations will create the open door because remember the hacker only needs to be right once the defender needs to be right all the time and that's the challenge and so that's what I'm really passionate about what we're doing uh here at Horizon three I see this my digital transformation migration and security going on which uh we're at the tip of the spear it's why I joined sey Hall coming on this journey uh and just super excited about where the path's going and super excited about the relationship with Splunk I get into more details on some of the specifics of that but um you know well you're nailing I mean we've been doing a lot of things on super cloud and this next gen environment we're calling it next gen you're really seeing devops obviously devsecops has already won the it role has moved to the developer shift left is an indicator of that it's one of the many examples higher velocity code software supply chain you hear these things that means that it is now in the developer hands it is replaced by the new Ops data Ops teams and security where there's a lot of horizontal thinking to your point about access there's no more perimeter huge 100 right is really right on things one time you know to get in there once you're in then you can hang out move around move laterally big problem okay so we get that now the challenges for these teams as they are transitioning organizationally how do they figure out what to do okay this is the next step they already have Splunk so now they're kind of in transition while protecting for a hundred percent ratio of success so how would you look at that and describe the challenge is what do they do what is it what are the teams facing with their data and what's next what are they what are they what action do they take so let's use some vernacular that folks will know so if I think about devsecops right we both know what that means that I'm going to build security into the app it normally talks about sec devops right how am I building security around the perimeter of what's going inside my ecosystem and what are they doing and so if you think about what we're able to do with somebody like Splunk is we can pen test the entire environment from Soup To Nuts right so I'm going to test the end points through to its I'm going to look for misconfigurations I'm going to I'm going to look for um uh credential exposed credentials you know I'm going to look for anything I can in the environment again I'm going to do it at light speed and and what what we're doing for that SEC devops space is to you know did you detect that we were in your environment so did we alert Splunk or the Sim that there's someone in the environment laterally moving around did they more importantly did they log us into their environment and when do they detect that log to trigger that log did they alert on us and then finally most importantly for every CSO out there is going to be did they stop us and so that's how we we do this and I think you when speaking with um stay Hall before you know we've come up with this um boils but we call it fine fix verifying so what we do is we go in is we act as the attacker right we act in a production environment so we're not going to be we're a passive attacker but we will go in on credentialed on agents but we have to assume to have an assumed breach model which means we're going to put a Docker container in your environment and then we're going to fingerprint the environment so we're going to go out and do an asset survey now that's something that's not something that Splunk does super well you know so can Splunk see all the assets do the same assets marry up we're going to log all that data and think and then put load that into this long Sim or the smoke logging tools just to have it in Enterprise right that's an immediate future ad that they've got um and then we've got the fix so once we've completed our pen test um we are then going to generate a report and we can talk about these in a little bit later but the reports will show an executive summary the assets that we found which would be your asset Discovery aspect of that a fix report and the fixed report I think is probably the most important one it will go down and identify what we did how we did it and then how to fix that and then from that the pen tester or the organization should fix those then they go back and run another test and then they validate like a change detection environment to see hey did those fixes taste play take place and you know snehaw when he was the CTO of jsoc he shared with me a number of times about it's like man there would be 15 more items on next week's punch sheet that we didn't know about and it's and it has to do with how we you know how they were uh prioritizing the cves and whatnot because they would take all CBDs it was critical or non-critical and it's like we are able to create context in that environment that feeds better information into Splunk and whatnot that brings that brings up the efficiency for Splunk specifically the teams out there by the way the burnout thing is real I mean this whole I just finished my list and I got 15 more or whatever the list just can keeps growing how did node zero specifically help Splunk teams be more efficient like that's the question I want to get at because this seems like a very scale way for Splunk customers and teams service teams to be more so the question is how does node zero help make Splunk specifically their service teams be more efficient so so today in our early interactions we're building customers we've seen are five things um and I'll start with sort of identifying the blind spots right so kind of what I just talked about with you did we detect did we log did we alert did they stop node zero right and so I would I put that you know a more Layman's third grade term and if I was going to beat a fifth grader at this game would be we can be the sparring partner for a Splunk Enterprise customer a Splunk Essentials customer someone using Splunk soar or even just an Enterprise Splunk customer that may be a small shop with three people and just wants to know where am I exposed so by creating and generating these reports and then having um the API that actually generates the dashboard they can take all of these events that we've logged and log them in and then where that then comes in is number two is how do we prioritize those logs right so how do we create visibility to logs that that um are have critical impacts and again as I mentioned earlier not all cves are high impact regard and also not all or low right so if you daisy chain a bunch of low cves together boom I've got a mission critical AP uh CPE that needs to be fixed now such as a credential moving to an NT box that's got a text file with a bunch of passwords on it that would be very bad um and then third would be uh verifying that you have all of the hosts so one of the things that splunk's not particularly great at and they'll literate themselves they don't do asset Discovery so dude what assets do we see and what are they logging from that um and then for from um for every event that they are able to identify one of the cool things that we can do is actually create this low code no code environment so they could let you know Splunk customers can use Splunk sword to actually triage events and prioritize that event so where they're being routed within it to optimize the Sox team time to Market or time to triage any given event obviously reducing MTR and then finally I think one of the neatest things that we'll be seeing us develop is um our ability to build glass cables so behind me you'll see one of our triage events and how we build uh a Lockheed Martin kill chain on that with a glass table which is very familiar to the community we're going to have the ability and not too distant future to allow people to search observe on those iocs and if people aren't familiar with it ioc it's an instant of a compromise so that's a vector that we want to drill into and of course who's better at Drilling in the data and smoke yeah this is a critter this is an awesome Synergy there I mean I can see a Splunk customer going man this just gives me so much more capability action actionability and also real understanding and I think this is what I want to dig into if you don't mind understanding that critical impact okay is kind of where I see this coming got the data data ingest now data's data but the question is what not to log you know where are things misconfigured these are critical questions so can you talk about what it means to understand critical impact yeah so I think you know going back to the things that I just spoke about a lot of those cves where you'll see um uh low low low and then you daisy chain together and they're suddenly like oh this is high now but then your other impact of like if you're if you're a Splunk customer you know and I had it I had several of them I had one customer that you know terabytes of McAfee data being brought in and it was like all right there's a lot of other data that you probably also want to bring but they could only afford wanted to do certain data sets because that's and they didn't know how to prioritize or filter those data sets and so we provide that opportunity to say hey these are the critical ones to bring in but there's also the ones that you don't necessarily need to bring in because low cve in this case really does mean low cve like an ILO server would be one that um that's the print server uh where the uh your admin credentials are on on like a printer and so there will be credentials on that that's something that a hacker might go in to look at so although the cve on it is low is if you daisy chain with somebody that's able to get into that you might say Ah that's high and we would then potentially rank it giving our AI logic to say that's a moderate so put it on the scale and we prioritize those versus uh of all of these scanners just going to give you a bunch of CDs and good luck and translating that if I if I can and tell me if I'm wrong that kind of speaks to that whole lateral movement that's it challenge right print serve a great example looks stupid low end who's going to want to deal with the print server oh but it's connected into a critical system there's a path is that kind of what you're getting at yeah I use Daisy Chain I think that's from the community they came from uh but it's just a lateral movement it's exactly what they're doing in those low level low critical lateral movements is where the hackers are getting in right so that's the beauty thing about the uh the Uber example is that who would have thought you know I've got my monthly Factor authentication going in a human made a mistake we can't we can't not expect humans to make mistakes we're fallible right the reality is is once they were in the environment they could have protected themselves by running enough pen tests to know that they had certain uh exposed credentials that would have stopped the breach and they did not had not done that in their environment and I'm not poking yeah but it's an interesting Trend though I mean it's obvious if sometimes those low end items are also not protected well so it's easy to get at from a hacker standpoint but also the people in charge of them can be fished easily or spearfished because they're not paying attention because they don't have to no one ever told them hey be careful yeah for the community that I came from John that's exactly how they they would uh meet you at a uh an International Event um introduce themselves as a graduate student these are National actor States uh would you mind reviewing my thesis on such and such and I was at Adobe at the time that I was working on this instead of having to get the PDF they opened the PDF and whoever that customer was launches and I don't know if you remember back in like 2008 time frame there was a lot of issues around IP being by a nation state being stolen from the United States and that's exactly how they did it and John that's or LinkedIn hey I want to get a joke we want to hire you double the salary oh I'm gonna click on that for sure you know yeah right exactly yeah the one thing I would say to you is like uh when we look at like sort of you know because I think we did 10 000 pen tests last year is it's probably over that now you know we have these sort of top 10 ways that we think and find people coming into the environment the funniest thing is that only one of them is a cve related vulnerability like uh you know you guys know what they are right so it's it but it's it's like two percent of the attacks are occurring through the cves but yeah there's all that attention spent to that and very little attention spent to this pen testing side which is sort of this continuous threat you know monitoring space and and this vulnerability space where I think we play a such an important role and I'm so excited to be a part of the tip of the spear on this one yeah I'm old enough to know the movie sneakers which I loved as a you know watching that movie you know professional hackers are testing testing always testing the environment I love this I got to ask you as we kind of wrap up here Chris if you don't mind the the benefits to Professional Services from this Alliance big news Splunk and you guys work well together we see that clearly what are what other benefits do Professional Services teams see from the Splunk and Horizon 3.ai Alliance so if you're I think for from our our from both of our uh Partners uh as we bring these guys together and many of them already are the same partner right uh is that uh first off the licensing model is probably one of the key areas that we really excel at so if you're an end user you can buy uh for the Enterprise by the number of IP addresses you're using um but uh if you're a partner working with this there's solution ways that you can go in and we'll license as to msps and what that business model on msps looks like but the unique thing that we do here is this C plus license and so the Consulting plus license allows like a uh somebody a small to mid-sized to some very large uh you know Fortune 100 uh consulting firms use this uh by buying into a license called um Consulting plus where they can have unlimited uh access to as many IPS as they want but you can only run one test at a time and as you can imagine when we're going and hacking passwords and um checking hashes and decrypting hashes that can take a while so but for the right customer it's it's a perfect tool and so I I'm so excited about our ability to go to market with uh our partners so that we understand ourselves understand how not to just sell to or not tell just to sell through but we know how to sell with them as a good vendor partner I think that that's one thing that we've done a really good job building bring it into the market yeah I think also the Splunk has had great success how they've enabled uh partners and Professional Services absolutely you know the services that layer on top of Splunk are multi-fold tons of great benefits so you guys Vector right into that ride that way with friction and and the cool thing is that in you know in one of our reports which could be totally customized uh with someone else's logo we're going to generate you know so I I used to work in another organization it wasn't Splunk but we we did uh you know pen testing as for for customers and my pen testers would come on site they'd do the engagement and they would leave and then another release someone would be oh shoot we got another sector that was breached and they'd call you back you know four weeks later and so by August our entire pen testings teams would be sold out and it would be like well even in March maybe and they're like no no I gotta breach now and and and then when they do go in they go through do the pen test and they hand over a PDF and they pack on the back and say there's where your problems are you need to fix it and the reality is that what we're going to generate completely autonomously with no human interaction is we're going to go and find all the permutations of anything we found and the fix for those permutations and then once you've fixed everything you just go back and run another pen test it's you know for what people pay for one pen test they can have a tool that does that every every Pat patch on Tuesday and that's on Wednesday you know triage throughout the week green yellow red I wanted to see the colors show me green green is good right not red and one CIO doesn't want who doesn't want that dashboard right it's it's exactly it and we can help bring I think that you know I'm really excited about helping drive this with the Splunk team because they get that they understand that it's the green yellow red dashboard and and how do we help them find more green uh so that the other guys are in red yeah and get in the data and do the right thing and be efficient with how you use the data know what to look at so many things to pay attention to you know the combination of both and then go to market strategy real brilliant congratulations Chris thanks for coming on and sharing um this news with the detail around the Splunk in action around the alliance thanks for sharing John my pleasure thanks look forward to seeing you soon all right great we'll follow up and do another segment on devops and I.T and security teams as the new new Ops but and super cloud a bunch of other stuff so thanks for coming on and our next segment the CEO of horizon 3.aa will break down all the new news for us here on thecube you're watching thecube the leader in high tech Enterprise coverage [Music] yeah the partner program for us has been fantastic you know I think prior to that you know as most organizations most uh uh most Farmers most mssps might not necessarily have a a bench at all for penetration testing uh maybe they subcontract this work out or maybe they do it themselves but trying to staff that kind of position can be incredibly difficult for us this was a differentiator a a new a new partner a new partnership that allowed us to uh not only perform services for our customers but be able to provide a product by which that they can do it themselves so we work with our customers in a variety of ways some of them want more routine testing and perform this themselves but we're also a certified service provider of horizon 3 being able to perform uh penetration tests uh help review the the data provide color provide analysis for our customers in a broader sense right not necessarily the the black and white elements of you know what was uh what's critical what's high what's medium what's low what you need to fix but are there systemic issues this has allowed us to onboard new customers this has allowed us to migrate some penetration testing services to us from from competitors in the marketplace But ultimately this is occurring because the the product and the outcome are special they're unique and they're effective our customers like what they're seeing they like the routineness of it many of them you know again like doing this themselves you know being able to kind of pen test themselves parts of their networks um and the the new use cases right I'm a large organization I have eight to ten Acquisitions per year wouldn't it be great to have a tool to be able to perform a penetration test both internal and external of that acquisition before we integrate the two companies and maybe bringing on some risk it's a very effective partnership uh one that really is uh kind of taken our our Engineers our account Executives by storm um you know this this is a a partnership that's been very valuable to us [Music] a key part of the value and business model at Horizon 3 is enabling Partners to leverage node zero to make more revenue for themselves our goal is that for sixty percent of our Revenue this year will be originated by partners and that 95 of our Revenue next year will be originated by partners and so a key to that strategy is making us an integral part of your business models as a partner a key quote from one of our partners is that we enable every one of their business units to generate Revenue so let's talk about that in a little bit more detail first is that if you have a pen test Consulting business take Deloitte as an example what was six weeks of human labor at Deloitte per pen test has been cut down to four days of Labor using node zero to conduct reconnaissance find all the juicy interesting areas of the of the Enterprise that are exploitable and being able to go assess the entire organization and then all of those details get served up to the human to be able to look at understand and determine where to probe deeper so what you see in that pen test Consulting business is that node zero becomes a force multiplier where those Consulting teams were able to cover way more accounts and way more IPS within those accounts with the same or fewer consultants and so that directly leads to profit margin expansion for the Penn testing business itself because node 0 is a force multiplier the second business model here is if you're an mssp as an mssp you're already making money providing defensive cyber security operations for a large volume of customers and so what they do is they'll license node zero and use us as an upsell to their mssb business to start to deliver either continuous red teaming continuous verification or purple teaming as a service and so in that particular business model they've got an additional line of Revenue where they can increase the spend of their existing customers by bolting on node 0 as a purple team as a service offering the third business model or customer type is if you're an I.T services provider so as an I.T services provider you make money installing and configuring security products like Splunk or crowdstrike or hemio you also make money reselling those products and you also make money generating follow-on services to continue to harden your customer environments and so for them what what those it service providers will do is use us to verify that they've installed Splunk correctly improved to their customer that Splunk was installed correctly or crowdstrike was installed correctly using our results and then use our results to drive follow-on services and revenue and then finally we've got the value-added reseller which is just a straight up reseller because of how fast our sales Cycles are these vars are able to typically go from cold email to deal close in six to eight weeks at Horizon 3 at least a single sales engineer is able to run 30 to 50 pocs concurrently because our pocs are very lightweight and don't require any on-prem customization or heavy pre-sales post sales activity so as a result we're able to have a few amount of sellers driving a lot of Revenue and volume for us well the same thing applies to bars there isn't a lot of effort to sell the product or prove its value so vars are able to sell a lot more Horizon 3 node zero product without having to build up a huge specialist sales organization so what I'm going to do is talk through uh scenario three here as an I.T service provider and just how powerful node zero can be in driving additional Revenue so in here think of for every one dollar of node zero license purchased by the IT service provider to do their business it'll generate ten dollars of additional revenue for that partner so in this example kidney group uses node 0 to verify that they have installed and deployed Splunk correctly so Kitty group is a Splunk partner they they sell it services to install configure deploy and maintain Splunk and as they deploy Splunk they're going to use node 0 to attack the environment and make sure that the right logs and alerts and monitoring are being handled within the Splunk deployment so it's a way of doing QA or verifying that Splunk has been configured correctly and that's going to be internally used by kidney group to prove the quality of their services that they've just delivered then what they're going to do is they're going to show and leave behind that node zero Report with their client and that creates a resell opportunity for for kidney group to resell node 0 to their client because their client is seeing the reports and the results and saying wow this is pretty amazing and those reports can be co-branded where it's a pen testing report branded with kidney group but it says powered by Horizon three under it from there kidney group is able to take the fixed actions report that's automatically generated with every pen test through node zero and they're able to use that as the starting point for a statement of work to sell follow-on services to fix all of the problems that node zero identified fixing l11r misconfigurations fixing or patching VMware or updating credentials policies and so on so what happens is node 0 has found a bunch of problems the client often lacks the capacity to fix and so kidney group can use that lack of capacity by the client as a follow-on sales opportunity for follow-on services and finally based on the findings from node zero kidney group can look at that report and say to the customer you know customer if you bought crowdstrike you'd be able to uh prevent node Zero from attacking and succeeding in the way that it did for if you bought humano or if you bought Palo Alto networks or if you bought uh some privileged access management solution because of what node 0 was able to do with credential harvesting and attacks and so as a result kidney group is able to resell other security products within their portfolio crowdstrike Falcon humano Polito networks demisto Phantom and so on based on the gaps that were identified by node zero and that pen test and what that creates is another feedback loop where kidney group will then go use node 0 to verify that crowdstrike product has actually been installed and configured correctly and then this becomes the cycle of using node 0 to verify a deployment using that verification to drive a bunch of follow-on services and resell opportunities which then further drives more usage of the product now the way that we licensed is that it's a usage-based license licensing model so that the partner will grow their node zero Consulting plus license as they grow their business so for example if you're a kidney group then week one you've got you're going to use node zero to verify your Splunk install in week two if you have a pen testing business you're going to go off and use node zero to be a force multiplier for your pen testing uh client opportunity and then if you have an mssp business then in week three you're going to use node zero to go execute a purple team mssp offering for your clients so not necessarily a kidney group but if you're a Deloitte or ATT these larger companies and you've got multiple lines of business if you're Optive for instance you all you have to do is buy one Consulting plus license and you're going to be able to run as many pen tests as you want sequentially so now you can buy a single license and use that one license to meet your week one client commitments and then meet your week two and then meet your week three and as you grow your business you start to run multiple pen tests concurrently so in week one you've got to do a Splunk verify uh verify Splunk install and you've got to run a pen test and you've got to do a purple team opportunity you just simply expand the number of Consulting plus licenses from one license to three licenses and so now as you systematically grow your business you're able to grow your node zero capacity with you giving you predictable cogs predictable margins and once again 10x additional Revenue opportunity for that investment in the node zero Consulting plus license my name is Saint I'm the co-founder and CEO here at Horizon 3. I'm going to talk to you today about why it's important to look at your Enterprise Through The Eyes of an attacker the challenge I had when I was a CIO in banking the CTO at Splunk and serving within the Department of Defense is that I had no idea I was Secure until the bad guys had showed up am I logging the right data am I fixing the right vulnerabilities are my security tools that I've paid millions of dollars for actually working together to defend me and the answer is I don't know does my team actually know how to respond to a breach in the middle of an incident I don't know I've got to wait for the bad guys to show up and so the challenge I had was how do we proactively verify our security posture I tried a variety of techniques the first was the use of vulnerability scanners and the challenge with vulnerability scanners is being vulnerable doesn't mean you're exploitable I might have a hundred thousand findings from my scanner of which maybe five or ten can actually be exploited in my environment the other big problem with scanners is that they can't chain weaknesses together from machine to machine so if you've got a thousand machines in your environment or more what a vulnerability scanner will do is tell you you have a problem on machine one and separately a problem on machine two but what they can tell you is that an attacker could use a load from machine one plus a low from machine two to equal to critical in your environment and what attackers do in their tactics is they chain together misconfigurations dangerous product defaults harvested credentials and exploitable vulnerabilities into attack paths across different machines so to address the attack pads across different machines I tried layering in consulting-based pen testing and the issue is when you've got thousands of hosts or hundreds of thousands of hosts in your environment human-based pen testing simply doesn't scale to test an infrastructure of that size moreover when they actually do execute a pen test and you get the report oftentimes you lack the expertise within your team to quickly retest to verify that you've actually fixed the problem and so what happens is you end up with these pen test reports that are incomplete snapshots and quickly going stale and then to mitigate that problem I tried using breach and attack simulation tools and the struggle with these tools is one I had to install credentialed agents everywhere two I had to write my own custom attack scripts that I didn't have much talent for but also I had to maintain as my environment changed and then three these types of tools were not safe to run against production systems which was the the majority of my attack surface so that's why we went off to start Horizon 3. so Tony and I met when we were in Special Operations together and the challenge we wanted to solve was how do we do infrastructure security testing at scale by giving the the power of a 20-year pen testing veteran into the hands of an I.T admin a network engineer in just three clicks and the whole idea is we enable these fixers The Blue Team to be able to run node Zero Hour pen testing product to quickly find problems in their environment that blue team will then then go off and fix the issues that were found and then they can quickly rerun the attack to verify that they fixed the problem and the whole idea is delivering this without requiring custom scripts be developed without requiring credential agents be installed and without requiring the use of external third-party consulting services or Professional Services self-service pen testing to quickly Drive find fix verify there are three primary use cases that our customers use us for the first is the sock manager that uses us to verify that their security tools are actually effective to verify that they're logging the right data in Splunk or in their Sim to verify that their managed security services provider is able to quickly detect and respond to an attack and hold them accountable for their slas or that the sock understands how to quickly detect and respond and measuring and verifying that or that the variety of tools that you have in your stack most organizations have 130 plus cyber security tools none of which are designed to work together are actually working together the second primary use case is proactively hardening and verifying your systems this is when the I that it admin that network engineer they're able to run self-service pen tests to verify that their Cisco environment is installed in hardened and configured correctly or that their credential policies are set up right or that their vcenter or web sphere or kubernetes environments are actually designed to be secure and what this allows the it admins and network Engineers to do is shift from running one or two pen tests a year to 30 40 or more pen tests a month and you can actually wire those pen tests into your devops process or into your detection engineering and the change management processes to automatically trigger pen tests every time there's a change in your environment the third primary use case is for those organizations lucky enough to have their own internal red team they'll use node zero to do reconnaissance and exploitation at scale and then use the output as a starting point for the humans to step in and focus on the really hard juicy stuff that gets them on stage at Defcon and so these are the three primary use cases and what we'll do is zoom into the find fix verify Loop because what I've found in my experience is find fix verify is the future operating model for cyber security organizations and what I mean here is in the find using continuous pen testing what you want to enable is on-demand self-service pen tests you want those pen tests to find attack pads at scale spanning your on-prem infrastructure your Cloud infrastructure and your perimeter because attackers don't only state in one place they will find ways to chain together a perimeter breach a credential from your on-prem to gain access to your cloud or some other permutation and then the third part in continuous pen testing is attackers don't focus on critical vulnerabilities anymore they know we've built vulnerability Management Programs to reduce those vulnerabilities so attackers have adapted and what they do is chain together misconfigurations in your infrastructure and software and applications with dangerous product defaults with exploitable vulnerabilities and through the collection of credentials through a mix of techniques at scale once you've found those problems the next question is what do you do about it well you want to be able to prioritize fixing problems that are actually exploitable in your environment that truly matter meaning they're going to lead to domain compromise or domain user compromise or access your sensitive data the second thing you want to fix is making sure you understand what risk your crown jewels data is exposed to where is your crown jewels data is in the cloud is it on-prem has it been copied to a share drive that you weren't aware of if a domain user was compromised could they access that crown jewels data you want to be able to use the attacker's perspective to secure the critical data you have in your infrastructure and then finally as you fix these problems you want to quickly remediate and retest that you've actually fixed the issue and this fine fix verify cycle becomes that accelerator that drives purple team culture the third part here is verify and what you want to be able to do in the verify step is verify that your security tools and processes in people can effectively detect and respond to a breach you want to be able to integrate that into your detection engineering processes so that you know you're catching the right security rules or that you've deployed the right configurations you also want to make sure that your environment is adhering to the best practices around systems hardening in cyber resilience and finally you want to be able to prove your security posture over a time to your board to your leadership into your regulators so what I'll do now is zoom into each of these three steps so when we zoom in to find here's the first example using node 0 and autonomous pen testing and what an attacker will do is find a way to break through the perimeter in this example it's very easy to misconfigure kubernetes to allow an attacker to gain remote code execution into your on-prem kubernetes environment and break through the perimeter and from there what the attacker is going to do is conduct Network reconnaissance and then find ways to gain code execution on other machines in the environment and as they get code execution they start to dump credentials collect a bunch of ntlm hashes crack those hashes using open source and dark web available data as part of those attacks and then reuse those credentials to log in and laterally maneuver throughout the environment and then as they loudly maneuver they can reuse those credentials and use credential spraying techniques and so on to compromise your business email to log in as admin into your cloud and this is a very common attack and rarely is a CV actually needed to execute this attack often it's just a misconfiguration in kubernetes with a bad credential policy or password policy combined with bad practices of credential reuse across the organization here's another example of an internal pen test and this is from an actual customer they had 5 000 hosts within their environment they had EDR and uba tools installed and they initiated in an internal pen test on a single machine from that single initial access point node zero enumerated the network conducted reconnaissance and found five thousand hosts were accessible what node 0 will do under the covers is organize all of that reconnaissance data into a knowledge graph that we call the Cyber terrain map and that cyber Terrain map becomes the key data structure that we use to efficiently maneuver and attack and compromise your environment so what node zero will do is they'll try to find ways to get code execution reuse credentials and so on in this customer example they had Fortinet installed as their EDR but node 0 was still able to get code execution on a Windows machine from there it was able to successfully dump credentials including sensitive credentials from the lsas process on the Windows box and then reuse those credentials to log in as domain admin in the network and once an attacker becomes domain admin they have the keys to the kingdom they can do anything they want so what happened here well it turns out Fortinet was misconfigured on three out of 5000 machines bad automation the customer had no idea this had happened they would have had to wait for an attacker to show up to realize that it was misconfigured the second thing is well why didn't Fortinet stop the credential pivot in the lateral movement and it turned out the customer didn't buy the right modules or turn on the right services within that particular product and we see this not only with Ford in it but we see this with Trend Micro and all the other defensive tools where it's very easy to miss a checkbox in the configuration that will do things like prevent credential dumping the next story I'll tell you is attackers don't have to hack in they log in so another infrastructure pen test a typical technique attackers will take is man in the middle uh attacks that will collect hashes so in this case what an attacker will do is leverage a tool or technique called responder to collect ntlm hashes that are being passed around the network and there's a variety of reasons why these hashes are passed around and it's a pretty common misconfiguration but as an attacker collects those hashes then they start to apply techniques to crack those hashes so they'll pass the hash and from there they will use open source intelligence common password structures and patterns and other types of techniques to try to crack those hashes into clear text passwords so here node 0 automatically collected hashes it automatically passed the hashes to crack those credentials and then from there it starts to take the domain user user ID passwords that it's collected and tries to access different services and systems in your Enterprise in this case node 0 is able to successfully gain access to the Office 365 email environment because three employees didn't have MFA configured so now what happens is node 0 has a placement and access in the business email system which sets up the conditions for fraud lateral phishing and other techniques but what's especially insightful here is that 80 of the hashes that were collected in this pen test were cracked in 15 minutes or less 80 percent 26 of the user accounts had a password that followed a pretty obvious pattern first initial last initial and four random digits the other thing that was interesting is 10 percent of service accounts had their user ID the same as their password so VMware admin VMware admin web sphere admin web Square admin so on and so forth and so attackers don't have to hack in they just log in with credentials that they've collected the next story here is becoming WS AWS admin so in this example once again internal pen test node zero gets initial access it discovers 2 000 hosts are network reachable from that environment if fingerprints and organizes all of that data into a cyber Terrain map from there it it fingerprints that hpilo the integrated lights out service was running on a subset of hosts hpilo is a service that is often not instrumented or observed by security teams nor is it easy to patch as a result attackers know this and immediately go after those types of services so in this case that ILO service was exploitable and were able to get code execution on it ILO stores all the user IDs and passwords in clear text in a particular set of processes so once we gain code execution we were able to dump all of the credentials and then from there laterally maneuver to log in to the windows box next door as admin and then on that admin box we're able to gain access to the share drives and we found a credentials file saved on a share Drive from there it turned out that credentials file was the AWS admin credentials file giving us full admin authority to their AWS accounts not a single security alert was triggered in this attack because the customer wasn't observing the ILO service and every step thereafter was a valid login in the environment and so what do you do step one patch the server step two delete the credentials file from the share drive and then step three is get better instrumentation on privileged access users and login the final story I'll tell is a typical pattern that we see across the board with that combines the various techniques I've described together where an attacker is going to go off and use open source intelligence to find all of the employees that work at your company from there they're going to look up those employees on dark web breach databases and other forms of information and then use that as a starting point to password spray to compromise a domain user all it takes is one employee to reuse a breached password for their Corporate email or all it takes is a single employee to have a weak password that's easily guessable all it takes is one and once the attacker is able to gain domain user access in most shops domain user is also the local admin on their laptop and once your local admin you can dump Sam and get local admin until M hashes you can use that to reuse credentials again local admin on neighboring machines and attackers will start to rinse and repeat then eventually they're able to get to a point where they can dump lsas or by unhooking the anti-virus defeating the EDR or finding a misconfigured EDR as we've talked about earlier to compromise the domain and what's consistent is that the fundamentals are broken at these shops they have poor password policies they don't have least access privilege implemented active directory groups are too permissive where domain admin or domain user is also the local admin uh AV or EDR Solutions are misconfigured or easily unhooked and so on and what we found in 10 000 pen tests is that user Behavior analytics tools never caught us in that lateral movement in part because those tools require pristine logging data in order to work and also it becomes very difficult to find that Baseline of normal usage versus abnormal usage of credential login another interesting Insight is there were several Marquee brand name mssps that were defending our customers environment and for them it took seven hours to detect and respond to the pen test seven hours the pen test was over in less than two hours and so what you had was an egregious violation of the service level agreements that that mssp had in place and the customer was able to use us to get service credit and drive accountability of their sock and of their provider the third interesting thing is in one case it took us seven minutes to become domain admin in a bank that bank had every Gucci security tool you could buy yet in 7 minutes and 19 seconds node zero started as an unauthenticated member of the network and was able to escalate privileges through chaining and misconfigurations in lateral movement and so on to become domain admin if it's seven minutes today we should assume it'll be less than a minute a year or two from now making it very difficult for humans to be able to detect and respond to that type of Blitzkrieg attack so that's in the find it's not just about finding problems though the bulk of the effort should be what to do about it the fix and the verify so as you find those problems back to kubernetes as an example we will show you the path here is the kill chain we took to compromise that environment we'll show you the impact here is the impact or here's the the proof of exploitation that we were able to use to be able to compromise it and there's the actual command that we executed so you could copy and paste that command and compromise that cubelet yourself if you want and then the impact is we got code execution and we'll actually show you here is the impact this is a critical here's why it enabled perimeter breach affected applications will tell you the specific IPS where you've got the problem how it maps to the miter attack framework and then we'll tell you exactly how to fix it we'll also show you what this problem enabled so you can accurately prioritize why this is important or why it's not important the next part is accurate prioritization the hardest part of my job as a CIO was deciding what not to fix so if you take SMB signing not required as an example by default that CVSs score is a one out of 10. but this misconfiguration is not a cve it's a misconfig enable an attacker to gain access to 19 credentials including one domain admin two local admins and access to a ton of data because of that context this is really a 10 out of 10. you better fix this as soon as possible however of the seven occurrences that we found it's only a critical in three out of the seven and these are the three specific machines and we'll tell you the exact way to fix it and you better fix these as soon as possible for these four machines over here these didn't allow us to do anything of consequence so that because the hardest part is deciding what not to fix you can justifiably choose not to fix these four issues right now and just add them to your backlog and surge your team to fix these three as quickly as possible and then once you fix these three you don't have to re-run the entire pen test you can select these three and then one click verify and run a very narrowly scoped pen test that is only testing this specific issue and what that creates is a much faster cycle of finding and fixing problems the other part of fixing is verifying that you don't have sensitive data at risk so once we become a domain user we're able to use those domain user credentials and try to gain access to databases file shares S3 buckets git repos and so on and help you understand what sensitive data you have at risk so in this example a green checkbox means we logged in as a valid domain user we're able to get read write access on the database this is how many records we could have accessed and we don't actually look at the values in the database but we'll show you the schema so you can quickly characterize that pii data was at risk here and we'll do that for your file shares and other sources of data so now you can accurately articulate the data you have at risk and prioritize cleaning that data up especially data that will lead to a fine or a big news issue so that's the find that's the fix now we're going to talk about the verify the key part in verify is embracing and integrating with detection engineering practices so when you think about your layers of security tools you've got lots of tools in place on average 130 tools at any given customer but these tools were not designed to work together so when you run a pen test what you want to do is say did you detect us did you log us did you alert on us did you stop us and from there what you want to see is okay what are the techniques that are commonly used to defeat an environment to actually compromise if you look at the top 10 techniques we use and there's far more than just these 10 but these are the most often executed nine out of ten have nothing to do with cves it has to do with misconfigurations dangerous product defaults bad credential policies and it's how we chain those together to become a domain admin or compromise a host so what what customers will do is every single attacker command we executed is provided to you as an attackivity log so you can actually see every single attacker command we ran the time stamp it was executed the hosts it executed on and how it Maps the minor attack tactics so our customers will have are these attacker logs on one screen and then they'll go look into Splunk or exabeam or Sentinel one or crowdstrike and say did you detect us did you log us did you alert on us or not and to make that even easier if you take this example hey Splunk what logs did you see at this time on the VMware host because that's when node 0 is able to dump credentials and that allows you to identify and fix your logging blind spots to make that easier we've got app integration so this is an actual Splunk app in the Splunk App Store and what you can come is inside the Splunk console itself you can fire up the Horizon 3 node 0 app all of the pen test results are here so that you can see all of the results in one place and you don't have to jump out of the tool and what you'll show you as I skip forward is hey there's a pen test here are the critical issues that we've identified for that weaker default issue here are the exact commands we executed and then we will automatically query into Splunk all all terms on between these times on that endpoint that relate to this attack so you can now quickly within the Splunk environment itself figure out that you're missing logs or that you're appropriately catching this issue and that becomes incredibly important in that detection engineering cycle that I mentioned earlier so how do our customers end up using us they shift from running one pen test a year to 30 40 pen tests a month oftentimes wiring us into their deployment automation to automatically run pen tests the other part that they'll do is as they run more pen tests they find more issues but eventually they hit this inflection point where they're able to rapidly clean up their environment and that inflection point is because the red and the blue teams start working together in a purple team culture and now they're working together to proactively harden their environment the other thing our customers will do is run us from different perspectives they'll first start running an RFC 1918 scope to see once the attacker gained initial access in a part of the network that had wide access what could they do and then from there they'll run us within a specific Network segment okay from within that segment could the attacker break out and gain access to another segment then they'll run us from their work from home environment could they Traverse the VPN and do something damaging and once they're in could they Traverse the VPN and get into my cloud then they'll break in from the outside all of these perspectives are available to you in Horizon 3 and node zero as a single SKU and you can run as many pen tests as you want if you run a phishing campaign and find that an intern in the finance department had the worst phishing behavior you can then inject their credentials and actually show the end-to-end story of how an attacker fished gained credentials of an intern and use that to gain access to sensitive financial data so what our customers end up doing is running multiple attacks from multiple perspectives and looking at those results over time I'll leave you two things one is what is the AI in Horizon 3 AI those knowledge graphs are the heart and soul of everything that we do and we use machine learning reinforcement techniques reinforcement learning techniques Markov decision models and so on to be able to efficiently maneuver and analyze the paths in those really large graphs we also use context-based scoring to prioritize weaknesses and we're also able to drive collective intelligence across all of the operations so the more pen tests we run the smarter we get and all of that is based on our knowledge graph analytics infrastructure that we have finally I'll leave you with this was my decision criteria when I was a buyer for my security testing strategy what I cared about was coverage I wanted to be able to assess my on-prem cloud perimeter and work from home and be safe to run in production I want to be able to do that as often as I wanted I want to be able to run pen tests in hours or days not weeks or months so I could accelerate that fine fix verify loop I wanted my it admins and network Engineers with limited offensive experience to be able to run a pen test in a few clicks through a self-service experience and not have to install agent and not have to write custom scripts and finally I didn't want to get nickeled and dimed on having to buy different types of attack modules or different types of attacks I wanted a single annual subscription that allowed me to run any type of attack as often as I wanted so I could look at my Trends in directions over time so I hope you found this talk valuable uh we're easy to find and I look forward to seeing seeing you use a product and letting our results do the talking when you look at uh you know kind of the way no our pen testing algorithms work is we dynamically select uh how to compromise an environment based on what we've discovered and the goal is to become a domain admin compromise a host compromise domain users find ways to encrypt data steal sensitive data and so on but when you look at the the top 10 techniques that we ended up uh using to compromise environments the first nine have nothing to do with cves and that's the reality cves are yes a vector but less than two percent of cves are actually used in a compromise oftentimes it's some sort of credential collection credential cracking uh credential pivoting and using that to become an admin and then uh compromising environments from that point on so I'll leave this up for you to kind of read through and you'll have the slides available for you but I found it very insightful that organizations and ourselves when I was a GE included invested heavily in just standard vulnerability Management Programs when I was at DOD that's all disa cared about asking us about was our our kind of our cve posture but the attackers have adapted to not rely on cves to get in because they know that organizations are actively looking at and patching those cves and instead they're chaining together credentials from one place with misconfigurations and dangerous product defaults in another to take over an environment a concrete example is by default vcenter backups are not encrypted and so as if an attacker finds vcenter what they'll do is find the backup location and there are specific V sender MTD files where the admin credentials are parsippled in the binaries so you can actually as an attacker find the right MTD file parse out the binary and now you've got the admin credentials for the vcenter environment and now start to log in as admin there's a bad habit by signal officers and Signal practitioners in the in the Army and elsewhere where the the VM notes section of a virtual image has the password for the VM well those VM notes are not stored encrypted and attackers know this and they're able to go off and find the VMS that are unencrypted find the note section and pull out the passwords for those images and then reuse those credentials across the board so I'll pause here and uh you know Patrick love you get some some commentary on on these techniques and other things that you've seen and what we'll do in the last say 10 to 15 minutes is uh is rolled through a little bit more on what do you do about it yeah yeah no I love it I think um I think this is pretty exhaustive what I like about what you've done here is uh you know we've seen we've seen double-digit increases in the number of organizations that are reporting actual breaches year over year for the last um for the last three years and it's often we kind of in the Zeitgeist we pegged that on ransomware which of course is like incredibly important and very top of mind um but what I like about what you have here is you know we're reminding the audience that the the attack surface area the vectors the matter um you know has to be more comprehensive than just thinking about ransomware scenarios yeah right on um so let's build on this when you think about your defense in depth you've got multiple security controls that you've purchased and integrated and you've got that redundancy if a control fails but the reality is that these security tools aren't designed to work together so when you run a pen test what you want to ask yourself is did you detect node zero did you log node zero did you alert on node zero and did you stop node zero and when you think about how to do that every single attacker command executed by node zero is available in an attacker log so you can now see you know at the bottom here vcenter um exploit at that time on that IP how it aligns to minor attack what you want to be able to do is go figure out did your security tools catch this or not and that becomes very important in using the attacker's perspective to improve your defensive security controls and so the way we've tried to make this easier back to like my my my the you know I bleed Green in many ways still from my smoke background is you want to be able to and what our customers do is hey we'll look at the attacker logs on one screen and they'll look at what did Splunk see or Miss in another screen and then they'll use that to figure out what their logging blind spots are and what that where that becomes really interesting is we've actually built out an integration into Splunk where there's a Splunk app you can download off of Splunk base and you'll get all of the pen test results right there in the Splunk console and from that Splunk console you're gonna be able to see these are all the pen tests that were run these are the issues that were found um so you can look at that particular pen test here are all of the weaknesses that were identified for that particular pen test and how they categorize out for each of those weaknesses you can click on any one of them that are critical in this case and then we'll tell you for that weakness and this is where where the the punch line comes in so I'll pause the video here for that weakness these are the commands that were executed on these endpoints at this time and then we'll actually query Splunk for that um for that IP address or containing that IP and these are the source types that surface any sort of activity so what we try to do is help you as quickly and efficiently as possible identify the logging blind spots in your Splunk environment based on the attacker's perspective so as this video kind of plays through you can see it Patrick I'd love to get your thoughts um just seeing so many Splunk deployments and the effectiveness of those deployments and and how this is going to help really Elevate the effectiveness of all of your Splunk customers yeah I'm super excited about this I mean I think this these kinds of purpose-built integration snail really move the needle for our customers I mean at the end of the day when I think about the power of Splunk I think about a product I was first introduced to 12 years ago that was an on-prem piece of software you know and at the time it sold on sort of Perpetual and term licenses but one made it special was that it could it could it could eat data at a speed that nothing else that I'd have ever seen you can ingest massively scalable amounts of data uh did cool things like schema on read which facilitated that there was this language called SPL that you could nerd out about uh and you went to a conference once a year and you talked about all the cool things you were splunking right but now as we think about the next phase of our growth um we live in a heterogeneous environment where our customers have so many different tools and data sources that are ever expanding and as you look at the as you look at the role of the ciso it's mind-blowing to me the amount of sources Services apps that are coming into the ciso span of let's just call it a span of influence in the last three years uh you know we're seeing things like infrastructure service level visibility application performance monitoring stuff that just never made sense for the security team to have visibility into you um at least not at the size and scale which we're demanding today um and and that's different and this isn't this is why it's so important that we have these joint purpose-built Integrations that um really provide more prescription to our customers about how do they walk on that Journey towards maturity what does zero to one look like what does one to two look like whereas you know 10 years ago customers were happy with platforms today they want integration they want Solutions and they want to drive outcomes and I think this is a great example of how together we are stepping to the evolving nature of the market and also the ever-evolving nature of the threat landscape and what I would say is the maturing needs of the customer in that environment yeah for sure I think especially if if we all anticipate budget pressure over the next 18 months due to the economy and elsewhere while the security budgets are not going to ever I don't think they're going to get cut they're not going to grow as fast and there's a lot more pressure on organizations to extract more value from their existing Investments as well as extracting more value and more impact from their existing teams and so security Effectiveness Fierce prioritization and automation I think become the three key themes of security uh over the next 18 months so I'll do very quickly is run through a few other use cases um every host that we identified in the pen test were able to score and say this host allowed us to do something significant therefore it's it's really critical you should be increasing your logging here hey these hosts down here we couldn't really do anything as an attacker so if you do have to make trade-offs you can make some trade-offs of your logging resolution at the lower end in order to increase logging resolution on the upper end so you've got that level of of um justification for where to increase or or adjust your logging resolution another example is every host we've discovered as an attacker we Expose and you can export and we want to make sure is every host we found as an attacker is being ingested from a Splunk standpoint a big issue I had as a CIO and user of Splunk and other tools is I had no idea if there were Rogue Raspberry Pi's on the network or if a new box was installed and whether Splunk was installed on it or not so now you can quickly start to correlate what hosts did we see and how does that reconcile with what you're logging from uh finally or second to last use case here on the Splunk integration side is for every single problem we've found we give multiple options for how to fix it this becomes a great way to prioritize what fixed actions to automate in your soar platform and what we want to get to eventually is being able to automatically trigger soar actions to fix well-known problems like automatically invalidating passwords for for poor poor passwords in our credentials amongst a whole bunch of other things we could go off and do and then finally if there is a well-known kill chain or attack path one of the things I really wish I could have done when I was a Splunk customer was take this type of kill chain that actually shows a path to domain admin that I'm sincerely worried about and use it as a glass table over which I could start to layer possible indicators of compromise and now you've got a great starting point for glass tables and iocs for actual kill chains that we know are exploitable in your environment and that becomes some super cool Integrations that we've got on the roadmap between us and the Splunk security side of the house so what I'll leave with actually Patrick before I do that you know um love to get your comments and then I'll I'll kind of leave with one last slide on this wartime security mindset uh pending you know assuming there's no other questions no I love it I mean I think this kind of um it's kind of glass table's approach to how do you how do you sort of visualize these workflows and then use things like sore and orchestration and automation to operationalize them is exactly where we see all of our customers going and getting away from I think an over engineered approach to soar with where it has to be super technical heavy with you know python programmers and getting more to this visual view of workflow creation um that really demystifies the power of Automation and also democratizes it so you don't have to have these programming languages in your resume in order to start really moving the needle on workflow creation policy enforcement and ultimately driving automation coverage across more and more of the workflows that your team is seeing yeah I think that between us being able to visualize the actual kill chain or attack path with you know think of a of uh the soar Market I think going towards this no code low code um you know configurable sore versus coded sore that's going to really be a game changer in improve or giving security teams a force multiplier so what I'll leave you with is this peacetime mindset of security no longer is sustainable we really have to get out of checking the box and then waiting for the bad guys to show up to verify that security tools are are working or not and the reason why we've got to really do that quickly is there are over a thousand companies that withdrew from the Russian economy over the past uh nine months due to the Ukrainian War there you should expect every one of them to be punished by the Russians for leaving and punished from a cyber standpoint and this is no longer about financial extortion that is ransomware this is about punishing and destroying companies and you can punish any one of these companies by going after them directly or by going after their suppliers and their Distributors so suddenly your attack surface is no more no longer just your own Enterprise it's how you bring your goods to Market and it's how you get your goods created because while I may not be able to disrupt your ability to harvest fruit if I can get those trucks stuck at the border I can increase spoilage and have the same effect and what we should expect to see is this idea of cyber-enabled economic Warfare where if we issue a sanction like Banning the Russians from traveling there is a cyber-enabled counter punch which is corrupt and destroy the American Airlines database that is below the threshold of War that's not going to trigger the 82nd Airborne to be mobilized but it's going to achieve the right effect ban the sale of luxury goods disrupt the supply chain and create shortages banned Russian oil and gas attack refineries to call a 10x spike in gas prices three days before the election this is the future and therefore I think what we have to do is shift towards a wartime mindset which is don't trust your security posture verify it see yourself Through The Eyes of the attacker build that incident response muscle memory and drive better collaboration between the red and the blue teams your suppliers and Distributors and your information uh sharing organization they have in place and what's really valuable for me as a Splunk customer was when a router crashes at that moment you don't know if it's due to an I.T Administration problem or an attacker and what you want to have are different people asking different questions of the same data and you want to have that integrated triage process of an I.T lens to that problem a security lens to that problem and then from there figuring out is is this an IT workflow to execute or a security incident to execute and you want to have all of that as an integrated team integrated process integrated technology stack and this is something that I very care I cared very deeply about as both a Splunk customer and a Splunk CTO that I see time and time again across the board so Patrick I'll leave you with the last word the final three minutes here and I don't see any open questions so please take us home oh man see how you think we spent hours and hours prepping for this together that that last uh uh 40 seconds of your talk track is probably one of the things I'm most passionate about in this industry right now uh and I think nist has done some really interesting work here around building cyber resilient organizations that have that has really I think helped help the industry see that um incidents can come from adverse conditions you know stress is uh uh performance taxations in the infrastructure service or app layer and they can come from malicious compromises uh Insider threats external threat actors and the more that we look at this from the perspective of of a broader cyber resilience Mission uh in a wartime mindset uh I I think we're going to be much better off and and will you talk about with operationally minded ice hacks information sharing intelligence sharing becomes so important in these wartime uh um situations and you know we know not all ice acts are created equal but we're also seeing a lot of um more ad hoc information sharing groups popping up so look I think I think you framed it really really well I love the concept of wartime mindset and um I I like the idea of applying a cyber resilience lens like if you have one more layer on top of that bottom right cake you know I think the it lens and the security lens they roll up to this concept of cyber resilience and I think this has done some great work there for us yeah you're you're spot on and that that is app and that's gonna I think be the the next um terrain that that uh that you're gonna see vendors try to get after but that I think Splunk is best position to win okay that's a wrap for this special Cube presentation you heard all about the global expansion of horizon 3.ai's partner program for their Partners have a unique opportunity to take advantage of their node zero product uh International go to Market expansion North America channel Partnerships and just overall relationships with companies like Splunk to make things more comprehensive in this disruptive cyber security world we live in and hope you enjoyed this program all the videos are available on thecube.net as well as check out Horizon 3 dot AI for their pen test Automation and ultimately their defense system that they use for testing always the environment that you're in great Innovative product and I hope you enjoyed the program again I'm John Furrier host of the cube thanks for watching

(upbeat music) >> Welcome back everyone to theCUBE and Horizon3.ai special presentation. I'm John Furrier, host of theCUBE. We're here with Jennifer Lee head of channel sales Horizon3.ai, Jennifer, welcome to theCUBE, thanks for coming on. >> Great, well thank you for having me >> So big news around Horizon3.ai driving channel, first commitment you guys are expanding the channel partner program to include all kinds of new rewards, incentives, training programs to help educate, you know, partners, really drive more recurring revenue, certainly cloud and cloud scale has done that. You got a great product that fits into that kind of channel model, great services you can wrap around it, good stuff. So let's get into it. What are you guys doing? What are you guys doing with this news? Why is this so important? >> Yeah, for sure. So, yeah, we, like you said, we recently expanded our channel partner program. The driving force behind it was really just to align our, like you said, our channel first commitment and creating awareness around the importance of our partner ecosystems. So that's, it's really how we go to market, is through the channel. >> And a great international focus. I've talked with the CEO, you know, about the solution and he broke down all the action on why it's important on the product side, but why now on the go to market change? What's the why behind this big, this news on the channel? >> Yeah, for sure. So we are doing this now, really to align our business strategy, which is built on the concept of enabling our partners to create a high value, high margin business on top of our platform. And so we offer a solution called node zero. It provides autonomous pen testing as a service and it allows organizations to continuously verify their security posture. So our, we, our company vision, we have this tagline that states that our pen testing enables organizations to see themselves through the eyes of an attacker. And we use the, like the attacker's perspective to identify exploitable weaknesses and vulnerabilities. So we created this partner program from a perspective of the partner. So the partner's perspective and we've built it through the eyes of our partner, right? So we're prioritizing really what the partner is looking for and will ensure like mutual success for us. >> Yeah, the partners always want to get in front of the customers and bring new stuff to them. Pen tests have traditionally been really expensive. And so bringing it down and in one, to a service level that's, one, affordable and has flexibility to it allows a lot of capabilities. So I imagine people are going to get excited by it. So I have to ask you about the program. What specifically are you guys doing? Can you share any details around what it means for the partners, what they get, what's in it for them? Can you just break down some of the mechanics and mechanisms or details? >> Yeah. Yep, so, you know, we're really looking to create business alignment. And like I said, established mutual success with our partners, so we've got 2 key elements that we were really focused on that we bring to the partners. So the opportunity, the profit margin expansion is one of 'em and a way for our partners to really differentiate themselves and stay relevant in the market. So we've restructured our discount model, really, you know, highlighting profitability and maximizing profitability. And this includes our deal registration. We've created a deal registration program. We've increased discount for partners who take part in our partner certification trainings, and we've, we have some other partner incentives that we've created that's going to help out there. We've put this all, so we've recently gone live with our partner portal, it's a consolidated experience for our partners where they can access our sales tools. And we really view our partners as an extension of our sales and technical teams. And so we've extended all of our training material that we use internally, we've made it available to our partners through our partner portal. We've, I'm trying, I'm thinking now back, what else is in that partner portal here? We've got our partner certification information. So all the content that's delivered during that training can be found in the portal. We've got deal registration, co-branded marketing materials, pipeline management. And so this portal gives our partners a one stop place to go to final event information. And then just really quickly on the second part of that, that I mentioned is our technology really is really disruptive to the market. So, you know, like you said, autonomous pen testing, it's still, it's, well, it's still a relatively new topic for security practitioners and it's proving to be really disruptive. So that on top of just, well, recently we found an article that mentioned by markets to markets that reports that the global pen testing market's really expanding. And so it's expected to grow to like 2.7 billion by 2027. So the market's there, right? The market's expanding, it's growing. And so for our partners, it just really allows them to grow their revenue across their customer base, expand their customer base and offering this high profit margin while, you know, getting in early to market on this disruptive technology. >> Big market, a lot of opportunities to make some money. People love to put more margin on those deals, especially when you can bring a great solution that everyone knows is hard to do. So I think that's going to provide a lot of value. Is there a type of partner that you guys see emerging or you aligning with, you mentioned the alignment with the partners. I can see how that, the training and the incentives are all there. Sounds like it's all going well. Is there a type of partner that's resonating the most or is there categories of partners that can take advantage of this? >> Yeah, absolutely. So we work with all different kinds of partners. We work with our traditional resale partners. We're working with systems integrators. We have a really strong MSP, MSSP program. We've got consulting partners and the consulting partners especially with the ones that offer pen test services. So we, they use us as a, we act as a force multiplier, just really offering them profit margin expansion opportunity there. We've got some technology partners that we really work with for co-sell opportunities. And then we've got our cloud partners. You had mentioned that earlier and so we are in AWS marketplace, our CCPO partners, we're part of the ISV accelerate program. So we're doing a lot there with our cloud partners. And of course we go to market with distribution partners as well. >> Got to love the opportunity for more margin expansion. Every kind of partner wants to put more gross profit on their deals. Is there a certification involved, I have to ask? Is there like, do you get, do people get certified or is it just, you get train? Is it self-paced training? Is it in person? How are you guys doing the whole training, certification thing? Is that a requirement, or not? >> Yeah, absolutely. So we do offer a certification program and it's been very popular. This includes a seller's portion and an operator portion. And so this is at no cost to our partners and we offer it both virtually, it's live, it's virtually, but live, it's not self-paced. And we also have in person, you know, sessions as well. And we also can customize these to any partners that have a large group of people. And we can just, we can do one in person or virtual just specifically for that partner. >> Well, any kind of incentive opportunities and marketing opportunities? Everyone loves to get the deals just kind of rolling in leads, from what we can see, out early reportings, this looks like a hot product, price wise, service level wise. What incentives do you guys start thinking about and joint marketing, you mentioned co-sell earlier in pipeline, so I was kind of owning in on that piece. >> Sure and yes, and then to follow along with our partner certification program, we do incentivize our partners there. If they have a certain number certified, their discount increases. So that's part of it. We have our deal registration program that increases discount as well. And then we do have some partner incentives that are wrapped around meeting setting, and moving opportunities along to proof of value. >> Got to love the education driving value. I have to ask you, so you do, you've been around the industry, you've seen the channel relationships out there. You've seen companies, old school, new school, you know, Horizon3.ai is kind of like that new school, very cloud specific, a lot of leverage with, well, you mentioned AWS and all the clouds. Why is the company so hot right now? Why did you join them? And what's, why are people attracted to this company? What's the attraction, what's the vibe? What do you see and what do you, what did you see in this company? >> Well, this is just, you know, like I said, it's very disruptive. It's really in high demand right now. And just because it's new to market and a newer technology, so we are, we can collaborate with a manual pen tester. We can, you know, we can allow our customers to run their pen test with no specialty teams. And then, so we, and like, you know, like I said, we can allow, our partners can actually build businesses, profitable businesses, so we can, they can use our product to increase their services revenue and build their business model, you know, around, around our services. >> What's interesting about the pen testing is that it's very expensive and time consuming. And the people who do them are very talented people that could be working on really bigger things in the- >> Absolutely. >> In the customers. So bringing this into the channel allows them, if you look at the price dealt between a pen test and then what you guys are offering. I mean, that's a huge margin gap between street price of say today's pen test and what you guys offer. When you show people that, do they fall, do they say too good to be true? I mean, what are some of the things that people say when you kind of show 'em that? Are they like scratch their head, like, come on, what's the catch here? >> Right, so the cost savings is a huge, is huge for us. And then also, you know, like I said, working as a force multiplier with a pen testing company that offers the services and so they can do their annual manual pen test that may be required around compliance regulations. And then we can act as the continuous verification of their security, you know, that they can run weekly. And so it's just, you know, it's just an addition to what they're offering already and an expansion. >> So, Jennifer, thanks for coming on theCUBE, really appreciate you coming on, sharing the insights on the channel. What's next? What can we expect from the channel group? What are you thinking, what's going on? >> Right, so we're really looking to expand our channel footprint and very strategically, we've got some big plans for Horizon3.ai. >> Awesome, well, thanks for coming on. Really appreciate it, you're watching theCUBE, the leader in high tech enterprise coverage. (upbeat music)

(light music) >> Hello, and welcome to theCUBE's special presentation with Horizon3.ai with Rainer Richter, Vice President of EMEA, Europe, Middle East and Africa, and Asia Pacific, APAC Horizon3.ai. Welcome to this special CUBE presentation. Thanks for joining us. >> Thank you for the invitation. >> So Horizon3.ai, driving global expansion, big international news with a partner-first approach. You guys are expanding internationally. Let's get into it. You guys are driving this new expanse partner program to new heights. Tell us about it. What are you seeing in the momentum? Why the expansion? What's all the news about? >> Well, I would say in international, we have, I would say a similar situation like in the US. There is a global shortage of well-educated penetration testers on the one hand side. On the other side, we have a raising demand of network and infrastructure security. And with our approach of an autonomous penetration testing, I believe we are totally on top of the game, especially as we have also now starting with an international instance. That means for example, if a customer in Europe is using our service, NodeZero, he will be connected to a NodeZero instance, which is located inside the European Union. And therefore, he doesn't have to worry about the conflict between the European GDPR regulations versus the US CLOUD Act. And I would say there, we have a total good package for our partners that they can provide differentiators to their customers. >> You know, we've had great conversations here on theCUBE with the CEO and the founder of the company around the leverage of the cloud and how successful that's been for the company. And obviously, I can just connect the dots here, but I'd like you to weigh in more on how that translates into the go-to-market here because you got great cloud scale with the security product you guys are having success with. Great leverage there, I'm seeing a lot of success there. What's the momentum on the channel partner program internationally? Why is it so important to you? Is it just the regional segmentation? Is it the economics? Why the momentum? >> Well, there are multiple issues. First of all, there is a raising demand in penetration testing. And don't forget that in international, we have a much higher level number or percentage in SMB and mid-market customers. So these customers, typically, most of them even didn't have a pen test done once a year. So for them, pen testing was just too expensive. Now with our offering together with our partners, we can provide different ways how customers could get an autonomous pen testing done more than once a year with even lower costs than they had with a traditional manual pen test, and that is because we have our Consulting PLUS package, which is for typically pen testers. They can go out and can do a much faster, much quicker pen test at many customers after each other. So they can do more pen test on a lower, more attractive price. On the other side, there are others or even the same one who are providing NodeZero as an MSSP service. So they can go after SMP customers saying, "Okay, you only have a couple of hundred IP addresses. No worries, we have the perfect package for you." And then you have, let's say the mid-market. Let's say the thousand and more employees, then they might even have an annual subscription. Very traditional, but for all of them, it's all the same. The customer or the service provider doesn't need a piece of hardware. They only need to install a small piece of a Docker container and that's it. And that makes it so smooth to go in and say, "Okay, Mr. Customer, we just put in this virtual attacker into your network, and that's it and all the rest is done." And within three clicks, they can act like a pen tester with 20 years of experience. >> And that's going to be very channel-friendly and partner-friendly, I can almost imagine. So I have to ask you, and thank you for calling out that breakdown and segmentation. That was good, that was very helpful for me to understand, but I want to follow up, if you don't mind. What type of partners are you seeing the most traction with and why? >> Well, I would say at the beginning, typically, you have the innovators, the early adapters, typically boutique-size of partners. They start because they are always looking for innovation. Those are the ones, they start in the beginning. So we have a wide range of partners having mostly even managed by the owner of the company. So they immediately understand, okay, there is the value, and they can change their offering. They're changing their offering in terms of penetration testing because they can do more pen tests and they can then add others ones. Or we have those ones who offered pen test services, but they did not have their own pen testers. So they had to go out on the open market and source pen testing experts to get the pen test at a particular customer done. And now with NodeZero, they're totally independent. They can go out and say, "Okay, Mr. Customer, here's the service. That's it, we turn it on. And within an hour, you are up and running totally." >> Yeah, and those pen tests are usually expensive and hard to do. Now it's right in line with the sales delivery. Pretty interesting for a partner. >> Absolutely, but on the other hand side, we are not killing the pen tester's business. We are providing with NodeZero, I would call something like the foundational work. The foundational work of having an ongoing penetration testing of the infrastructure, the operating system. And the pen testers by themselves, they can concentrate in the future on things like application pen testing, for example. So those services, which we are not touching. So we are not killing the pen tester market. We are just taking away the ongoing, let's say foundation work, call it that way. >> Yeah, yeah. That was one of my questions. I was going to ask is there's a lot of interest in this autonomous pen testing. One because it's expensive to do because those skills are required are in need and they're expensive. (chuckles) So you kind of cover the entry-level and the blockers that are in there. I've seen people say to me, "This pen test becomes a blocker for getting things done." So there's been a lot of interest in the autonomous pen testing and for organizations to have that posture. And it's an overseas issue too because now you have that ongoing thing. So can you explain that particular benefit for an organization to have that continuously verifying an organization's posture? >> Certainly. So I would say typically, you have to do your patches. You have to bring in new versions of operating systems, of different services, of operating systems of some components, and they are always bringing new vulnerabilities. The difference here is that with NodeZero, we are telling the customer or the partner the package. We're telling them which are the executable vulnerabilities because previously, they might have had a vulnerability scanner. So this vulnerability scanner brought up hundreds or even thousands of CVEs, but didn't say anything about which of them are vulnerable, really executable. And then you need an expert digging in one CVE after the other, finding out is it really executable, yes or no? And that is where you need highly-paid experts, which where we have a shortage. So with NodeZero now, we can say, "Okay, we tell you exactly which ones are the ones you should work on because those are the ones which are executable. We rank them accordingly to risk level, how easily they can be used." And then the good thing is converted or in difference to the traditional penetration test, they don't have to wait for a year for the next pen test to find out if the fixing was effective. They run just the next scan and say, "Yes, closed. Vulnerability is gone." >> The time is really valuable. And if you're doing any DevOps, cloud-native, you're always pushing new things. So pen test, ongoing pen testing is actually a benefit just in general as a kind of hygiene. So really, really interesting solution. Really bringing that global scale is going to be a new coverage area for us, for sure. I have to ask you, if you don't mind answering, what particular region are you focused on or plan to target for this next phase of growth? >> Well, at this moment, we are concentrating on the countries inside the European Union plus United Kingdom. And of course, logically, I'm based in the Frankfurt area. That means we cover more or less the countries just around. So it's like the so-called DACH region, Germany, Switzerland, Austria, plus the Netherlands. But we also already have partners in the Nordic, like in Finland and Sweden. So we have partners already in the UK and it's rapidly growing. So for example, we are now starting with some activities in Singapore and also in the Middle East area. Very important, depending on let's say, the way how to do business. Currently, we try to concentrate on those countries where we can have, let's say at least English as an accepted business language. >> Great, is there any particular region you're having the most success with right now? Sounds like European Union's kind of first wave. What's the most- >> Yes, that's the first. Definitely, that's the first wave. And now with also getting the European INSTANCE up and running, it's clearly our commitment also to the market saying, "Okay, we know there are certain dedicated requirements and we take care of this." And we are just launching, we are building up this one, the instance in the AWS service center here in Frankfurt. Also, with some dedicated hardware, internet, and a data center in Frankfurt, where we have with the DE-CIX, by the way, the highest internet interconnection bandwidth on the planet. So we have very short latency to wherever you are on the globe. >> That's a great call out benefit too. I was going to ask that. What are some of the benefits your partners are seeing in EMEA and Asia Pacific? >> Well, I would say, the benefits for them, it's clearly they can talk with customers and can offer customers penetration testing, which they before even didn't think about because penetration testing in a traditional way was simply too expensive for them, too complex, the preparation time was too long, they didn't have even have the capacity to support an external pen tester. Now with this service, you can go in and even say, "Mr. Customer, we can do a test with you in a couple of minutes. We have installed a Docker container. Within 10 minutes, we have the pen test started. That's it and then we just wait." And I would say we are seeing so many aha moments then. On the partner side, when they see NodeZero the first time working, it's like they say, "Wow, that is great." And then they walk out to customers and show it to their typically at the beginning, mostly the friendly customers like, "Wow, that's great, I need that." And I would say the feedback from the partners is that is a service where I do not have to evangelize the customer. Everybody understands penetration testing, I don't have to describe what it is. The customer understanding immediately, "Yes. Penetration testing, heard about that. I know I should do it, but too complex, too expensive." Now for example, as an MSSP service provided from one of our partners, it's getting easy. >> Yeah, and it's great benefit there. I mean, I got to say I'm a huge fan of what you guys are doing. I like this continuous automation. That's a major benefit to anyone doing DevOps or any kind of modern application development. This is just a godsend for them, this is really good. And like you said, the pen testers that are doing it, they were kind of coming down from their expertise to kind of do things that should have been automated. They get to focus on the bigger ticket items. That's a really big point. >> Exactly. So we free them, we free the pen testers for the higher level elements of the penetration testing segment, and that is typically the application testing, which is currently far away from being automated. >> Yeah, and that's where the most critical workloads are, and I think this is the nice balance. Congratulations on the international expansion of the program, and thanks for coming on this special presentation. I really appreciate it. Thank you very much. >> You're welcome. >> Okay, this is theCUBE special presentation, you know, checking on pen test automation, international expansion, Horizon3.ai. A really innovative solution. In our next segment, Chris Hill, Sector Head for Strategic Accounts, will discuss the power of Horizon3.ai and Splunk in action. You're watching theCUBE, the leader in high tech enterprise coverage. (steady music)

>>Welcome back everyone to the Cube and Horizon three.ai special presentation. I'm John Furrier, host of the Cube. We with Chris Hill, Sector head for strategic accounts and federal@horizonthree.ai. Great innovative company. Chris, great to see you. Thanks for coming on the Cube. >>Yeah, like I said, you know, great to meet you John. Long time listener. First time call. So excited to be here with >>You guys. Yeah, we were talking before camera. You had Splunk back in 2013 and I think 2012 was our first splunk.com. Yep. And boy man, you know, talk about being in the right place at the right time. Now we're at another inflection point and Splunk continues to be relevant and continuing to have that data driving security and that interplay. And your ceo, former CTO of Splunk as well at Horizons Neha, who's been on before. Really innovative product you guys have, but you know, Yeah, don't wait for a brief to find out if you're locking the right data. This is the topic of this thread. Splunk is very much part of this new international expansion announcement with you guys. Tell us what are some of the challenges that you see where this is relevant for the Splunk and the Horizon AI as you guys expand Node zero out internationally? >>Yeah, well so across, so you know, my role within Splunk was working with our most strategic accounts. And so I look back to 2013 and I think about the sales process like working with, with our small customers. You know, it was, it was still very siloed back then. Like I was selling to an IT team that was either using us for IT operations. We generally would always even say, yeah, although we do security, we weren't really designed for it. We're a log management tool. And you know, we, and I'm sure you remember back then John, we were like sort of stepping into the security space and in the public sector domain that I was in, you know, security was 70% of what we did. When I look back to sort of the transformation that I was, was witnessing in that digital transformation, you know when I, you look at like 2019 to today, you look at how the IT team and the security teams are, have been forced to break down those barriers that they used to sort of be silo away, would not communicate one, you know, the security guys would be like, Oh this is my BA box it, you're not allowed in today. >>You can't get away with that. And I think that the value that we bring to, you know, and of course Splunk has been a huge leader in that space and continues to do innovation across the board. But I think what we've we're seeing in the space that I was talking with Patrick Kauflin, the SVP of security markets about this, is that, you know, what we've been able to do with Splunk is build a purpose built solution that allows Splunk to eat more data. So Splunk itself, as you well know, it's an ingest engine, right? So the great reason people bought it was you could build these really fast dashboards and grab intelligence out of it, but without data it doesn't do anything, right? So how do you drive and how do you bring more data in? And most importantly from a customer perspective, how do you bring the right data in? >>And so if you think about what node zero and what we're doing in a Horizon three is that, sure we do pen testing, but because we're an autonomous pen testing tool, we do it continuously. So this whole thought of being like, Oh, crud like my customers, Oh yeah, we got a pen test coming up, it's gonna be six weeks. The wait. Oh yeah. You know, and everyone's gonna sit on their hands, Call me back in two months, Chris, we'll talk to you then. Right? Not, not a real efficient way to test your environment and shoot, we, we saw that with Uber this week. Right? You know, and that's a case where we could have helped. >>Well just real quick, explain the Uber thing cause it was a contractor. Just give a quick highlight of what happened so you can connect the >>Dots. Yeah, no problem. So there it was, I think it was one of those, you know, games where they would try and test an environment. And what the pen tester did was he kept on calling them MFA guys being like, I need to reset my password re to set my password. And eventually the customer service guy said, Okay, I'm resetting it. Once he had reset and bypassed the multifactor authentication, he then was able to get in and get access to the domain area that he was in or the, not the domain, but he was able to gain access to a partial part of the network. He then paralleled over to what would I assume is like a VA VMware or some virtual machine that had notes that had all of the credentials for logging into various domains. And so within minutes they had access. And that's the sort of stuff that we do under, you know, a lot of these tools. >>Like not, and I'm not, you know, you think about the cacophony of tools that are out there in a CTA orchestra architecture, right? I'm gonna get like a Zscaler, I'm gonna have Okta, I'm gonna have a Splunk, I'm gonna do this sore system. I mean, I don't mean to name names, we're gonna have crowd strike or, or Sentinel one in there. It's just, it's a cacophony of things that don't work together. They weren't designed work together. And so we have seen so many times in our business through our customer support and just working with customers when we do their pen test, that there will be 5,000 servers out there. Three are misconfigured. Those three misconfigurations will create the open door. Cause remember the hacker only needs to be right once, the defender needs to be right all the time. And that's the challenge. And so that's why I'm really passionate about what we're doing here at Horizon three. I see this my digital transformation, migration and security going on, which we're at the tip of the sp, it's why I joined say Hall coming on this journey and just super excited about where the path's going and super excited about the relationship with Splunk. I get into more details on some of the specifics of that. But you know, >>I mean, well you're nailing, I mean we've been doing a lot of things around super cloud and this next gen environment, we're calling it NextGen. You're really seeing DevOps, obviously Dev SecOps has, has already won the IT role has moved to the developer shift left as an indicator of that. It's one of the many examples, higher velocity code software supply chain. You hear these things. That means that it is now in the developer hands, it is replaced by the new ops, data ops teams and security where there's a lot of horizontal thinking. To your point about access, there's no more perimeter. So >>That there is no perimeter. >>Huge. A hundred percent right, is really right on. I don't think it's one time, you know, to get in there. Once you're in, then you can hang out, move around, move laterally. Big problem. Okay, so we get that. Now, the challenges for these teams as they are transitioning organizationally, how do they figure out what to do? Okay, this is the next step. They already have Splunk, so now they're kind of in transition while protecting for a hundred percent ratio of success. So how would you look at that and describe the challenges? What do they do? What is, what are the teams facing with their data and what's next? What do they, what do they, what action do they take? >>So let's do some vernacular that folks will know. So if I think about dev sec ops, right? We both know what that means, that I'm gonna build security into the app, but no one really talks about SEC DevOps, right? How am I building security around the perimeter of what's going inside my ecosystem and what are they doing? And so if you think about what we're able to do with somebody like Splunk is we could pen test the entire environment from soup to nuts, right? So I'm gonna test the end points through to it. So I'm gonna look for misconfigurations, I'm gonna, and I'm gonna look for credential exposed credentials. You know, I'm gonna look for anything I can in the environment. Again, I'm gonna do it at at light speed. And, and what we're, what we're doing for that SEC dev space is to, you know, did you detect that we were in your environment? >>So did we alert Splunk or the SIM that there's someone in the environment laterally moving around? Did they, more importantly, did they log us into their environment? And when did they detect that log to trigger that log? Did they alert on us? And then finally, most importantly, for every CSO out there is gonna be did they stop us? And so that's how we, we, we do this in, I think you, when speaking with Stay Hall, before, you know, we've come up with this boils U Loop, but we call it fine fix verify. So what we do is we go in is we act as the attacker, right? We act in a production environment. So we're not gonna be, we're a passive attacker, but we will go in un credentialed UN agents. But we have to assume, have an assumed breach model, which means we're gonna put a Docker container in your environment and then we're going to fingerprint the environment. >>So we're gonna go out and do an asset survey. Now that's something that's not something that Splunk does super well, you know, so can Splunk see all the assets, do the same assets marry up? We're gonna log all that data and think then put load that into the Splunk sim or the smoke logging tools just to have it in enterprise, right? That's an immediate future ad that they've got. And then we've got the fix. So once we've completed our pen test, we are then gonna generate a report and we could talk about about these in a little bit later. But the reports will show an executive summary the assets that we found, which would be your asset discovery aspect of that, a fixed report. And the fixed report I think is probably the most important one. It will go down and identify what we did, how we did it, and then how to fix that. >>And then from that, the pen tester or the organization should fix those. Then they go back and run another test. And then they validate through like a change detection environment to see, hey, did those fixes taste, play take place? And you know, SNA Hall, when he was the CTO of JS o, he shared with me a number of times about, he's like, Man, there would be 15 more items on next week's punch sheet that we didn't know about. And it's, and it has to do with how we, you know, how they were prioritizing the CVEs and whatnot because they would take all CVS was critical or non-critical. And it's like we are able to create context in that environment that feeds better information into Splunk and whatnot. That >>Was a lot. That brings, that brings up the, the efficiency for Splunk specifically. The teams out there. By the way, the burnout thing is real. I mean, this whole, I just finished my list and I got 15 more or whatever the list just can, keeps, keeps growing. How did Node zero specifically help Splunk teams be more efficient? Now that's the question I want to get at, because this seems like a very scalable way for Splunk customers and teams, service teams to be more efficient. So the question is, how does Node zero help make Splunk specifically their service teams be more efficient? >>So to, so today in our early interactions with building Splunk customers, what we've seen are five things, and I'll start with sort of identifying the blind spots, right? So kind of what I just talked about with you. Did we detect, did we log, did we alert? Did they stop node zero, right? And so I would, I put that at, you know, a a a more layman's third grade term. And if I was gonna beat a fifth grader at this game would be, we can be the sparring partner for a Splunk enterprise customer, a Splunk essentials customer, someone using Splunk soar, or even just an enterprise Splunk customer that may be a small shop with three people and, and just wants to know where am I exposed. So by creating and generating these reports and then having the API that actually generates the dashboard, they can take all of these events that we've logged and log them in. >>And then where that then comes in is number two is how do we prioritize those logs, right? So how do we create visibility to logs that are, have critical impacts? And again, as I mentioned earlier, not all CVEs are high impact regard and also not all are low, right? So if you daisy chain a bunch of low CVEs together, boom, I've got a mission critical AP CVE that needs to be fixed now, such as a credential moving to an NT box that's got a text file with a bunch of passwords on it, that would be very bad. And then third would be verifying that you have all of the hosts. So one of the things that Splunk's not particularly great at, and they, they themselves, they don't do asset discovery. So do what assets do we see and what are they logging from that? And then for, from, for every event that they are able to identify the, one of the cool things that we can do is actually create this low-code, no-code environment. >>So they could let, you know, float customers can use Splunk. So to actually triage events and prioritize that events or where they're being routed within it to optimize the SOX team time to market or time to triage any given event. Obviously reducing mtr. And then finally, I think one of the neatest things that we'll be seeing us develop is our ability to build glass tables. So behind me you'll see one of our triage events and how we build a lock Lockheed Martin kill chain on that with a glass table, which is very familiar to this Splunk community. We're going to have the ability, not too distant future to allow people to search, observe on those IOCs. And if people aren't familiar with an ioc, it's an incident of compromise. So that's a vector that we want to drill into. And of course who's better at drilling in into data and Splunk. >>Yeah, this is a critical, this is awesome synergy there. I mean I can see a Splunk customer going, Man, this just gives me so much more capability. Action actionability. And also real understanding, and I think this is what I wanna dig into, if you don't mind understanding that critical impact, okay. Is kind of where I see this coming. I got the data, data ingest now data's data. But the question is what not to log, You know, where are things misconfigured? These are critical questions. So can you talk about what it means to understand critical impact? >>Yeah, so I think, you know, going back to those things that I just spoke about, a lot of those CVEs where you'll see low, low, low and then you daisy chain together and you're suddenly like, oh, this is high now. But then to your other impact of like if you're a, if you're a a Splunk customer, you know, and I had, I had several of them, I had one customer that, you know, terabytes of McAfee data being brought in and it was like, all right, there's a lot of other data that you probably also wanna bring, but they could only afford, wanted to do certain data sets because that's, and they didn't know how to prioritize or filter those data sets. And so we provide that opportunity to say, Hey, these are the critical ones to bring in. But there's also the ones that you don't necessarily need to bring in because low CVE in this case really does mean low cve. >>Like an ILO server would be one that, that's the print server where the, your admin credentials are on, on like a, a printer. And so there will be credentials on that. That's something that a hacker might go in to look at. So although the CVE on it is low, if you daisy chain was something that's able to get into that, you might say, ah, that's high. And we would then potentially rank it giving our AI logic to say that's a moderate. So put it on the scale and we prioritize though, versus a, a vulner review scanner's just gonna give you a bunch of CVEs and good luck. >>And translating that if I, if I can and tell me if I'm wrong, that kind of speaks to that whole lateral movement. That's it. Challenge, right? Print server, great example, look stupid low end, who's gonna wanna deal with the print server? Oh, but it's connected into a critical system. There's a path. Is that kind of what you're getting at? >>Yeah, I used daisy chain. I think that's from the community they came from. But it's, it's just a lateral movement. It's exactly what they're doing. And those low level, low critical lateral movements is where the hackers are getting in. Right? So that's what the beauty thing about the, the Uber example is that who would've thought, you know, I've got my multifactor authentication going in a human made a mistake. We can't, we can't not expect humans to make mistakes. Were fall, were fallible, right? Yeah. The reality is is once they were in the environment, they could have protected themselves by running enough pen tests to know that they had certain exposed credentials that would've stopped the breach. Yeah. And they did not, had not done that in their environment. And I'm not poking. Yeah, >>They put it's interesting trend though. I mean it's obvious if sometimes those low end items are also not protected well. So it's easy to get at from a hacker standpoint, but also the people in charge of them can be fished easily or spear fished because they're not paying attention. Cause they don't have to. No one ever told them, Hey, be careful of what you collect. >>Yeah. For the community that I came from, John, that's exactly how they, they would meet you at a, an international event introduce themselves as a graduate student. These are national actor states. Would you mind reviewing my thesis on such and such? And I was at Adobe at the time though I was working on this and start off, you get the pdf, they opened the PDF and whoever that customer was launches, and I don't know if you remember back in like 2002, 2008 time frame, there was a lot of issues around IP being by a nation state being stolen from the United States and that's exactly how they did it. And John, that's >>Or LinkedIn. Hey I wanna get a joke, we wanna hire you double the salary. Oh I'm gonna click on that for sure. You know? Yeah, >>Right. Exactly. Yeah. The one thing I would say to you is like when we look at like sort of, you know, cuz I think we did 10,000 pen test last year is it's probably over that now, you know, we have these sort of top 10 ways that we think then fine people coming into the environment. The funniest thing is that only one of them is a, a CVE related vulnerability. Like, you know, you guys know what they are, right? So it's it, but it's, it's like 2% of the attacks are occurring through the CVEs, but yet there's all that attention spent to that. Yeah. And very little attention spent to this pen testing side. Yeah. Which is sort of this continuous threat, you know, monitoring space and, and, and this vulnerability space where I think we play such an important role and I'm so excited to be a part of the tip of the spear on this one. >>Yeah. I'm old enough to know the movie sneakers, which I love as a, you know, watching that movie, you know, professional hackers are testing, testing, always testing the environment. I love this. I gotta ask you, as we kind of wrap up here, Chris, if you don't mind the benefits to team professional services from this alliance, big news Splunk and you guys work well together. We see that clearly. What are, what other benefits do professional services teams see from the Splunk and Horizon three AI alliance? >>So if you're a, I think for, from our, our, from both of our partners as we bring these guys together and many of them already are the same partner, right? Is that first off, the licensing model is probably one of the key areas that we really excel at. So if you're an end user, you can buy for the enterprise by the enter of IP addresses you're using. But if you're a partner working with this, there's solution ways that you can go in and we'll license as to MSPs and what that business model on our MSPs looks like. But the unique thing that we do here is this c plus license. And so the Consulting Plus license allows like a, somebody a small to midsize to some very large, you know, Fortune 100, you know, consulting firms uses by buying into a license called Consulting Plus where they can have unlimited access to as many ips as they want. >>But you can only run one test at a time. And as you can imagine when we're going and hacking passwords and checking hashes and decrypting hashes, that can take a while. So, but for the right customer, it's, it's a perfect tool. And so I I'm so excited about our ability to go to market with our partners so that we underhand to sell, understand how not to just sell too or not tell just to sell through, but we know how to sell with them as a good vendor partner. I think that that's one thing that we've done a really good job building bringing into market. >>Yeah. I think also the Splunk has had great success how they've enabled partners and professional services. Absolutely. They've, you know, the services that layer on top of Splunk are multifold tons of great benefits. So you guys vector right into that ride, that wave with >>Friction. And, and the cool thing is that in, you know, in one of our reports, which could be totally customized with someone else's logo, we're going to generate, you know, so I, I used to work at another organization, it wasn't Splunk, but we, we did, you know, pen testing as a, as a for, for customers and my pen testers would come on site, they, they do the engagement and they would leave. And then another really, someone would be, oh shoot, we got another sector that was breached and they'd call you back, you know, four weeks later. And so by August our entire pen testings teams would be sold out and it would be like, wow. And in March maybe, and they'd like, No, no, no, I gotta breach now. And, and, and then when they do go in, they go through, do the pen test and they hand over a PDF and they pat you on the back and say, there's where your problems are, you need to fix it. And the reality is, is that what we're gonna generate completely autonomously with no human interaction is we're gonna go and find all the permutations that anything we found and the fix for those permutations and then once you fixed everything, you just go back and run another pen test. Yeah. It's, you know, for what people pay for one pen test, they could have a tool that does that. Every, every pat patch on Tuesday pen test on Wednesday, you know, triage throughout the week, >>Green, yellow, red. I wanted to see colors show me green, green is good, right? Not red. >>And once CIO doesn't want, who doesn't want that dashboard, right? It's, it's, it is exactly it. And we can help bring, I think that, you know, I'm really excited about helping drive this with the Splunk team cuz they get that, they understand that it's the green, yellow, red dashboard and, and how do we help them find more green so that the other guys are >>In Yeah. And get in the data and do the right thing and be efficient with how you use the data, Know what to look at. So many things to pay attention to, you know, the combination of both and then, then go to market strategy. Real brilliant. Congratulations Chris. Thanks for coming on and sharing this news with the detail around this Splunk in action around the alliance. Thanks for sharing, >>John. My pleasure. Thanks. Look forward to seeing you soon. >>All right, great. We'll follow up and do another segment on DevOps and IT and security teams as the new new ops, but, and Super cloud, a bunch of other stuff. So thanks for coming on. And our next segment, the CEO of Verizon, three AA, will break down all the new news for us here on the cube. You're watching the cube, the leader in high tech enterprise coverage.

(upbeat jingle) >> The history of Exadata in the platform is really unique. And from my vantage point, it started earlier this century as a skunkworks inside of Oracle called Project Sage back when grid computing was the next big thing. Oracle saw that betting on standard hardware would put it on an industry curve that would rapidly evolve. Last April, for example, Oracle announced the availability of Exadata X9M in OCI, Oracle Cloud Infrastructure. One thing that hasn't been as well publicized is that Exadata on OCI is using AMD's EPYC processors in the database service. EPYC is not Eastern Pacific Yacht Club for all you sailing buffs, rather it stands for Extreme Performance Yield Computing, the enterprise grade version of AMD's Zen architecture which has been a linchpin of AMD's success in terms of penetrating enterprise markets. And to focus on the innovations that AMD and Oracle are bringing to market, we have with us today, Juan Loaiza, who's executive vice president of mission critical technologies at Oracle, and Mark Papermaster, who's the CTO and EVP of technology and engineering at AMD. Juan, welcome back to the show. Mark, great to have you on The Cube in your first appearance, thanks for coming on. Juan, let's start with you. You've been on The Cube a number of times, as I said, and you've talked about how Exadata is a top platform for Oracle database. We've covered that extensively. What's different and unique from your point of view about Exadata Cloud Infrastructure X9M on OCI? >> So as you know, Exadata, it's designed top down to be the best possible platform for database. It has a lot of unique capabilities, like we make extensive use of RDMA, smart storage. We take advantage of everything we can in the leading hardware platforms. X9M is our next generation platform and it does exactly that. We're always wanting to be, to get all the best that we can from the available hardware that our partners like AMD produce. And so that's what X9M in it is, it's faster, more capacity, lower latency, more iOS, pushing the limits of the hardware technology. So we don't want to be the limit, the software database software should not be the limit, it should be the actual physical limits of the hardware. That that's what X9M's all about. >> Why, Juan, AMD chips in X9M? >> We're introducing AMD chips. We think they provide outstanding performance, both for OTP and for analytic workloads. And it's really that simple, we just think the performance is outstanding in the product. >> Mark, your career is quite amazing. I could riff on history for hours but let's focus on the Oracle relationship. Mark, what are the relevant capabilities and key specs of the AMD chips that are used in Exadata X9M on Oracle's cloud? >> Well, thanks. It's really the basis of the great partnership that we have with Oracle on Exadata X9M and that is that the AMD technology uses our third generation of Zen processors. Zen was architected to really bring high performance back to X86, a very strong roadmap that we've executed on schedule to our commitments. And this third generation does all of that, it uses a seven nanometer CPU that is a core that was designed to really bring throughput, bring really high efficiency to computing and just deliver raw capabilities. And so for Exadata X9M, it's really leveraging all of that. It's really a balanced processor and it's implemented in a way to really optimize high performance. That is our whole focus of AMD. It's where we've reset the company focus on years ago. And again, great to see the super smart database team at Oracle really partner with us, understand those capabilities and it's been just great to partner with them to enable Oracle to really leverage the capabilities of the Zen processor. >> Yeah. It's been a pretty amazing 10 or 11 years for both companies. But Mark, how specifically are you working with Oracle at the engineering and product level and what does that mean for your joint customers in terms of what they can expect from the collaboration? >> Well, here's where the collaboration really comes to play. You think about a processor and I'll say, when Juan's team first looked at it, there's general benchmarks and the benchmarks are impressive but they're general benchmarks. And they showed the base processing capability but the partnership comes to bear when it means optimizing for the workloads that Exadata X9M is really delivering to the end customers. And that's where we dive down and as we learn from the Oracle team, we learn to understand where bottlenecks could be, where is there tuning that we could in fact really boost the performance above that baseline that you get in the generic benchmarks. And that's what the teams have done, so for instance, you look at optimizing latency to our DMA, you look at optimizing throughput on oil TP and database processing. When you go through the workloads and you take the traces and you break it down and you find the areas that are bottlenecking and then you can adjust, we have thousands of parameters that can be adjusted for a given workload. And that's the beauty of the partnership. So we have the expertise on the CPU engineering, Oracle Exadata team knows innately what the customers need to get the most out of their platform. And when the teams came together, we actually achieved anywhere from 20% to 50% gains on specific workloads, it is really exciting to see. >> Mark, last question for you is how do you see this relationship evolving in the future? Can you share a little roadmap for the audience? >> You bet. First off, given the deep partnership that we've had on Exadata X9M, it's really allowed us to inform our future design. So in our current third generation, EPYC is that is really what we call our epic server offerings. And it's a 7,003 third gen and Exadara X9M. So what about fourth gen? Well, fourth gen is well underway, ready for the future, but it incorporates learning that we've done in partnership with Oracle. It's going to have even more through capabilities, it's going to have expanded memory capabilities because there's a CXL connect express link that'll expand even more memory opportunities. And I could go on. So that's the beauty of a deep partnership as it enables us to really take that learning going forward. It pays forward and we're very excited to fold all of that into our future generations and provide even a better capabilities to Juan and his team moving forward. >> Yeah, you guys have been obviously very forthcoming. You have to be with Zen and EPYC. Juan, anything you'd like to add as closing comments? >> Yeah. I would say that in the processor market there's been a real acceleration in innovation in the last few years, there was a big move 10, 15 years ago when multicore processors came out. And then we were on that for a while and then things started stagnating, but in the last two or three years, AMD has been leading this, there's been a dramatic acceleration in innovation so it's very exciting to be part of this and customers are getting a big benefit from this. >> All right. Hey, thanks for coming back on The Cube today. Really appreciate your time. >> Thanks. Glad to be here. >> All right and thank you for watching this exclusive Cube conversation. This is Dave Vellante from The Cube and we'll see you next time. (upbeat jingle)

hybrid work is the new reality according to the most recent survey data from enterprise technology research cios expect that 65 of their employees will work either as fully remote or in a hybrid model splitting time between remote and in office remote of course can be anywhere it could be home it could be at the beach overseas literally anywhere there's internet so it's no surprise that these same technology executives cite security as their number one priority well ahead of other critical technology initiatives including collaboration software cloud computing and analytics which round out the top four in the etr survey now as we've reported securing endpoints was important prior to the pandemic but the explosion in the past two plus years of remote work and corollary device usage has made the problem even more acute and let's face it managing sprawling i.t assets has always been a pain patch management for example has been a nagging concern for practitioners and with ransomware attacks on the rise it's critical that security teams harden it assets throughout their life cycle staying current and constantly staying on top of vulnerabilities within the threat surface welcome to this special program on the cube enable and secure the everywhere workplace brought to you by ivanti in this program we highlight key partnerships between avanti and its ecosystem to address critical problems faced by technology and security teams in our first segment we explore a collaboration between avanti and sentinel one where the two companies are teaming to simplify patch management my name is dave vellante and i'll be your host today and with me are nayaki nayar who's the president and chief product officer at avanti and nick warner president and security of the security group at sentinel one welcome naki and nick and hackie good to have you back in the cube great to see you guys thank you thank you dave uh really good to be back on cube uh i'm a veteran of cube so thank you for having us and um look forward to a great discussion today yeah you better thanks okay hey good nick nick good to have you on as well what do we need to know about this partnership please so uh if you look at uh we are super excited about this partnership nick thank you for joining us on this session today um when you look at ivanti ivanti has been a leader in two big segments uh we are a leader in unified endpoint management with the acquisition of mobileye now we have a holistic end-to-end management of all devices be it windows linux mac ios you name it right so we have that seamless single pane of glass to manage all devices but in addition to that we are also a leader in risk-based patch management um dave that's what we are very excited about this partnership with the with central one where now we can combine the strength we have in the risk-based patch management with central one's xdr platform and truly help address what i call the need of the hour with our customers for them to be able to detect uh vulnerabilities and being able to remediate them proactively remediate them right so that's what we are super excited about this partnership and nick would love to hand it over to you to talk about uh the partnership and the journey ahead of us thanks and you know from center one's perspective we see autonomous vulnerability assessment and remediation as really necessary given the evolution uh in the sophistication the volume and the ferocity of threats out there and what's really key is being able to remediate risks and machine speed and also identify vulnerability exposure in real time and you know if you look traditionally at uh vulnerability scanning and patch management they've really always been two separate things and when things are separate they take time between the two coordination communication what we're looking to do with our singularity xdr platform is holistically deliver one unified solution that can identify threats identify vulnerabilities and automatically and autonomously leverage patch management to much better protect our customers so maybe maybe that's why patch management is such a challenge for many organizations because as you described nick it's sort of a siloed from security and those worlds are coming together but maybe you guys could address the specific problems that you're trying to solve with this collaboration yeah so if you look at uh just in a holistic level uh dave today cyber crime is at catastrophic heights right and this is not just a cio or a cso issue this is a board issue every organization every enterprise is addressing this at the board level and when you double click on it one of the challenges that we have heard from our customers over and over again is the complexity and the manual processes that are in place for remediation or patching all their operating systems their applications their third party apps and that is where it's very very time consuming very complex very cumbersome and the question is how do we help them automate it right how do we help them remove those manual processes and autonomously intermediate right so which is where this partnership between ivanti and central one helps organizations to bring this autonomous nature to bring those proactive predictive capabilities to detect an issue prioritize that issue based on risk-based prioritization is what we call it and autonomously remediate that issue right so that's where uh this partnership really really uh helps our customers address the the top concerns they have in cyber crime or cyber security got it so prioritization automation nick maybe you could address what are the keys i mean you got to map vulnerabilities to software updates how do you make sure that your the patches there's not a big lag between your patch and and the known vulnerabilities and you've got this diverse set of you know i.t portfolio assets how do you manage all that it's a great question and i and i think really the number one uh issue around this topic is that security teams and it teams are facing a really daunting task of identifying all the time every day all the vulnerabilities in their ecosystem and the biggest problem with this is how do they get context and priority and i think what people have come to realize through the years of dealing with with patch management uh and vulnerability scanning is that patching without the context of what the possible impact or priority of that risk is really comes down to busy work and i think what's so important in a totally interconnected world with attacks happening at machine speed is being able to take that precious asset that we call time and make sure you properly prioritize that how we're doing it from sentinel one singularity xdr perspective is by leveraging autonomous threat information and being able to layer that against vulnerability information to properly view through that lens the highest priority threats and vulnerabilities that you need to patch and then using our single agent technology be able to autonomously remediate and patch those vulnerabilities whether or not it's on a mac a pc server a cloud workload and the beauty of our solution is it gives you proper clarity so you can see the impact of vulnerabilities each and every day in your environment and know that you're doing the right thing in the right order got it okay so the context gives you the risks profile allows you to prioritize and then of course you can you know remediate what else should we know about this this joint solution uh in terms of you know what it is how i engage any other detail on how it addresses the the problem specifically yeah so it's all about race against the time um uh dave when it's how we help our customers uh detect the vulnerability prioritize it and remediate it the attackers are able to weaponize those vulnerabilities and and have an attack right so it's really it's how we help our customers be a lot more proactive and predictive address those vulnerabilities versus um before the attackers really get access to it right so that's where our joint solution in fact i always say whatever edr with this edr or mdr or xdr the r portion of that r is very one he comes in our neurons for patch management or what we call neurons but risk based patch management combined with um central ones xdr is where we truly uh bring the combined solutions to to to life right so the r is where ivanti really plays a big part in uh in the joint solution yeah absolutely the response i mean people i think all agree you're going to get infiltrated that's how you respond to it you know the thing about this topic is when you make a business case a lot of times you'll go to the cfo and say hey if we don't do this we're going to be in big trouble and so it's this fear factor and i get that it's super important but but are there other measurements of success that that you you can share in other words how are customers going to determine the value of this joint solution so it's a mean time to repair let me go nick and then i'm sure you have your uh metrics and how you're measuring the success it's about how we can detect an issue and repair that issue it's reducing that mean time to repair as much as possible and making it as real-time as possible for our customers right that's where the true outcome through success and the metric that customers can track measure and continuously improve on nick you want to add to that for sure yeah you know you make some great great points niaki and what what i would add is um what sentinel one singularity platform is known for is automated and autonomous detection prevention and response and remediation across threats and if you look traditionally at patch management or vulnerability assessment they're typically deployed and run in point-of-time solutions what i mean by that is that they're scans and re-scans the way that advanced edr solutions and xdr solutions such as single one singularity platform work is we're constantly recording everything that's happening on all of your systems in real time and so what we do is literally eliminate the window of opportunity between a patch being uh needed a vulnerability being discovered and you knowing that you have that need for that vulnerability to be patched in your environment you don't have to wait for that 12 or 24-hour window to scan for vulnerabilities you will immediately know it in your network you'll also know the security implications of that vulnerability so you know when and how to prioritize and then furthermore you can take autonomous hatching measures against that so at the end of the day the name of the game in security is time and it's about reducing that window of opportunity for the adversaries for the threat actors and this is a epic leap forward in in doing that for our customers and that capability nick is a function of your powerful agent or is it architecture where's that come from that's a great question it's it's a combination of a couple of things the first is our agent technology which performs constant monitoring on every system every behavior every process running on all your systems live and in real time so this is not a batch process that that kicks up once a day this is always running in the background so the moment a new application is installed the moment a new application version is deployed we know about it we record it instantaneously so if you think about that and layer against getting best in class vulnerability information from a partner like avanti and then also being able to deploy patch management against that you can start to see how you're applying that in real time in your environment and the last thing i i'd like to add is because we're watching everything and then layering it against thread intel and context using our proprietary machine learning technology that that idea of being able to prioritize and escalate is critical because if you talk to security providers there's a couple different uh challenges that they're facing and i would say the top two are alert fatigue and then also human human power limitations and so no security team has enough people on their team and no security teams have an absence of alerts and so the fact that we can prioritize alerts surface the ones that are the most important give context to that and also save them precious hours of their personnel's time by being able to do this autonomously and automatically we're really killing two birds with one stone that's great there's the business case right there you just laid out some other things that we can measure right it all comes back to the data doesn't it we got to go but i'll give you the last word yeah i mean we are super excited about this partnership uh like nick said uh we believe in how we can help our customers discover all the assets we have they have um manage those assets but a big chunk of it is how we help them secure it right secure uh their devices the applications the data that's on those devices the end points and being able to provide an experience a service experience at the end of the day so that end users don't have to worry about securing you don't have to think about security it should be embedded it should be autonomous and it should be contactually personalized right so uh that's the journey we are on and uh thank you nick for this great partnership and look forward to a great journey ahead of us thank you yeah thanks to both of you nick appreciate it okay keep it right there after this quick break we're gonna be back to look at how ivanti is working with other partners to simplify and harden the anywhere workplace you're watching the cube your leader in enterprise and emerging tech coverage [Music] you

[Music] the history of exadata in the platform is really unique and from my vantage point it started earlier this century as a skunk works inside of oracle called project sage back when grid computing was the next big thing oracle saw that betting on standard hardware would put it on an industry curve that would rapidly evolve and i remember the oracle hp database machine which was announced at oracle open world almost 15 years ago and then exadata kept evolving after the sun acquisition it became a platform that had tightly integrated hardware and software and today exadata it keeps evolving almost like a chameleon to address more workloads and reach new performance levels last april for example oracle announced the availability of exadata x9m in oci oracle cloud infrastructure and introduced the ability to run the autonomous database service or the exa data database service you know oracle often talks about they call it stock exchange performance level kind of no description needed and sort of related capabilities the company as we know is fond of putting out benchmarks and comparisons with previous generations of product and sometimes competitive products that underscore the progress that's being made with exadata such as 87 percent more iops with metrics for latency measured in microseconds mics instead of milliseconds and many other numbers that are industry-leading and compelling especially for mission-critical workloads one thing that hasn't been as well publicized is that exadata on oci is using amd's epyc processors in the database service epyc is not eastern pacific yacht club for all your sailing buffs rather it stands for extreme performance yield computing the enterprise grade version of amd's zen architecture which has been a linchpin of amd's success in terms of penetrating enterprise markets and to focus on the innovations that amd and oracle are bringing to market we have with us today juan loyza who's executive vice president of mission critical technologies at oracle and mark papermaster who's the cto and evp of technology and engineering at amd juan welcome back to the show mark great to have you on thecube and your first appearance thanks for coming on yep happy to be here thank you all right juan let's start with you you've been on thecube a number of times as i said and you've talked about how exadata is a top platform for oracle database we've covered that extensively what's different and unique from your point of view about exadata cloud infrastructure x9m on oci yeah so as you know exadata it's designed top down to be the best possible platform for database uh it has a lot of unique capabilities like we make extensive use of rdma smart storage we take advantage of you know everything we can in the leading uh hardware platforms and x9m is our next generation platform and it does exactly that we're always wanting to be to get all the best that we can from the available hardware that our partners like amd produce and so that's what x9 in it is it's faster more capacity lower latency more ios pushing the limits of the hardware technology so we don't want to be the limit the software the database software should not be the limit it should be uh the actual physical limits of the hardware and that that's what x9m is all about why won amd chips in x9m uh yeah so we're we're uh introducing uh amd chips we think they provide outstanding performance uh both for oltp and for analytic workloads and it's really that simple we just think that performance is outstanding in the product yeah mark your career is quite amazing i've been around long enough to remember the transition to cmos from emitter coupled logic in the mainframe era back when you were at ibm that was an epic technology call at the time i was of course steeped as an analyst at idc in the pc era and like like many witnessed the tectonic shift that apple's ipod and iphone caused and the timing of you joining amd is quite important in my view because it coincided with the year that pc volumes peaked and marked the beginning of what i call a stagflation period for x86 i could riff on history for hours but let's focus on the oracle relationship mark what are the relevant capabilities and key specs of the amd chips that are used in exadata x9m on oracle's cloud well thanks and and uh it's really uh the basis of i think the great partnership that we have with oracle on exadata x9m and that is that the amd technology uses our third generation of zen processors zen was you know architected to really bring high performance you know back to x86 a very very strong road map that we've executed you know on schedule to our commitments and this third generation does all of that it uses a seven nanometer cpu that is a you know core that was designed to really bring uh throughput uh bring you know really high uh efficiency uh to computing uh and just deliver raw capabilities and so uh for uh exadata x9m uh it's really leveraging all of that it's it's a uh implemented in up to 64 cores per socket it's got uh you know really anywhere from 128 to 168 pcie gen 4 io connectivity so you can you can really attach uh you know all of the uh the necessary uh infrastructure and and uh storage uh that's needed uh for exadata performance and also memory you have to feed the beast for those analytics and for the oltp that juan was talking about and so it does have eight lanes of memory for high performance ddr4 so it's really as a balanced processor and it's implemented in a way to really optimize uh high performance that that is our whole focus of uh amd it's where we've you know reset the company focus on years ago and uh again uh you know great to see uh you know the the super smart uh you know database team at oracle really a partner with us understand those capabilities and it's been just great to partner with them to uh you know to you know enable oracle to really leverage the capabilities of the zen processor yeah it's been a pretty amazing 10 or 11 years for both companies but mark how specifically are you working with oracle at the engineering and product level you know and what does that mean for your joint customers in terms of what they can expect from the collaboration well here's where the collaboration really comes to play you think about a processor and you know i'll say you know when one's team first looked at it there's general benchmarks and the benchmarks are impressive but they're general benchmarks and you know and they showed you know the i'll say the you know the base processing capability but the partnership comes to bear uh when it when it means optimizing for the workloads that exadata x9m is really delivering to the end customers and that's where we dive down and and as we uh learn from the oracle team we learned to understand where bottlenecks could be uh where is there tuning that we could in fact in fact really boost the performance above i'll say that baseline that you get in the generic benchmarks and that's what the teams have done so for instance you look at you know optimizing latency to rdma you look at just throughput optimizing throughput on otp and database processing when you go through the workloads and you take the traces and you break it down and you find the areas that are bottlenecking and then you can adjust we have you know thousands of parameters that can be adjusted for a given workload and that's again that's the beauty of the partnership so we have the expertise on the cpu engineering uh you know oracle exudated team knows innately what the customers need to get the most out of their platform and when the teams came together we actually achieved anywhere from 20 percent to 50 gains on specific workloads it's really exciting to see so okay so so i want to follow up on that is that different from the competition how are you driving customer value you mentioned some you know some some percentage improvements are you measuring primarily with with latency how do you look at that well uh you know we are differentiated with the uh in the number of factors we bring a higher core density we bring the highest core density certainly in x86 and and moreover what we've led the industry is how to scale those cores we have a very high performance fabric that connects those together so as as a customer needs more cores again we scale anywhere from 8 to 64 cores but what the trick is uh that is you add more cores you want the scale the scale to be as close to linear as possible and so that's a differentiation we have and we enable that again with that balanced computer of cpu io and memory that we design but the key is you know we pride ourselves at amd of being able to partner in a very deep fashion with our customers we listen very well i think that's uh what we've had the opportunity uh to do with uh juan and his team we appreciate that and and that is how we got the kind of performance benefits that i described earlier it's working together almost like one team and in bringing that best possible capability to the end customers great thank you for that one i want to come back to you can both the exadata database service and the autonomous database service can they take advantage of exadata cloud x9m capabilities that are in that platform yeah absolutely um you know autonomous is basically our self-driving version of the oracle database but fundamentally it is the same uh database course so both of them will take advantage of the tremendous performance that we're getting now you know when when mark takes about 64 cores that's for chip we have two chips you know it's a two socket server so it's 128 128-way processor and then from our point of view there's two threads so from the database point there's 200 it's a 256-way processor and so there's a lot of raw performance there and we've done a lot of work with the amd team to make sure that we deliver that to our customers for all the different kinds of workload including otp analytics but also including for our autonomous database so yes absolutely allah takes advantage of it now juan you know i can't let you go without asking about the competition i've written extensively about the big four hyperscale clouds specifically aws azure google and alibaba and i know that don't hate me sometimes it angers some of my friends at oracle ibm too that i don't include you in that list but but i see oracle specifically is different and really the cloud for the most demanding applications and and top performance databases and not the commodity cloud which of course that angers all my friends at those four companies so i'm ticking everybody off so how does exadata cloud infrastructure x9m compare to the likes of aws azure google and other database cloud services in terms of oltp and analytics value performance cost however you want to frame it yeah so our architecture is fundamentally different uh we've architected our database for the scale out environment so for example we've moved intelligence in the storage uh we've put uh remote direct memory access we put persistent memory into our product so we've done a lot of architectural changes that they haven't and you're starting to see a little bit of that like if you look at some of the things that amazon and google are doing they're starting to realize that hey if you're gonna achieve good results you really need to push some database uh processing into the storage so so they're taking baby steps toward that you know you know roughly 15 years after we we've had a product and again at some point they're gonna realize you really need rdma you really need you know more uh direct access to those capabilities so so they're slowly getting there but you know we're well ahead and what you know the way this is delivered is you know better availability better performance lower latency higher iops so and this is why our customers love our product and you know if you if you look at the global fortune 100 over 90 percent of them are running exit data today and even in the in our cloud uh you know over 60 of the global 100 are running exadata in the oracle cloud because of all the differentiated uh benefits that they get uh from the product uh so yeah we're we're well ahead in the in the database space mark last question for you is how do you see this relationship evolving in the future can you share a little road map for the audience you bet well first off you know given the deep partnership that we've had on exudate x9m uh it it's really allowed us to inform our future design so uh in our current uh third generation epic epyc is uh that is really uh what we call our epic server offerings and it's a 7003 third gen in and exudate x9m so what about fourth gen well fourth gen is well underway uh you know it and uh and uh you know ready to you know for the for the future but it incorporates learning uh that we've done in partnership with with oracle uh it's gonna have even more through capabilities it's gonna have expanded memory capabilities because there's a cxl connect express link that'll expand even more memory opportunities and i could go on so you know that's the beauty of a deep partnership as it enables us to really take that learning going forward it pays forward and we're very excited to to fold all of that into our future generations and provide even a better capabilities to one and his team moving forward yeah you guys have been obviously very forthcoming you have to be with with with zen and epic juan anything you'd like to add as closing comments yeah i would say that in the processor market there's been a real acceleration in innovation in the last few years um there was you know a big move 10 15 years ago when multi-core processors came out and then you know we were on that for a while and then things started staggering but in the last two or three years and amd has been leading this um there's been a dramatic uh acceleration in innovation in this space so it's very exciting to be part of this and and customers are getting a big benefit from this all right chance hey thanks for coming back in the cube today really appreciate your time thanks glad to be here all right thank you for watching this exclusive cube conversation this is dave vellante from thecube and we'll see you next time [Music]

(upbeat music) >> Hey everyone! Welcome to the AWS Partner Showcase. This is season one, episode three with a focus on women in tech. I'm your host, Lisa Martin. I've got two guests here with me, Sue Persichetti, the EVP of Global AWS Strategic Alliances at Jefferson Frank. A Tenth Revolution Group company. And Danielle Greshock, one of our own CUBE alumni, joins us, ISV PSA director. Ladies, it's great to have you on the program talking about a topic that is near and dear to my heart, women in tech. >> Thank you, Lisa! >> Great to be here! >> So let's go ahead and start with you. Give the audience an understanding of Jefferson Frank, what does the company do, and about the partnership with AWS. >> Sure, so let's just start, Jefferson Frank is a Tenth Revolution Group company. And if you look at it, it's really talent as a service. So Jefferson Frank provides talent solutions all over the world for AWS clients, partners, and users, et cetera. And we have a sister company called Revolent, which is a talent creation company within the AWS ecosystem. So we create talent and put it out in the ecosystem. Usually underrepresented groups, over half of them are women. And then we also have a company called Rebura, which is a delivery model around AWS technology. So all three companies fall under the Tenth Revolution Group organization. >> Got it, Danielle, talk to me a little bit about from AWS' perspective and the focus on hiring more women in technology and about the partnership. >> Yes, this has definitely been a focus ever since I joined eight years ago, but also just especially in the last few years of we've grown exponentially and our customer base has changed. We want to have an organization interacting with them that reflects our customers, right? And we know that we need to keep pace with that even with our growth. And so we've very much focused on early career talent, bringing more women and underrepresented minorities into the organization, sponsoring those folks, promoting them, giving them paths to grow inside of the organization. I'm an example of that, of course, I've benefited from it. But also, I try to bring that into my organization as well and it's super important. >> Tell me a little bit about how you benefited from that, Danielle. >> I just think that I've been able to get, a seat at the table. I think that. I feel as though I have folks supporting me very deeply and want to see me succeed. And also they put me forth as a representative to bring more women into the organization as well. They give me a platform in order to do that, like this, but also many other spots as well. And I'm happy to do it because I feel that... you always want to feel that you're making a difference in your job. And that is definitely a place where I get that time and space in order to be that representative. To bring more women into benefiting from having careers in technology, which there's a lot of value there. >> Lot of value. Absolutely. So back over to you, what are some of the trends that you are seeing from a gendered diversity perspective in tech? We know the numbers of women in technical positions. >> Right. There's so much data out there that shows when girls start dropping out, but what are some of the trends that you're seeing? >> So that's a really interesting question. And Lisa, I had a whole bunch of data points that I wanted to share with you but just two weeks ago, I was in San Francisco with AWS at The Summit. And we were talking about this, we were talking about how we can collectively together attract more women, not only to AWS, not only to technology, but to the AWS ecosystem in particular. And it was fascinating because I was talking about the challenges that women have, and how hard to believe but about 5% of women who were in the ecosystem have left in the past few years. Which was really, really something that shocked everyone when we were talking about it, because all of the things that we've been asking for, for instance working from home, better pay, more flexibility, better maternity leave. Seems like those things are happening. So we're getting what we want, but people are leaving. And it seemed like the feedback that we got was that a lot of women still felt very underrepresented. The number one thing was that they couldn't be... you can't be what you can't see. So because they... we feel, collectively women, people who identify as women, just don't see enough women in leadership, they don't see enough mentors. I think I've had great mentors, but just not enough. I'm lucky enough to have the president of our company, Zoe Morris is a woman and she does lead by example. So I'm very lucky for that. And Jefferson Frank really quickly we put out a hiring, a salary, and hiring guide. Career and hiring guide every year. And the data points, and that's about 65 pages long, no one else does it. It gives an abundance of information around everything about the AWS ecosystem that a hiring manager might need to know. What I thought was really unbelievable was that only 7% of the people that responded to it were women. So my goal, being that we have such a very big global platform, is to get more women to respond to that survey. So we can get as much information and take action. So... >> Absolutely only 7%. So a long way to go there. Danielle, talk to me about AWS' focus on women in tech. I was watching, Sue, I saw that you shared on LinkedIn the TED Talk that the CEO and founder of Girls Who Code did. And one of the things that she said was that there was a survey that HP did some years back that showed that 60%... that men will apply for jobs if they only meet 60% of the list of requirements. Whereas with females, it's far, far less. We've all been in that imposter syndrome conundrum before. But Danielle, talk to us about AWS' specific focus here to get these numbers up. >> Well, I think it speaks to what Susan was talking about how I think we're approaching it top and bottom, right? We're looking out at who are the women who are currently in technical positions and how can we make AWS an attractive place for them to work? And that's a lot of the changes that we've had around maternity leave and those types of things. But then also, a more flexible working arrangements. But then also early... how can we actually impact early career women and actually women who are still in school. And our training and certification team is doing amazing things to get more girls exposed to AWS, to technology, and make it a less intimidating place. And have them look at employees from AWS and say like, "Oh, I can see myself in those people". And kind of actually growing the viable pool of candidates. I think we're limited with the viable pool of candidates when you're talking about mid-to-late career. But how can we help retrain women who are coming back into the workplace after having a child, and how can we help with military women who want to... or underrepresented minorities who want to move into AWS? We have a great military program but then also just that early high school career getting them in that trajectory. >> Sue, is that something that Jefferson Frank is also able to help with is getting those younger girls before they start to feel... >> Right. "There's something wrong with me, I don't get this." >> Right. >> Talk to us about how Jefferson Frank can help really drive up that in those younger girls. >> Let me tell you one other thing to refer back to that Summit that we did we had breakout sessions and that was one of the topics. Cause that's the goal, right? To make sure that there are ways to attract them. That's the goal. So some of the things that we talked about was mentoring programs from a very young age, some people said high school. But then we said, even earlier, goes back to you can't be what you can't see. So getting mentoring programs established. We also talked about some of the great ideas was being careful of how we speak to women using the right language to attract them. And so there was a teachable moment for me there actually. It was really wonderful because an African American woman said to me, "Sue". And I was talking about how you can't be what you can't see. And what she said was, "Sue, it's really different for me as an African American woman" Or she identified as non-binary but she was relating to African American women. She said, "You're a white woman. Your journey was very different than my journey". And I thought, "This is how we're going to learn". I wasn't offended by her calling me out at all. It was a teachable moment. And I thought I understood that but those are the things that we need to educate people on. Those moments where we think we're saying and doing the right thing, but we really need to get that bias out there. So here at Jefferson Frank we're trying really hard to get that careers and hiring guide out there. It's on our website to get more women to talk to it, but to make suggestions in partnership with AWS around how we can do this. Mentoring. We have a mentor me program. We go around the country and do things like this. We try to get the education out there in partnership with AWS. We have a women's group, a women's leadership group. So much that we do and we try to do it in partnership with AWS. >> Danielle, can you comment on the impact that AWS has made so far regarding some of the trends and and gender diversity that Sue was talking about? What's the impact that's been made so far with this partnership? >> Well, I think just being able to get more of the data and have awareness of leaders on how... it used to be a couple years back, I would feel like sometimes the solving to bring more women into the organization was kind of something that folks thought, "Oh, this is... Danielle is going to solve this." And I think a lot of folks now realize, "Oh, this is something that we all need to solve for." And a lot of my colleagues, who maybe a couple years ago didn't have any awareness or didn't even have the tools to do what they needed to do in order to improve the statistics on their or in their organizations, now actually have those tools and are able to kind of work with companies like Susan's work with Jefferson Frank in order to actually get the data, and actually make good decisions, and feel as though they often... these are not lived experiences for these folks. So they don't know what they don't know. And by providing data, and providing awareness, and providing tooling, and then setting goals, I think all of those things have really turned things around in a very positive way. >> And so you bring up a great point about from a diversity perspective. What is Jefferson Frank doing to get those data points up to get more women of all, well, really underrepresented minorities to be able to provide that feedback so that you can have the data and gleamy insights from it to help companies like AWS on their strategic objectives? >> Right, so when I go back to that careers and hiring guide, that is my focus today really, because the more data that we have and the data takes... we need people to participate in order to accurately get ahold of that data. So that's why we're asking. We're taking the initiative to really expand our focus. We are a global organization with a very, very massive database all over the world. But if people don't take action then we can't get the right... the data will not be as accurate as we'd like it to be, therefore take better action. So what we're doing is we're asking people all over the world to participate on our website jeffersonfrank.com In the survey so we can learn as much as we can. 7% is such a... Danielle and I we've got to partner on this just to sort of get that message out there, get more data so we can execute. Some of the other things that we're doing, we're partnering, as I mentioned, more of these events. We're doing around the Summits, we're going to be having more EDNI events, and collecting more information from women. Like I said, internally, we do practice what we preach and we have our own programs that are out there, that are within our own company where the women who are talking to candidates and clients every single day are trying to get that message out there. So if I'm speaking to a client or one of our internal people are speaking to a client or a candidate, they're telling them, "Listen, we really are trying to get these numbers up. We want to attract as many people as we can. Would you mind going to this hiring guide and offering your own information?" So we've got to get that 7% up. We've got to keep talking. We've got to keep getting programs out there. One other thing I wanted to Danielle's point, she mentioned women in leadership, the number that we gathered was only 9% of women in leadership within the AWS ecosystem. We've got to get that number up as well, because I know for me, when I see people like Danielle or her peers it inspires me. And I feel like I just want to give back. Make sure I send the elevator back to the first floor and bring more women in to this amazing ecosystem. >> Absolutely, we need- >> Love that metaphor. >> I do too! But to your point to get those numbers up not just at AWS, but everywhere else we need It's a help me help you situation. >> Exactly. >> So ladies, underrepresented minorities, if you're watching go to the Jefferson Frank website, take the survey. Help provide the data so that the women here that are doing this amazing work, have it to help make decisions and have more of females in leadership roles or underrepresented minorities. So we can be what we can see. >> Exactly. >> Ladies, thank you so much for joining me today and sharing what you guys are doing together to partner on this important cause. >> Thank you for having me, Lisa! >> Thank you! Thank you! >> My pleasure! For my guests, I'm Lisa Martin. You're watching theCUBES coverage of the AWS partner showcase. Thanks for your time. (gentle xylophone music)

>>Hey, everyone. Welcome to the AWS partner, showcase women in tech. I'm Lisa Martin from the cube. And today we're gonna be looking into the exciting evolution of women in the tech industry. I'm going to be joined by Danielle GShock, the ISP PSA director at AWS. And we have the privilege of speaking with some wicked smart women from Teradata NetApp. JFI a 10th revolution group, company and honeycomb.io. We're gonna look at some of the challenges and biases that women face in the tech industry, especially in leadership roles. We're also gonna be exploring how are these tech companies addressing diversity, equity and inclusion across their organizations? How can we get more young girls into stem earlier in their careers? So many questions. So let's go ahead and get started. This is the AWS partner showcase women in tech. Hey, everyone. Welcome to the AWS partner showcase. This is season one, episode three. And I'm your host, Lisa Martin. I've got two great guests here with me to talk about women in tech. Hillary Ashton joins us the chief product officer at Terry data. And Danielle Greshaw is back with us, the ISV PSA director at AWS ladies. It's great to have you on the program talking through such an important topic, Hillary, let's go ahead and start with you. Give us a little bit of an intro into you, your background, and a little bit about Teradata. >>Yeah, absolutely. So I'm Hillary Ashton. I head up the products organization. So that's our engineering product management office of the CTO team. Um, at Teradata I've been with Terra data for just about three years and really have spent the last several decades. If I can say that in the data and analytics space, um, I spent time, uh, really focused on the value of, of analytics at scale, and I'm super excited to be here at Teradata. I'm also a mom of two teenage boys. And so as we talk about women in tech, I think there's, um, uh, lots of different dimensions and angles of that. Um, at Teradata, we are partnered very deeply with AWS and happy to talk a little bit more about that, um, throughout this discussion as well. >>Excellent. A busy mom of two teen boys. My goodness. I don't know how you do it. Let's now look, Atter data's views of diversity, equity and inclusion. It's a, the, it's a topic that's important to everyone, but give us a snapshot into some of the initiatives that Terra data has there. >>Yeah, I have to say, I am super proud to be working at Teradata. We have gone through, uh, a series of transformations, but I think it starts with culture and we are deeply committed to diversity, equity and inclusion. It's really more than just a statement here. It's just how we live our lives. Um, and we use, uh, data to back that up. Um, in fact, we were named one of the world's most ethical companies for the 13th year in a row. Um, and all of our executive leadership team has taken an oath around D E and I that's available on LinkedIn as well. So, um, in fact, our leadership team reporting into the CEO is just about 50 50, um, men and women, which is the first time I've worked in a company where that has been the case. And I think as individuals, we can probably appreciate what a huge difference that makes in terms of not just being a representative, but truly being on a, on a diverse and equitable, uh, team. And I think it really, uh, improves the behaviors that we can bring, um, to our office. >>There's so much value in that. It's I impressive to see about a 50 50 at the leadership level. That's not something that we see very often. Tell me how you, Hillary, how did you get into tech? Were you an engineering person by computer science, or did you have more of a zigzaggy path to where you are now? >>I'm gonna pick door number two and say more zigzaggy. Um, I started off thinking, um, that I started off as a political science major or a government major. Um, and I was probably destined to go into, um, the law field, but actually took a summer course at Harvard. I did not go to Harvard, but I took a summer course there and learned a lot about multimedia and some programming. And that really set me on a trajectory of how, um, data and analytics can truly provide value and, and outcomes to our customers. Um, and I have been living that life ever since. Um, I graduated from college, so, um, I was very excited and privileged in my early career to, uh, work in a company where I found after my first year that I was managing, um, uh, kids, people who had graduated from Harvard business school and from MIT Sloan school. Um, and that was super crazy, cuz I did not go to either of those schools, but I sort of have always had a natural knack for how do you take technology and, and the really cool things that technology can do, but because I'm not a programmer by training, I'm really focused on the value that I'm able to help, um, organizations really extract value, um, from the technology that we can create, which I think is fantastic. >>I think there's so much value in having a zigzag path into tech. You bring Danielle, you and I have talked about this many times you bring such breadth and such a wide perspective. That really is such a value. Add to teams. Danielle, talk to us from AWS's perspective about what can be done to encourage more young women to get and under and underrepresented groups as well, to get into stem and stay. >>Yeah, and this is definitely a challenge as we're trying to grow our organization and kind of shift the numbers. And the reality is, especially with the more senior folks in our organization, unless you bring folks with a zigzag path, the likelihood is you won't be able to change the numbers that you have. Um, but for me, it's really been about, uh, looking at that, uh, the folks who are just graduating college, maybe in other roles where they are adjacent to technology and to try to spark their interest and show that yes, they can do it because oftentimes it's really about believing in themselves and, and realizing that we need folks with all sorts of different perspectives to kind of come in, to be able to help really, um, provide both products and services and solutions for all types of people inside of technology, which requires all sorts of perspectives. >>Yeah, the diverse perspectives. There's so much value and there's a lot of data that demonstrates how much value revenue impact organizations can make by having diversity, especially at the leadership level. Hillary, let's go back to you. We talked about your career path. You talked about some of the importance of the focus on de and I at Tarana, but what are, what do you think can be done to encourage, to sorry, to recruit more young women and under groups into tech, any, any carrot there that you think are really important that we need to be dangling more of? >>Yeah, absolutely. And I'll build on what Danielle just said. I think the, um, bringing in diverse understandings, um, of, of customer outcomes, I mean, I, the we've really moved from technology for technology's sake and I know AWS and entirety to have had a lot of conversations on how do we drive customer outcomes that are differentiated in the market and really being customer centric and technology is wonderful. You can do wonderful things with it. You can do not so wonderful things with it as well, but unless you're really focused on the outcomes and what customers are seeking, um, technology is not hugely valuable. And so I think bringing in people who understand, um, voice of customer who understand those outcomes, and those are not necessarily the, the, the folks who are PhD in mathematics or statistics, um, those can be people who understand a day in the life of a data scientist or a day in the life of a citizen data scientist. And so really working to bridge the high impact technology with the practical kind of usability, usefulness of data and analytics in our cases, I think is something that we need more of in tech and sort of demystifying tech and freeing technology so that everybody can use it and having a really wide range of people who understand not just the bits and bites and, and how to program, but also the value in outcomes that technology through data and analytics can drive. >>Yeah. You know, we often talk about the hard skills, but this, their soft skills are equally, if not more important that even just being curious, being willing to ask questions, being not afraid to be vulnerable, being able to show those sides of your personality. I think those are important for, for young women and underrepresented groups to understand that those are just as important as some of the harder technical skills that can be taught. >>That's right. >>What do you think about from a bias perspective, Hillary, what have you seen in the tech industry and how do you think we can leverage culture as you talked about to help dial down some of the biases that are going on? >>Yeah. I mean, I think first of all, and, and there's some interesting data out there that says that 90% of the population, which includes a lot of women have some inherent bias in their day, day behaviors when it comes to to women in particular. But I'm sure that that is true across all kinds of, of, um, diverse and underrepresented folks in, in the world. And so I think acknowledging that we have bias and actually really learning how, what that can look like, how that can show up. We might be sitting here and thinking, oh, of course I don't have any bias. And then you realize that, um, as you, as you learn more about, um, different types of bias, that actually you do need to kind of, um, account for that and change behaviors. And so I think learning is sort of a fundamental, um, uh, grounding for all of us to really know what bias looks like, know how it shows up in each of us. >>Um, if we're leaders know how it shows up in our teams and make sure that we are constantly getting better, we're, we're not gonna be perfect anytime soon. But I think being on a path to improvement to overcoming bias, um, is really, is really critical. And part of that is really starting the dialogue, having the conversations, holding ourselves and each other accountable, um, when things aren't going in, in a, in a Coptic way and being able to talk openly about that, that felt, um, like maybe there was some bias in that interaction and how do we, um, how do we make good on that? How do we change our, our behavior? Fundamentally of course, data and analytics can have some bias in it as well. And so I think as we look at the, the technology aspect of bias, um, looking at at ethical AI, I think is a, a really important, uh, additional area. And I'm sure we could spend another 20 minutes talking about that, but I, I would be remiss if I didn't talk more about sort of the bias, um, and the over the opportunity to overcome bias in data and analytics as well. >>Yeah. The opportunity to overcome it is definitely there you bring up a couple of really good points, Hillary. It, it starts with awareness. We need to be aware that there are inherent biases in data in thought. And also to your other point, hold people accountable ourselves, our teammates, that's critical to being able to, to dial that back down, Daniel, I wanna get your perspective on, on your view of women in leadership roles. Do you think that we have good representation or we still have work to do in there? >>I definitely think in both technical and product roles, we definitely have some work to do. And, you know, when I think about, um, our partnership with Teradata, part of the reason why it's so important is, you know, Teradata solution is really the brains of a lot of companies. Um, you know, the what, how, what they differentiate on how they figure out insights into their business. And it's, it's all about the product itself and the data and the same is true at AWS. And, you know, we really could do some work to have some more women in these technical roles, as well as in the product, shaping the products. Uh, just for all the reasons that we just kind of talked about over the last 10 minutes, um, in order to, you know, move bias out of our, um, out of our solutions and also to just build better products and have, uh, better, you know, outcomes for customers. So I think there's a bit of work to do still. >>I agree. There's definitely a bit of work to do, and it's all about delivering those better outcomes for customers at the end of the day, we need to figure out what the right ways are of doing that and working together in a community. Um, we've had obviously a lot had changed in the last couple of years, Hillary, what's your, what have you seen in terms of the impact that the pandemic has had on this status of women in tech? Has it been a pro is silver lining the opposite? What are you seeing? >>Yeah, I mean, certainly there's data out there that tells us factually that it has been, um, very difficult for women during COVID 19. Um, women have, uh, dropped out of the workforce for a wide range of, of reasons. Um, and, and that I think is going to set us back all of us, the, the Royal us or the Royal we back, um, years and years. Um, and, and it's very unfortunate because I think we we're at a time when we're making great progress and now to see COVID, um, setting us back in, in such a powerful way. I think there's work to be done to understand how do we bring people back into the workforce. Um, how do we do that? Understanding work life balance, better understanding virtual and remote, working better. I think in the technology sector, um, we've really embraced, um, hybrid virtual work and are, are empowering people to bring their whole selves to work. >>And I think if anything, these, these zoom calls have, um, both for the men and the women on my team. In fact, I would say much more. So for the men on my team, I'm seeing, I was seeing more kids in the background, more kind of split childcare duties, more ability to start talking about, um, other responsibilities that maybe they had, uh, especially in the early days of COVID where maybe daycares were shut down. And, um, you had, you know, maybe a parent was sick. And so we saw quite a lot of, um, people bringing their whole selves to the office, which I think was, was really wonderful. Um, uh, even our CEO saw some of that. And I think, um, that that really changes the dialogue, right? It changes it to maybe scheduling meetings at a time when, um, people can do it after daycare drop off. >>Um, and really allowing that both for men and for women makes it better for, for women overall. So I would like to think that this hybrid working, um, environment and that this, um, uh, whole view into somebody's life that COVID has really provided for probably for white collar workers, if I'm being honest for, um, people who are in a, at a better point of privilege, they don't necessarily have to go into the office every day. I would like to think that tech can lead the way in, um, you know, coming out of the, the old COVID. I don't know if we have a new COVID coming, but the old COVID and really leading the way for women and for people, um, to transform how we do work, um, leveraging data and analytics, but also, um, overcoming some of the, the disparities that exist for women in particular in the workforce. >>Yeah, I think there's, there's like we say, there's a lot of opportunity there and I like your point of hopefully tech can be that guiding light that shows us this can be done. We're all humans at the end of the day. And ultimately if we're able to have some sort of work life balance, everything benefits, our work or more productive, higher performing teams impacts customers, right? There's so much value that can be gleaned from, from that hybrid model and embracing for humans. We need to be able to, to work when we can, we've learned that you don't have to be, you know, in an office 24, 7 commuting, crazy hours flying all around the world. We can get a lot of things done in a ways that fit people's lives rather than taking command over it. Wanna get your advice, Hillary, if you were to talk to your younger self, what would be some of the key pieces of advice you would say? And Danielle and I have talked about this before, and sometimes we, we would both agree on like, ask more questions. Don't be afraid to raise your hand, but what advice would you give your younger self and that younger generation in terms of being inspired to get into tech >>Oh, inspired and being in tech? You know, I think looking at technology as, in some ways, I feel like we do a disservice to, um, inclusion when we talk about stem, cuz I think stem can be kind of daunting. It can be a little scary for people for younger people. When I, when I go and talk to folks at schools, I think stem is like, oh, all the super smart kids are over there. They're all like maybe they're all men. And so, um, it's, it's a little, uh, intimidating. Um, and stem is actually, you know, especially for, um, people joining the workforce today. It's actually how you've been living your life since you were born. I mean, you know, stem inside and out because you walk around with a phone and you know how to get your internet working and like that is technology right. >>Fundamentally. And so demystifying stem as something that is around how we, um, actually make our, our lives useful and, and, and how we can change outcomes. Um, through technology I think is maybe a different lens to put on it. So, and there's absolutely for, for hard sciences, there's absolutely a, a great place in the world for folks who wanna pursue that and men and women can do that. So I, I don't want to be, um, uh, setting the wrong expectations, but I, I think stem is, is very holistic in, um, in the change that's happening globally for us today across economies, across global warming, across all kinds of impactful issues. And so I think everybody who's interested in, in some of that world change can participate in stem. It just may be through a different, through a different lens than how we classically talk about stem. >>So I think there's great opportunity to demystify stem. I think also, um, what I would tell my younger self is choose your bosses wisely. And that sounds really funny. That sounds like inside out almost, but I think choose the person that you're gonna work for in your first five to seven years. And it might be more than one person, but be, be selective, maybe be a little less selective about the exact company or the exact title. I think picking somebody that, you know, we talk about mentors and we talk about sponsors and those are important. Um, but the person you're gonna spend in your early career, a lot of your day with a lot, who's gonna influence a lot of the outcomes for you. That is the person that you, I think want to be more selective about, um, because that person can set you up for success and give you opportunities and set you on course to be, um, a standout or that person can hold you back. >>And that person can put you in the corner and not invite you to the meetings and not give you those opportunities. And so we're in an economy today where you actually can, um, be a little bit picky about who you go and work for. And I would encourage my younger self. I actually, I just lucked out actually, but I think that, um, my first boss really set me, um, up for success, gave me a lot of feedback and coaching. Um, and some of it was really hard to hear, but it really set me up for, for, um, the, the path that I've been on ever since. So it, that would be my advice. >>I love that advice. I it's brilliant. I didn't think it choose your bosses wisely. Isn't something that we primarily think about. I think a lot of people think about the big name companies that they wanna go after and put on a resume, but you bring up a great point. And Danielle and I have talked about this with other guests about mentors and sponsors. I think that is brilliant advice and also more work to do to demystify stem. But luckily we have great family leaders like the two of you helping us to do that. Ladies, I wanna thank you so much for joining me on the program today and talking through what you're seeing in de and I, what your companies are doing and the opportunities that we have to move the needle. Appreciate your time. >>Thank you so much. Great to see you, Danielle. Thank you Lisa, to see you. >>My pleasure for my guests. I'm Lisa Martin. You're watching the AWS partner showcase season one, episode three. Hey everyone. Welcome to the AWS partner showcase. This is season one, episode three, with a focus on women in tech. I'm your host, Lisa Martin. I've got two guests here with me, Sue Peretti, the EVP of global AWS strategic alliances at Jefferson Frank, a 10th revolution group company, and Danielle brushoff. One of our cube alumni joins us ISV PSA director, ladies. It's great to have you on the program talking about a, a topic that is near and dear to my heart at women in tech. >>Thank you, Lisa. >>So let's go ahead and start with you. Give the audience an understanding of Jefferson Frank, what does the company do and about the partnership with AWS? >>Sure. Um, so let's just start, uh, Jefferson Frank is a 10th revolution group company. And if you look at it, it's really talent as a service. So Jefferson Frank provides talent solutions all over the world for AWS clients, partners and users, et cetera. And we have a sister company called revelent, which is a talent creation company within the AWS ecosystem. So we create talent and put it out in the ecosystem. Usually underrepresented groups over half of them are women. And then we also have, uh, a company called rubra, which is a delivery model around AWS technology. So all three companies fall under the 10th revolution group organization. >>Got it. Danielle, talk to me a little bit about from AWS's perspective and the focus on hiring more women in technology and about the partnership. >>Yes. I mean, this has definitely been a focus ever since I joined eight years ago, but also just especially in the last few years we've grown exponentially and our customer base has changed. You know, we wanna have, uh, an organization interacting with them that reflects our customers, right. And, uh, we know that we need to keep pace with that even with our growth. And so we've very much focused on early career talent, um, bringing more women and underrepresented minorities into the organization, sponsoring those folks, promoting them, uh, giving them paths to growth, to grow inside of the organization. I'm an example of that. Of course I benefit benefited from it, but also I try to bring that into my organization as well. And it's super important. >>Tell me a little bit about how you benefited from that, Danielle. >>Um, I just think that, um, you know, I I've been able to get, you know, a seat at the table. I think that, um, I feel as though I have folks supporting me, uh, very deeply and wanna see me succeed. And also they put me forth as, um, you know, a, represent a representative, uh, to bring more women into the organization as well. And I think, um, they give me a platform, uh, in order to do that, um, like this, um, but also many other, uh, spots as well. Um, and I'm happy to do it because I feel that, you know, if you always wanna feel that you're making a difference in your job, and that is definitely a place where I get that time and space in order to be that representative to, um, bring more, more women into benefiting from having careers in technology, which there's a lot of value there, >>A lot of value. Absolutely. So back over to you, what are some of the trends that you are seeing from a gender diversity perspective in tech? We know the, the numbers of women in technical positions, uh, right. There's so much data out there that shows when girls start dropping up, but what are some of the trends that you are seeing? >>So it's, that's a really interesting question. And, and Lisa, I had a whole bunch of data points that I wanted to share with you, but just two weeks ago, uh, I was in San Francisco with AWS at the, at the summit. And we were talking about this. We were talking about how we can collectively together attract more women, not only to, uh, AWS, not only to technology, but to the AWS ecosystem in particular. And it was fascinating because I was talking about, uh, the challenges that women have and how hard to believe, but about 5% of women who were in the ecosystem have left in the past few years, which was really, really, uh, something that shocked everyone when we, when we were talking about it, because all of the things that we've been asking for, for instance, uh, working from home, um, better pay, uh, more flexibility, uh, better maternity leave seems like those things are happening. >>So we're getting what we want, but people are leaving. And it seemed like the feedback that we got was that a lot of women still felt very underrepresented. The number one thing was that they, they couldn't be, you can't be what you can't see. So because they, we feel collectively women, uh, people who identify as women just don't see enough women in leadership, they don't see enough mentors. Um, I think I've had great mentors, but, but just not enough. I'm lucky enough to have a pres a president of our company, the president of our company, Zoe Morris is a woman and she does lead by example. So I'm very lucky for that. And Jefferson, Frank really quickly, we put out a hiring a salary and hiring guide a career and hiring guide every year and the data points. And that's about 65 pages long. No one else does it. Uh, it gives an abundance of information around, uh, everything about the AWS ecosystem that a hiring manager might need to know. But there is what, what I thought was really unbelievable was that only 7% of the people that responded to it were women. So my goal, uh, being that we have such a very big global platform is to get more women to respond to that survey so we can get as much information and take action. So >>Absolutely 7%. So a long way to go there. Danielle, talk to me about AWS's focus on women in tech. I was watching, um, Sue, I saw that you shared on LinkedIn, the Ted talk that the CEO and founder of girls and co did. And one of the things that she said was that there was a, a survey that HP did some years back that showed that, um, 60%, that, that men will apply for jobs if they only meet 60% of the list of requirements. Whereas with females, it's far, far less, we've all been in that imposter syndrome, um, conundrum before. But Danielle, talk to us about AWS, a specific focus here to get these numbers up. >>I think it speaks to what Susan was talking about, how, you know, I think we're approaching it top and bottom, right? We're looking out at what are the, who are the women who are currently in technical positions and how can we make AWS an attractive place for them to work? And that's all a lot of the changes that we've had around maternity leave and, and those types of things, but then also, um, more flexible working, uh, can, you know, uh, arrangements, but then also, um, early, how can we actually impact early, um, career women and actually women who are still in school. Um, and our training and certification team is doing amazing things to get, um, more girls exposed to AWS, to technology, um, and make it a less intimidating place and have them look at employees from AWS and say like, oh, I can see myself in those people. >>Um, and kind of actually growing the viable pool of candidates. I think, you know, we're, we're limited with the viable pool of candidates, um, when you're talking about mid to late career. Um, but how can we, you know, help retrain women who are coming back into the workplace after, you know, having a child and how can we help with military women who want to, uh, or underrepresented minorities who wanna move into AWS, we have a great military program, but then also just that early high school, uh, career, you know, getting them in, in that trajectory. >>Sue, is that something that Jefferson Frank is also able to help with is, you know, getting those younger girls before they start to feel there's something wrong with me. I don't get this. Talk to us about how Jefferson Frank can help really drive up that in those younger girls. >>Uh, let me tell you one other thing to refer back to that summit that we did, uh, we had breakout sessions and that was one of the topics. What can cuz that's the goal, right? To make sure that, that there are ways to attract them. That's the goal? So some of the things that we talked about was mentoring programs, uh, from a very young age, some people said high school, but then we said even earlier, goes back to you. Can't be what you can't see. So, uh, getting mentoring programs, uh, established, uh, we also talked about some of the great ideas was being careful of how we speak to women using the right language to attract them. And some, there was a teachable moment for, for me there actually, it was really wonderful because, um, an African American woman said to me, Sue and I, I was talking about how you can't be what you can't see. >>And what she said was Sue, it's really different. Um, for me as an African American woman, uh, or she identified, uh, as nonbinary, but she was relating to African American women. She said, your white woman, your journey was very different than my journey. And I thought, this is how we're going to learn. I wasn't offended by her calling me out at all. It was a teachable moment. And I thought I understood that, but those are the things that we need to educate people on those, those moments where we think we're, we're saying and doing the right thing, but we really need to get that bias out there. So here at Jefferson, Frank, we're, we're trying really hard to get that careers and hiring guide out there. It's on our website to get more women, uh, to talk to it, but to make suggestions in partnership with AWS around how we can do this mentoring, we have a mentor me program. We go around the country and do things like this. We, we try to get the education out there in partnership with AWS. Uh, we have a, a women's group, a women's leadership group, uh, so much that, that we do, and we try to do it in partnership with AWS. >>Danielle, can you comment on the impact that AWS has made so far, um, regarding some of the trends and, and gender diversity that Sue was talking about? What's the impact that's been made so far with this partnership? >>Well, I mean, I think just being able to get more of the data and have awareness of leaders, uh, on how <laugh>, you know, it used to be a, a couple years back, I would feel like sometimes the, um, uh, solving to bring more women into the organization was kind of something that folks thought, oh, this is Danielle is gonna solve this. You know? And I think a lot of folks now realize, oh, this is something that we all need to solve for. And a lot of my colleagues who maybe a couple years ago, didn't have any awareness or didn't even have the tools to do what they needed to do in order to improve the statistics on their, or in their organizations. Now actually have those tools and are able to kind of work with, um, work with companies like Susan's work with Jefferson Frank in order to actually get the data and actually make good decisions and feel as though, you know, they, they often, these are not lived experiences for these folks, so they don't know what they don't know. And by providing data and providing awareness and providing tooling and then setting goals, I think all of those things have really turned, uh, things around in a very positive way. >>And so you bring up a great point about from a diversity perspective, what is Jefferson Frank doing to, to get those data points up, to get more women of, of all well, really underrepresented minorities to, to be able to provide that feedback so that you can, can have the data and gleamy insights from it to help companies like AWS on their strategic objectives. >>Right? So as I, when I go back to that higher that, uh, careers in hiring guide, that is my focus today, really because the more data that we have, I mean, the, and the data takes, uh, you know, we need people to participate in order to, to accurately, uh, get a hold of that data. So that's why we're asking, uh, we're taking the initiative to really expand our focus. We are a global organization with a very, very massive database all over the world, but if people don't take action, then we can't get the right. The, the, the data will not be as accurate as we'd like it to be. Therefore take better action. So what we're doing is we're asking people all over the, all over the world to participate on our website, Jefferson frank.com, the se the high, uh, in the survey. So we can learn as much as we can. >>7% is such a, you know, Danielle and I we're, we've got to partner on this just to sort of get that message out there, get more data so we can execute, uh, some of the other things that we're doing. We're, we're partnering in. As I mentioned, more of these events, uh, we're, we're doing around the summits, we're gonna be having more ed and I events and collecting more information from women. Um, like I said, internally, we do practice what we preach and we have our own programs that are, that are out there that are within our own company where the women who are talking to candidates and clients every single day are trying to get that message out there. So if I'm speaking to a client or one of our internal people are speaking to a client or a candidate, they're telling them, listen, you know, we really are trying to get these numbers up. >>We wanna attract as many people as we can. Would you mind going to this, uh, hiring guide and offering your own information? So we've gotta get that 7% up. We've gotta keep talking. We've gotta keep, uh, getting programs out there. One other thing I wanted to Danielle's point, she mentioned, uh, women in leadership, the number that we gathered was only 9% of women in leadership within the AWS ecosystem. We've gotta get that number up, uh, as well because, um, you know, I know for me, when I see people like Danielle or, or her peers, it inspires me. And I feel like, you know, I just wanna give back, make sure I send the elevator back to the first floor and bring more women in to this amazing ecosystem. >>Absolutely. That's not that metaphor I do too, but we, but to your point to get that those numbers up, not just at AWS, but everywhere else we need, it's a help me help use situation. So ladies underrepresented minorities, if you're watching go to the Jefferson Frank website, take the survey, help provide the data so that the woman here that are doing this amazing work, have it to help make decisions and have more of females and leadership roles or underrepresented minorities. So we can be what we can see. Ladies, thank you so much for joining me today and sharing what you guys are doing together to partner on this important. Cause >>Thank you for having me, Leah, Lisa, >>Thank you. My pleasure for my guests. I'm Lisa Martin. You're watching the cubes coverage of the AWS partner showcase. Thanks for your time. Hey everyone. Welcome to the AWS partner showcase season one, episode three women in tech. I'm your host, Lisa Martin. We've got two female rock stars here with me next. Stephanie Curry joins us the worldwide head of sales and go to market strategy for AWS at NetApp and Danielle GShock is back one of our QM ISV PSA director at AWS. Looking forward to a great conversation, ladies, about a great topic, Stephanie, let's go ahead and start with you. Give us an overview of your story, how you got into tech and what inspired you. >>Thanks so much, Lisa and Danielle. It's great to be on this show with you. Um, thank you for that. Uh, my name's Stephanie cur, as Lisa mentioned, I'm the worldwide head of sales for, uh, AWS at NetApp and run a global team of sales people that sell all things AWS, um, going back 25 years now, uh, when I first started my career in tech, it was kind of by accident. Um, I come from a different background. I have a business background and a technical background from school, um, but had been in a different career and I had an opportunity to try something new. Um, I had an ally really that reached out to me and said, Hey, you'd be great for this role. And I thought, I'd take a chance. I was curious. Um, and, uh, it, it turned out to be a 25 year career, um, that I'm really, really excited about and, and, um, really thankful for that person, for introducing me to the, to the industry >>25 years in counting. I'm sure Danielle, we've talked about your background before. So what I wanna focus on with you is the importance of diversity for high performance. I know what a machine AWS is, and Stephanie'll come back to you with the same question, but talk about that, Danielle, from your perspective, that importance, um, for diversity to drive the performance. >>Yeah. Yeah. I truly believe that, you know, in order to have high performing teams, that you have to have people from all different types of backgrounds and experiences. And we do find that oftentimes being, you know, field facing, if we're not reflecting our customers and connecting with them deeply, um, on, on the levels that they're at, we, we end up missing them. And so for us, it's very important to bring people of lots of different technical backgrounds experiences. And of course, both men, women, and underrepresented minorities and put that forth to our customers, um, in order to make that connection and to end up with better outcomes. So >>Definitely it's all about outcomes, Stephanie, your perspective and NetApp's perspective on diversity for creating highly performant teams and organizations. >>I really aligned with Danielle on the comment she made. And in addition to that, you know, just from building teams in my, um, career know, we've had three times as many women on my team since we started a year ago and our results are really showing in that as well. Um, we find the teams are stronger, they're more collaborative and to Danielle's point really reflective, not only our partners, but our customers themselves. So this really creates connections, which are really, really important to scale our businesses and, and really, uh, meet the customer where they're at as well. So huge proponent of that ourselves, and really finding that we have to be intentional in our hiring and intentional in how we attract diversity to our teams. >>So Stephanie let's stay with you. So a three X increase in women on the team in a year, especially the kind of last year that we've had is really incredible. I, I like your, I, your thoughts on there needs to be a, there needs to be focus and, and thought in how teams are hired. Let's talk about attracting and retaining those women now, especially in sales roles, we all know the number, the percentages of women in technical roles, but what are some of the things that, that you do Stephanie, that NetApp does to attract and retain women in those sales roles? >>The, the attracting part's really interesting. And we find that, you know, you, you read the stats and I'd say in my experience, they're also true in the fact that, um, a lot of women would look at a job description and say, I can't do a hundred percent of that, that, so I'm not even going to apply with the women that we've attracted to our team. We've actually intentionally reached out and targeted those people in a good way, um, to say, Hey, we think you've got what it takes. Some of the feedback I've got from those women are, gosh, I didn't think I could ever get this role. I didn't think I had the skills to do that. And they've been hired and they are doing a phenomenal job. In addition to that, I think a lot of the feedback I've got from these hires are, Hey, it's an aggressive sales is aggressive. Sales is competitive. It's not an environment that I think I can be successful in. And what we're showing them is bring those softer skills around collaboration, around connection, around building teams. And they do, they do bring a lot of that to the team. Then they see others like them there and they know they can be successful cuz they see others like them on the team, >>The whole concept of we can't be what we can't see, but we can be what we can't see is so important. You said a couple things, Stephanie, that really stuck with me. And one of them was an interview on the Cub I was doing, I think a couple weeks ago, um, about women in tech. And the stat that we talked about was that women will apply will not apply for a job unless they meet 100% of the skills and the requirements that it's listed, but men will, if they only meet 60. And I, that just shocked me that I thought, you know, I, I can understand that imposter syndrome is real. It's a huge challenge, but the softer skills, as you mentioned, especially in the last two years, plus the ability to communicate, the ability to collaborate are incredibly important to, to drive that performance of any team of any business. >>Absolutely. >>Danielle, talk to me about your perspective and AWS as well for attracting and retaining talent. And, and, and particularly in some of those challenging roles like sales that as Stephanie said, can be known as aggressive. >>Yeah, for sure. I mean, my team is focused on the technical aspect of the field and we definitely have an uphill battle for sure. Um, two things we are focused on first and foremost is looking at early career women and that how we, how can we bring them into this role, whether in they're in support functions, uh, cl like answering the phone for support calls, et cetera, and how, how can we bring them into this organization, which is a bit more strategic, more proactive. Um, and then the other thing that as far as retention goes, you know, sometimes there will be women who they're on a team and there are no other women on that team. And, and for me, it's about building community inside of AWS and being part of, you know, we have women on solution architecture organizations. We have, uh, you know, I just personally connect people as well and to like, oh, you should meet this person. Oh, you should talk to that person. Because again, sometimes they can't see someone on their team like them and they just need to feel anchored, especially as we've all been, you know, kind of stuck at home, um, during the pandemic, just being able to make those connections with women like them has been super important and just being a, a long tenured Amazonian. Um, that's definitely one thing I'm able to, to bring to the table as well. >>That's so important and impactful and spreads across organizations in a good way. Daniel let's stick with you. Let's talk about some of the allies that you've had sponsors, mentors that have really made a difference. And I said that in past tense, but I also mean in present tense, who are some of those folks now that really inspire you? >>Yeah. I mean, I definitely would say that one of my mentors and someone who, uh, ha has been a sponsor of my career has, uh, Matt YK, who is one of our control tower GMs. He has really sponsored my career and definitely been a supporter of mine and pushed me in positive ways, which has been super helpful. And then other of my business partners, you know, Sabina Joseph, who's a cube alum as well. She definitely has been, was a fabulous partner to work with. Um, and you know, between the two of us for a period of time, we definitely felt like we could, you know, conquer the world. It's very great to go in with a, with another strong woman, um, you know, and, and get things done, um, inside of an organization like AWS. >>Absolutely. And S I've, I've agreed here several times. So Stephanie, same question for you. You talked a little bit about your kind of, one of your, uh, original early allies in the tech industry, but talk to me about allies sponsors, mentors who have, and continue to make a difference in your life. >>Yeah. And, you know, I think it's a great differentiation as well, right? Because I think that mentors teach us sponsors show us the way and allies make room for us at the table. And that is really, really key difference. I think also as women leaders, we need to make room for others at the table too, and not forget those softer skills that we bring to the table. Some of the things that Danielle mentioned as well about making those connections for others, right. And making room for them at the table. Um, some of my allies, a lot of them are men. Brian ABI was my first mentor. Uh, he actually is in the distribution, was in distribution, uh, with advent tech data no longer there. Um, Corey Hutchinson, who's now at Hashi Corp. He's also another ally of mine and remains an ally of mine, even though we're not at the same company any longer. Um, so a lot of these people transcend careers and transcend, um, um, different positions that I've held as well and make room for us. And I think that's just really critical when we're looking for allies and when allies are looking for us, >>I love how you described allies, mentors and sponsors Stephanie. And the difference. I didn't understand the difference between a mentor and a sponsor until a couple of years ago. Do you talk with some of those younger females on your team so that when they come into the organization and maybe they're fresh outta college, or maybe they've transitioned into tech so that they can also learn from you and understand the importance and the difference between the allies and the sponsors and the mentors? >>Absolutely. And I think that's really interesting because I do take, uh, an extra, uh, approach an extra time to really reach out to the women that have joined the team. One. I wanna make sure they stay right. I don't want them feeling, Hey, I'm alone here and I need to, I need to go do something else. Um, and they are located around the world, on my team. They're also different age groups, so early in career, as well as more senior people and really reaching out, making sure they know that I'm there. But also as Danielle had mentioned, connecting them to other people in the community that they can reach out to for those same opportunities and making room for them >>Make room at the table. It's so important. And it can, you never know what a massive difference and impact you can make on someone's life. And I, and I bet there's probably a lot of mentors and sponsors and allies of mine that would be surprised to know, uh, the massive influence they've had Daniel back over. Let's talk about some of the techniques that you employ, that AWS employees to make the work environment, a great place for women to really thrive and, and be retained as Stephanie was saying. Of course that's so important. >>Yeah. I mean, definitely I think that the community building, as well as we have a bit more programmatic mentorship, um, we're trying to get to the point of having a more programmatic sponsorship as well. Um, but I think just making sure that, um, you know, both everything from, uh, recruit to onboard to ever boarding that, uh, they they're the women who come into the organization, whether it's they're coming in on the software engineering side or the field side or the sales side that they feel as that they have someone, uh, working with them to help them drive their career. Those are the key things that were, I think from an organizational perspective are happening across the board. Um, for me personally, when I run my organization, I'm really trying to make sure that people feel that they can come to me at any time open door policy, make sure that they're surfacing any times in which they are feeling excluded or anything like that, any challenges, whether it be with a customer, a partner or with a colleague. Um, and then also of course, just making sure that I'm being a good sponsor, uh, to, to people on my team. Um, that is key. You can talk about it, but you have to start with yourself as well. >>That's a great point. You you've got to, to start with yourself and really reflect on that. Mm-hmm <affirmative> and look, am I, am I embodying what it is that I need? And not that I know they need that focused, thoughtful intention on that is so importants, let's talk about some of the techniques that you use that NetApp uses to make the work environment a great place for those women are marginalized, um, communities to really thrive. >>Yeah. And I appreciate it and much like Danielle, uh, and much like AWS, we have some of those more structured programs, right around sponsorship and around mentorship. Um, probably some growth there, opportunities for allies, because I think that's more of a newer concept in really an informal structure around the allies, but something that we're growing into at NetApp, um, on my team personally, I think, um, leading by example's really key. And unfortunately, a lot of the, um, life stuffs still lands on the women, whether we like it or not. Uh, I have a very, uh, active husband in our household, but I still carry when it push comes to shove it's on me. Um, and I wanna make sure that my team knows it's okay to take some time and do the things you need to do with your family. Um, I'm I show up as myself authentically and I encourage them to do the same. >>So it's okay to say, Hey, I need to take a personal day. I need to focus on some stuff that's happening in my personal life this week now, obviously to make sure your job's covered, but just allowing some of that softer vulnerability to come into the team as well, so that others, um, men and women can feel they can do the same thing. And that it's okay to say, I need to balance my life and I need to do some other things alongside. Um, so it's the formal programs, making sure people have awareness on them. Um, I think it's also softly calling people out on biases and saying, Hey, I'm not sure if you know, this landed that way, but I just wanted to make you aware. And usually the feedback is, oh my gosh, I didn't know. And could you coach me on something that I could do better next time? So all of this is driven through our NetApp formal programs, but then it's also how you manifest it on the teams that we're leading. >>Absolutely. And sometimes having that mirror to reflect into can be really eye-opening and, and allow you to, to see things in a completely different light, which is great. Um, you both talked about, um, kind of being what you, uh, can see, and, and I know both companies are upset customer obsessed in a good way. Talk to me a little bit, Danielle, go back over to you about the AWS NetApp partnership. Um, some of that maybe alignment on, on performance on obviously you guys are very well aligned, uh, in terms of that, but also it sounds like you're quite aligned on diversity and inclusion. >>Well, we definitely do. We have the best partnerships with companies in which we have these value alignments. So I think that is a positive thing, of course, but just from a, from a partnership perspective, you know, from my five now plus years of being a part of the APN, this is, you know, one of the most significant years with our launch of FSX for NetApp. Um, with that, uh, key key service, which we're making available natively on AWS. I, I can't think of a better Testament to the, to the, um, partnership than that. And that's doing incredibly well and it really resonates with our customers. And of course it started with customers and their need for NetApp. Uh, so, you know, that is a reflection, I think, of the success that we're having together. >>And Stephanie talk to, uh, about the partnership from your perspective, NetApp, AWS, what you guys are doing together, cultural alignment, but also your alignment on really bringing diversity into drive performance. >>Yeah, I think it's a, a great question. And I have to say it's just been a phenomenal year. Our relationship has, uh, started before our first party service with FSX N but definitely just, um, uh, the trajectory, um, between the two companies since the announcement about nine months ago has just taken off to a, a new level. Um, we feel like an extended part of the family. We worked together seamlessly. A lot of the people in my team often say we feel like Amazonians. Um, and we're really part of this transformation at NetApp from being that storage hardware company into being an ISV and a cloud company. And we could not do this without the partnership with AWS and without the, uh, first party service of Fs XM that we've recently released. Um, I think that those joint values that Danielle referred to are critical to our success, um, starting with customer obsession and always making sure that we are doing the right thing for the customer. >>We coach our team teams all the time on if you are doing the right thing for the customers, you cannot do anything wrong. Just always put the customer at the, in the center of your decisions. And I think that there is, um, a lot of best practice sharing and collaboration as we go through this change. And I think a lot of it is led by the diverse backgrounds that are on the team, um, female, male, um, race and so forth, and just to really, uh, have different perspectives and different experiences about how we approach this change. Um, so we definitely feel like a part of the family. Uh, we are absolutely loving, uh, working with the AWS team and our team knows that we are the right place, the right time with the right people. >>I love that last question for each of you. And I wanna stick with you Stephanie advice to your younger self, think back five years. What advice would you seen what you've accomplished and maybe the thet route that you've taken along the way, what would you advise your youngest Stephanie self. >>Uh, I would say keep being curious, right? Keep being curious, keep asking questions. And sometimes when you get a no, it's not a bad thing, it just means not right now and find out why and, and try to get feedback as to why maybe that wasn't the right opportunity for you. But, you know, just go for what you want. Continue to be curious, continue to ask questions and find a support network of people around you that wanna help you because they are there and they, they wanna see you be successful too. So never be shy about that stuff. >><laugh> absolutely. And I always say failure does not have to be an, a bad F word. A no can be the beginning of something. Amazing. Danielle, same question for you. Thinking back to when you first started in your career, what advice would you give your younger self? >>Yeah, I think the advice I'd give my younger self would be, don't be afraid to put yourself out there. Um, it's certainly, you know, coming from an engineering background, maybe you wanna stay behind the scenes, not, not do a presentation, not do a public speaking event, those types of things, but back to what the community really needs, this thing. Um, you know, I genuinely now, uh, took me a while to realize it, but I realized I needed to put myself out there in order to, um, you know, allow younger women to see what they could be. So that would be the advice I would give. Don't be afraid to put yourself out there. >>Absolutely. That advice that you both gave are, is so fantastic, so important and so applicable to everybody. Um, don't be afraid to put yourself out there, ask questions. Don't be afraid of a, no, that it's all gonna happen at some point or many points along the way. That can also be good. So thank you ladies. You inspired me. I appreciate you sharing what AWS and NetApp are doing together to strengthen diversity, to strengthen performance and the advice that you both shared for your younger selves was brilliant. Thank you. >>Thank you. >>Thank you >>For my guests. I'm Lisa Martin. You're watching the AWS partner showcase. See you next time. Hey everyone. Welcome to the AWS partner showcase season one, episode three women in tech. I'm your host, Lisa Martin. I've got two female rock stars joining me. Next Vero Reynolds is here engineering manager, telemetry at honeycomb, and one of our cube alumni, Danielle Ock ISV PSA director at AWS. Join us as well. Ladies. It's great to have you talking about a very important topic today. >>Thanks for having us. >>Yeah, thanks for having me. Appreciate it. >>Of course, Vera, let's go ahead and start with you. Tell me about your background and tech. You're coming up on your 10th anniversary. Happy anniversary. >>Thank you. That's right. I can't believe it's been 10 years. Um, but yeah, I started in tech in 2012. Um, I was an engineer for most of that time. Uh, and just recently as a March, switched to engineering management here at honeycomb and, um, you know, throughout my career, I was very much interested in all the things, right. And it was a big FOMO as far as trying a few different, um, companies and products. And I've done things from web development to mobile to platforms. Um, it would be apt to call me a generalist. Um, and in the more recent years I was sort of gravitating more towards developer tool space. And for me that, uh, came in the form of cloud Foundry circle CI and now honeycomb. Um, I actually had my eye on honeycomb for a while before joining, I came across a blog post by charity majors. >>Who's one of our founders and she was actually talking about management and how to pursue that and whether or not it's right, uh, for your career. And so I was like, who is this person? I really like her, uh, found the company. They were pretty small at the time. So I was sort of keeping my eye on them. And then when the time came around for me to look again, I did a little bit more digging, uh, found a lot of talks about the product. And on the one hand they really spoke to me as the solution. They talked about developers owning their coding production and answering questions about what is happening, what are your users seeing? And I felt that pain, I got what they were trying to do. And also on the other hand, every talk I saw at the time was from, uh, an amazing woman <laugh>, which I haven't seen before. Uh, so I came across charity majors again, Christine Y our other founder, and then Liz Jones, who's our principal developer advocate. And that really sealed the deal for me as far as wanting to work here. >>Yeah. Honeycomb is interesting. This is a female founded company. You're two leaders. You mentioned that you like the technology, but you were also attracted because you saw females in the leadership position. Talk to me a little bit about what that's like working for a female led organization at honeycomb. >>Yeah. You know, historically, um, we have tried not to over index on that because there was this, uh, maybe fear awareness of, um, it taking away from our legitimacy as an engineering organization, from our success as a company. Um, but I'm seeing that, uh, rhetoric shift recently because we believe that with great responsibility, uh, with great power comes great responsibility, and we're trying to be more intentional as far as using that attribute of our company. Um, so I would say that for me, it was, um, a choice between a few offers, right. And that was a selling point for sure, because again, I've never experienced it and I've really seen how much they walk that walk. Um, even me being here and me moving into management, I think were both, um, ways in which they really put a lot of trust and support in me. And so, um, I it's been a great ride. >>Excellent. Sounds like it. Before we bring Danielle in to talk about the partnership. I do wanna have you there talk to the audience a little bit about honeycomb, what technology it's delivering and what are its differentiators. >>Yeah, absolutely. Um, so honeycomb is an observability tool, uh, that enables engineers to answer questions about the code that runs in production. And, um, we work with a number of various customers. Some of them are Vanguards, slack. Hello, fresh, just to name a couple, if you're not familiar with observability tooling, it's akin to traditional application performance monitoring, but we believe that observability is succeeding APM because, uh, APM tools were built at the time of monoliths and they just weren't designed to help us answer questions about complex distributed systems that we work with today, where things can go wrong anywhere in that chain. And you can't predict what you're gonna need to ask ahead of time. So some of the ways that we are different is our ability to store and query really rich data, which we believe is the key to understanding those complex systems. >>What I mean by rich data is, um, something that has a lot of attributes. So for example, when an error happens, knowing who it happened to, which user ID, which, um, I don't know, region, they were in, um, what, what, what they were doing at the time and what was happening at the rest of your system. And our ingest engine is really fast. You can do it in as little as three seconds and we call data like this. I said, kind of rich data, contextual data. We refer it as having high ality and high dimensionality, which are big words. But at the end of the day, what that means is we can store and we can query the data. We can do it really fast. And to give you an example of how that looks for our customers, let's say you have a developer team who are using comb to understand and observe their system. >>And they get a report that a user is experiencing a slowdown or something's wrong. They can go into comb and figure out that this only happens to users who are using a particular language pack with their app. And they operated their app last week, that it only happens when they are trying to upload a file. And so it's this level of granularity and being able to zoom in and out, um, under your data that allows you to understand what's happening, especially when you have an incident going on, right. Or your really important high profile customer is telling you that something's wrong. And we can do that. Even if everything else in your other tools looks fine, right? All of your dashboards are okay. You're not actually getting paged on it, but your customers are telling you that something's wrong. Uh, and we believe that's where we shine in helping you there. >>Excellent. It sounds like that's where you really shine that real time visibility is so critical these days. Danielle, Danielle, wanna bring you into the conversation. Talk to us a little bit about the honeycomb partnership from the AWS lens. >>Yeah. So excuse me, observability is obviously a very important, uh, segment in the cloud space, very important to AWS, um, because a lot of all of our customers, uh, as they build their systems distributed, they need to be able to see where, where things are happening in the complex systems that they're building. And so honeycomb is a, is an advanced technology partner. Um, they've been working with us for quite some time and they have a, uh, their solution is listed on the marketplace. Um, definitely something that we see a lot of demand with our customers and they have many integrations, uh, which, you know, we've seen is key to success. Um, being able to work seamlessly with the rest of the services inside of the AWS platform. And I know that they've done some, some great things with people who are trying to develop games on top of AWS, uh, things in that area as well. And so, uh, very important partner in the observa observability market that we have >>Back to you, let's kind of unpack the partnership, the significance that honeycomb ha is getting from being partners with an organization as potent and pivotal as AWS. >>Yeah, absolutely. Um, I know this predates me to some extent, but I know for a long time, AWS and honeycomb has really pushed the envelope together. And, um, I think it's a beneficial relationship for both ends. There's kind of two ways of looking at it. On the one side, there is our own infrastructure. So honeycomb runs on AWS and actually one of our critical workloads that supports that fast query engine that I mentioned uses Lambda. And it does so in a pretty Orthodox way. So we've had a longstanding conversation with the AWS team as far as drawing outside those lines and kind of figuring out how to use this technology in a way that works for us and hopefully will work for other customers of theirs as well. Um, that also allows us to ask for early access for certain features when they become available. >>And then that way we can be sort of the Guinea pigs and try things out, um, in a way that migrates our system and optimizes our own performance, but also allows again, other customers of AWS to follow in that path. And then the other side of that partnership is really supporting our customers who are both honeycomb users and AWS users, because it's, as you imagine, quite a big overlap, and there are certain ways in which we can allow our customers to more easily get their data from AWS to honeycomb. So for example, last year we built a tool, um, based on the new Lambda extension capability that allowed our users who run their applications in Lambdas to get that telemetry data out of their applications and into honeycomb. And it man was win, win. >>Excellent. So I'm hearing a lot of synergies from a technology perspective, you're sticking with you, and then Danielle will bring you in, let's talk about how honeycomb supports D and I across its organization. And how is that synergistic with AWS's approach? Yeah, >>Yeah, absolutely. So I sort of alluded to that hesitancy to over index on the women led aspect of ourselves. Um, but again, a lot of things are shifting, we're growing a lot. And so we are recognizing that we need to be more intentional with our DEI initiatives, and we also notice that we can do better and we should do better. And to that, and we're doing a few things differently, um, that are pretty recent initiatives. We are partnering with organizations that help us target specific communities that are underrepresented in tech. Um, some examples would be after tech hu Latinas in tech among, um, a number of others. And another initiative is DEI head start. That's something that is an internal, um, practice that we started that includes reaching out to underrepresented applicants before any new job for honeycomb becomes live. So before we posted to LinkedIn, before it's even live on our job speech, and the idea there is to kind of balance our pipeline of applicants, which the hope is will lead to more diverse hires in the long term. >>That's a great focus there. Danielle, I know we've talked about this before, but for the audience, in terms of the context of the honeycomb partnership, the focus at AWS for D E and I is really significant, unpack that a little bit for us. >>Well, let me just bring it back to just how we think about it, um, with the companies that we work with, but also in, in terms of, you know, what we want to be able to do, excuse me, it's very important for us to, you know, build products that reflect, uh, the customers that we have. And I think, you know, working with, uh, a company like honeycomb that is looking to differentiate in a space, um, by, by bringing in, you know, the experiences of many different types of people I genuinely believe. And I'm sure Vera also believes that by having those diverse perspectives, that we're able to then build better products for our customers. Um, and you know, it's one of, one of our leadership principles, uh, is, is rooted in this. I write a lot, it asks for us to seek out diverse perspectives. Uh, and you can't really do that if everybody kind of looks the same and thinks the same and has the same background. So I think that is where our de and I, um, you know, I thought process is rooted and, you know, companies like honeycomb that give customers choice and differentiate and help them, um, to do what they need to do in their unique, um, environments is super important. So >>The, the importance of thought diversity cannot be underscored enough. It's something that is, can be pivotal to organizations. And it's very nice to hear that that's so fundamental to both companies, Barry, I wanna go back to you for a second. You, I think you mentioned this, the DEI head start program, that's an internal program at honeycomb. Can you shed a little bit of light on that? >>Yeah, that's right. And I actually am in the process of hiring a first engineer for my team. So I'm learning a lot of these things firsthand, um, and how it works is we try to make sure to pre-load our pipeline of applicants for any new job opening we have with diverse candidates to the best of our abilities, and that can involve partnering with the organizations that I mentioned or reaching out to our internal network, um, and make sure that we give those applicants a head start, so to speak. >>Excellent. I like that. Danielle, before we close, I wanna get a little bit of, of your background. We've got various background in tag, she's celebrating her 10th anniversary. Give me a, a short kind of description of the journey that you've navigated through being a female in technology. >>Yeah, thanks so much. I really appreciate, uh, being able to share this. So I started as a software engineer, uh, back actually in the late nineties, uh, during the, the first.com bubble and, uh, have, have spent quite a long time actually as an individual contributor, um, probably working in software engineering teams up through 2014 at a minimum until I joined AWS, uh, as a customer facing solutions architect. Um, I do think spending a lot of time, hands on definitely helped me with some of the imposter syndrome, um, issues that folks suffer from not to say I don't at all, but it, it certainly helped with that. And I've been leading teams at AWS since 2015. Um, so it's really been a great ride. Um, and like I said, I'm very happy to see all of our engineering teams change, uh, as far as their composition. And I'm, I'm grateful to be part of it. >>It's pretty great to be able to witness that composition change for the better last question for each of you. And we're almost out of time and Danielle, I'm gonna stick with you. What's your advice, your recommendations for women who either are thinking about getting into tech or those who may be in tech, maybe they're in individual positions and they're not sure if they should apply for that senior leadership position. What do you advise them to do? >>I mean, definitely for the individual contributors, tech tech is a great career, uh, direction, um, and you will always be able to find women like you, you have to maybe just work a little bit harder, uh, to join, have community, uh, in that. But then as a leader, um, representation is very important and we can bring more women into tech by having more leaders. So that's my, you just have to take the lead, >>Take the lead, love that there. Same question for you. What's your advice and recommendations for those maybe future female leaders in tech? >>Yeah, absolutely. Um, Danielle mentioned imposter syndrome and I think we all struggle with it from time to time, no matter how many years it's been. And I think for me, for me, the advice would be if you're starting out, don't be afraid to ask, uh, questions and don't be afraid to kind of show a little bit of ignorance because we've all been there. And I think it's on all of us to remember what it's like to not know how things work. And on the flip side of that, if you are a more senior IC or, uh, in a leadership role, also being able to model just saying, I don't know how this works and going and figuring out answers together because that was a really powerful shift for me early in my career is just to feel like I can say that I don't know something. >>I totally agree. I've been in that same situation where just ask the question because you I'm guaranteed, there's a million outta people in the room that probably has the, have the same question and because of imposter syndrome, don't wanna admit, I don't understand that. Can we back up, but I agree with you. I think that is, um, one of the best things. Raise your hand, ask a question, ladies. Thank you so much for joining me talking about honeycomb and AWS, what you're doing together from a technology perspective and the focus efforts that each company has on D E and I, we appreciate your insights. Thank you so much for having us great talking to you. My pleasure, likewise for my guests, I'm Lisa Martin. You're watching the AWS partner showcase women in check. Welcome to the AWS partner showcase I'm Lisa Martin, your host. This is season one, episode three, and this is a great episode that focuses on women in tech. I'm pleased to be joined by Danielle Shaw, the ISV PSA director at AWS, and the sponsor of this fantastic program. Danielle, it's great to see you and talk about such an important topic. >>Yes. And I will tell you, all of these interviews have just been a blast for me to do. And I feel like there has been a lot of gold that we can glean from all of the, um, stories that we heard on these interviews and good advice that I myself would not have necessarily thought of. So >>I agree. And we're gonna get to set, cuz advice is one of the, the main things that our audience is gonna hear. We have Hillary Ashton, you'll see from TETA there, Reynolds joins us from honeycomb, Stephanie Curry from NetApp and Sue Paris from Jefferson Frank. And the topics that we dig into are first and foremost, diversity equity and inclusion. That is a topic that is incredibly important to every organization. And some of the things Danielle that our audiences shared were really interesting to me. One of the things that I saw from a thematic perspective over and over was that like D Reynolds was talking about the importance of companies and hiring managers and how they need to be intentional with de and I initiatives. And that intention was a, a, a common thing that we heard. I'm curious what your thoughts are about that, that we heard about being intentional working intentionally to deliver a more holistic pool of candidates where de I is concerned. What are your, what were some of the things that stuck out to you? >>Absolutely. I think each one of us is working inside of organizations where in the last, you know, five to 10 years, there's been a, you know, a strong push in this direction, mostly because we've really seen, um, first and foremost, by being intentional, that you can change the, uh, the way your organization looks. Um, but also just that, you know, without being intentional, um, there was just a lot of, you know, outcomes and situations that maybe weren't great for, um, you know, a healthy, um, and productive environment, uh, working environment. And so, you know, a lot of these companies have made a big investments and put forth big initiatives that I think all of us are involved in. And so we're really excited to get out here and talk about it and talk about, especially as these are all partnerships that we have, how, you know, these align with our values. So >>Yeah, that, that value alignment mm-hmm <affirmative> that you bring up is another thing that we heard consistently with each of the partners, there's a cultural alignment, there's a customer obsession alignment that they have with AWS. There's a D E and I alignment that they have. And I, I think everybody also kind of agreed Stephanie Curry talked about, you know, it's really important, um, for diversity on it, on, on impacting performance, highly performant teams are teams that are more diverse. I think we heard that kind of echoed throughout the women that we talked to in >>This. Absolutely. And I absolutely, and I definitely even feel that, uh, with their studies out there that tell you that you make better products, if you have all of the right input and you're getting all many different perspectives, but not just that, but I can, I can personally see it in the performing teams, not just my team, but also, you know, the teams that I work alongside. Um, arguably some of the other business folks have done a really great job of bringing more women into their organization, bringing more underrepresented minorities. Tech is a little bit behind, but we're trying really hard to bring that forward as well to in technical roles. Um, but you can just see the difference in the outcomes. Uh, at least I personally can just in the adjacent teams of mine. >>That's awesome. We talked also quite a bit during this episode about attracting women and underrepresented, um, groups and retaining them. That retention piece is really key. What were some of the things that stuck out to you that, um, you know, some of the guests talked about in terms of retention? >>Yeah. I think especially, uh, speaking with Hillary and hearing how, uh, Teradata is thinking about different ways to make hybrid work work for everybody. I think that is definitely when I talk to women interested in joining AWS, oftentimes that might be one of the first, uh, concerns that they have. Like, am I going to be able to, you know, go pick my kid up at four o'clock at the bus, or am I going to be able to, you know, be at my kids' conf you know, conference or even just, you know, have enough work life balance that I can, um, you know, do the things that I wanna do outside of work, uh, beyond children and family. So these are all very important, um, and questions that especially women come and ask, but also, um, you know, it kind of is a, is a bellwether for, is this gonna be a company that allows me to bring my whole self to work? And then I'm also gonna be able to have that balance that I need need. So I think that was something that is, uh, changing a lot. And many people are thinking about work a lot differently. >>Absolutely. The pandemic not only changed how we think about work, you know, initially it was, do I work from home or do I live at work? And that was legitimately a challenge that all of us faced for a long time period, but we're seeing the hybrid model. We're seeing more companies be open to embracing that and allowing people to have more of that balance, which at the end of the day, it's so much better for product development for the customers, as you talked about there's, it's a win-win. >>Absolutely. And, you know, definitely the first few months of it was very hard to find that separation to be able to put up boundaries. Um, but I think at least I personally have been able to find the way to do it. And I hope that, you know, everyone is getting that space to be able to put those boundaries up to effectively have a harmonious, you know, work life where you can still be at home most of the time, but also, um, you know, have that cutoff point of the day or at least have that separate space that you can feel that you're able to separate the two. >>Yeah, absolutely. And a lot of that from a work life balance perspective leads into one of the next topics that we covered in detail with, and that's mentors and sponsors the differences between them recommendations from, uh, the women on the panel about how to combat imposter syndrome, but also how to leverage mentors and sponsors throughout your career. One of the things that, that Hillary said that I thought was fantastic, advice were mentors and sponsors are concerned is, is be selective in picking your bosses. We often see people, especially younger folks, not necessarily younger folks. I shouldn't say that that are attracted to a company it's brand maybe, and think more about that than they do the boss or bosses that can help guide them along the way. But I thought that was really poignant advice that Hillary provided something that I'm gonna take into consideration myself. >>Yeah. And I honestly hadn't thought about that, but as I reflect through my own career, I can see how I've had particular managers who have had a major impact on helping me, um, with my career. But, you know, if you don't have the ability to do that, or maybe that's not a luxury that you have, I think even if you're able to, you know, find a mentor for a period of time or, um, you know, just, just enable for you to be able to get from say a point a to point B just for a temporary period. Um, just so you can grow into your next role, have a, have a particular outcome that you wanna drive, have a particular goal in mind find that person who's been there and done that and can really help you get through. If you don't have the luxury of picking your manager mentor, who can help you get to the next step. >>Exactly. That, that I thought that advice was brilliant and something that I hadn't really considered either. We also talked with several of the women about imposter syndrome. You know, that's something that everybody, I think, regardless of gender of your background, everybody feels that at some point. So I think one of the nice things that we do in this episode is sort of identify, yes, imposter syndrome is real. This is, this is how it happened to me. This is I navigated around or got over it. I think there's some great advice there for the audience to glean as well about how to dial down the imposter syndrome that they might be feeling. >>Absolutely. And I think the key there is just acknowledging it. Um, but also just hearing all the different techniques on, on how folks have dealt with it because everybody does, um, you know, even some of the smartest, most confident men I've, I've met in, uh, industry still talk to me about how they have it and I'm shocked by it oftentimes, but, um, it is very common and hopefully we, we talk about some good techniques to, to deal with that. >>I think we do, you know, one of the things that when we were asking the, our audience, our guests about advice, what would they tell their younger selves? What would they tell young women or underrepresented groups in terms of becoming interested in stem and in tech and everybody sort of agreed on me, don't be afraid to raise your hand and ask questions. Um, show vulnerabilities, not just as the employee, but even from a leadership perspective, show that as a leader, I, I don't have all the answers. There are questions that I have. I think that goes a long way to reducing the imposter syndrome that most of us have faced at some point in our lives. And that's just, don't be afraid to ask questions. You never know, oh, how can people have the same question sitting in the room? >>Well, and also, you know, for folks who've been in industry for 20, 25 years, I think we can just say that, you know, it's a, it's a marathon, it's not a sprint and you're always going to, um, have new things to learn and you can spend, you know, back to, we talked about the zing and zagging through careers, um, where, you know, we'll have different experiences. Um, all of that kind of comes through just, you know, being curious and wanting to continue to learn. So yes, asking questions and being vulnerable and being able to say, I don't know all the answers, but I wanna learn is a key thing, uh, especially culturally at AWS, but I'm sure with all of these companies as well, >>Definitely I think it sounded like it was really ingrained in their culture. And another thing too, that we also talked about is the word, no, doesn't always mean a dead end. It can often mean not right now or may, maybe this isn't the right opportunity at this time. I think that's another important thing that the audience is gonna learn is that, you know, failure is not necessarily a bad F word. If you turn it into opportunity, no isn't necessarily the end of the road. It can be an opener to a different door. And I, I thought that was a really positive message that our guests, um, had to share with the, the audience. >>Yeah, totally. I can, I can say I had a, a mentor of mine, um, a very, uh, strong woman who told me, you know, your career is going to have lots of ebbs and flows and that's natural. And you know that when you say that, not right now, um, that's a perfect example of maybe there's an ebb where it might not be the right time for you now, but something to consider in the future. But also don't be afraid to say yes, when you can. <laugh> >>Exactly. Danielle, it's been a pleasure filming this episode with you and the great female leaders that we have on. I'm excited for the audience to be able to learn from Hillary Vera, Stephanie Sue, and you so much valuable content in here. We hope you enjoy this partner showcase season one, episode three, Danielle, thanks so much for helping >>Us with it's been a blast. I really appreciate it >>All audience. We wanna enjoy this. Enjoy the episode.

(bright music) >> Welcome to the AWS Partner Showcase. I'm Lisa Martin, your host. This is season one episode three and this is a great episode that focuses on women in tech. I'm pleased to be joined by Danielle Greshock, the ISV PSA director at AWS, and a sponsor of this fantastic program. Danielle, it's great to see you and talk about such an important topic. >> Yes, and I will tell you all of these interviews have just been a blast for me to do and I feel like there has been a lot of gold that we can glean from all of the stories that we heard on these interviews and good advice that I myself would not have necessarily thought of. >> I agree, and we're going to get to (indistinct) 'cause advice is one of the the main things that our audience is going to hear. We have Hillary Ashton, you'll see from Teradata. Vera Reynolds joins us from Honeycomb. Stephanie Curry from NetApp. And Sue Persichetti from Jefferson Frank and the topics that we dig into are, first and foremost, diversity equity and inclusion, that is a topic that is incredibly important to every organization. And some of the things, Danielle, that our audiences shared were really interesting to me. One of the things that I saw, from a thematic perspective, over and over, was that, like Vera Reynolds was talking about, the importance of companies and hiring managers and how they need to be intentional with DE&I initiatives and that intention was a common theme that we heard. I'm curious what your thoughts are about that, that we heard about being intentional, working intentionally to deliver a more holistic pool of candidates where DE&I is concerned. What were some of the things that stuck out to you? >> Absolutely, I think each one of us is working inside of organizations where, in the last five to 10 years, there's been a strong push in this direction, mostly because we've really seen, first and foremost by being intentional, that you can change the way your organization looks. But also just that without being intentional there was just a lot of outcomes and situations that maybe weren't great for a healthy and productive environment, working environment. And so a lot of these companies have made big investments and put forth big initiatives that I think all of us are involved in and so we're really excited to get out here and talk about it and talk about, especially as these are all partnerships that we have, how these align with our values. >> Yeah, that value alignment that you bring up is another theme that we heard consistently with each of the partners. There's a cultural alignment. There's a customer obsession alignment that they have with AWS. There's a DE&I alignment that they have and I think everybody also kind of agreed, Stephanie Curry talked about, it's really important for diversity on impacting performance, highly performant teams are teams that are more diverse. I think we heard that kind of echoed throughout the women that we talked to in this episode. >> Absolutely, and I definitely even feel that there are studies out there that tell you that you make better products if you have all of the right input and you're getting many different perspectives. But not just that, I can personally see it in the performing teams, not just my team, but also the teams that I work alongside. Arguably some of the other business folks have done a really great job of bringing more women into their organization, bringing more underrepresented minorities, tech is a little bit behind but we're trying really hard to bring that forward as well in technical roles. But you can just see the difference in the outcomes. At least I personally can, just in the adjacent teams of mine. >> That's awesome, we talked also quite a bit during this episode about attracting women and underrepresented groups and retaining them. That retention piece is really key. What were some of the things that stuck out to you that some of the guests talked about in terms of retention? >> Yeah, I think, especially speaking with Hillary and hearing how Teradata is thinking about different ways to make hybrid work work for everybody, I think that is definitely, when I talk to women interested in joining AWS, oftentimes that might be one of the first concerns that they have. Like, am I going to be able to go pick my kid up at four o'clock at the bus? Or, am I going to be able to be at my kid's conference? Or even just have enough work life balance that I can do the things that I want to do outside of work, beyond children and family. So these are all very important questions that especially women come and ask, but also it kind of is a bellwether for, is this going to be a company that allows me to bring my whole self to work and then I'm also going to be able to have that balance that I need. So I think that was something that is changing a lot and many people are thinking about work a lot differently. >> Absolutely, the pandemic not only changed how we think about work. You know, initially it was, do I work from home or do I live at work, and that was legitimately a challenge that all of us faced for a long time period, but we're seeing the hybrid model, we're seeing more companies be open to embracing that and allowing people to have more of that balance, which, at the end of the day, it's so much better for product development for the customers, as you talked about, it's a win-win. >> Absolutely, and definitely the first few months of it was very hard to find that separation, to be able to put up boundaries, but I think, at least I personally, have been able to find the way to do it and I hope that everyone is getting that space to be able to put those boundaries up, to effectively have a harmonious work life where you can still be at home most of the time, but also have that cutoff point of the day or at least have that separate space that you can feel that you're able to separate the two. >> Yeah absolutely, and a lot of that, from a work life balance perspective, bleeds into one of the next topics that we covered in detail and that's mentors and sponsors, the differences between them, recommendations from the women on the panel about how to combat imposter syndrome, but also how to leverage mentors and sponsors throughout your career. One of the things that Hillary said that I thought was fantastic advice, where mentors and sponsors are concerned, is be selective in picking your bosses. We often see people, especially younger folks, not necessarily younger folks, I shouldn't say that, that are attracted to a company, it's brand maybe, and think more about that than they do the boss or bosses that can help guide them along the way, but I thought that was really poignant advice that Hillary provided, something that I'm going to take into consideration myself. >> Yeah, and I honestly hadn't thought about that but as I reflect through my own career I can see how I've had particular managers who have had a major impact on helping me with my career. But if you don't have the ability to do that or maybe that's not a luxury that you have, I think even if you're able to find a mentor for a period of time or just enable for you to be able to get from, say a point A to point B, just for a temporary period, just so you can grow into your next role. Have a particular outcome that you want to drive. Have a particular goal in mind. Find that person who's been there and done that and they can really help you get through. If you don't have the luxury of picking your manager, at least be able to pick a mentor who can help you get to the next step. >> Exactly, I thought that advice was brilliant and it's something that I hadn't really considered either. We also talked with several of the women about imposter syndrome. You know that's something that everybody, I think regardless of gender, of your background, everybody feels that at some point. So I think one of the nice things that we do in this episode is sort of identify, yes, imposter syndrome is real, this is how it happened to me, this is how I navigated around or got over it. I think there's some great advice there for the audience to glean as well, about how to dial down the imposter syndrome that they might be feeling. >> Absolutely and I think the key there is just acknowledging it but also just hearing all the different techniques on how folks have dealt with it because everybody does. Even some of the smartest, most confident men I've met in industry still talk to me about how they have it and I'm shocked by it oftentimes, but it is very common and hopefully we talk about some good techniques to deal with that. >> I think we do. You know, one of the things that, when we were asking our guests about advice, what would they tell their younger selves, what would they tell young women or underrepresented groups in terms of becoming interested in STEM and in tech, and everybody sort of agreed on the, don't be afraid to raise your hand and ask questions. Show vulnerabilities, not just as the employee, but even from a leadership perspective, show that as a leader. I don't have all the answers. There are questions that I have. I think that goes a long way to reducing the imposter syndrome that most of us have faced at some point in our lives and that's just, don't be afraid to ask questions. You never know how many people have the same question sitting in the room. >> Well and also, for folks who've been in industry for 20, 25 years, I think we can just say that it's a marathon, it's not a sprint, and you're always going to have new things to learn and you can spend, back to we talked about the zigging and zagging through careers where we'll have different experiences, all of that kind of comes through just being curious and wanting to continue to learn. So yes, asking questions and being vulnerable and being able to say, "I don't know all the answers but I want to learn," is a key thing, especially culturally at AWS, but I'm sure with all of these companies as well. >> Definitely I think it sounded like it was really ingrained in their culture. And another thing too that we also talked about is the word no doesn't always mean a dead end. It can often mean, not right now, or maybe this isn't the right opportunity at this time. I think that's another important thing that the audience is going to learn is that failure is not necessarily a bad F word if you turn it into opportunity. No isn't necessarily the end of the road. It can be an opener to a different door and I thought that was a really positive message that our guests had to share with the audience. >> Yeah totally, I can say I had a mentor of mine, a very strong woman who told me, your career is going to have lots of ebbs and flows and that's natural and that when you say that, not right now, that's a perfect example of maybe there's an ebb where it might not be the right time for you now, but something to consider in the future. But also don't be afraid to say yes, when you can. >> Exactly, Danielle, it's been a pleasure filming this episode with you and the great female leaders that we have on. I'm excited for the audience to be able to learn from Hillary, Vera, Stephanie, Sue, and you. So much valuable content in here. We hope you enjoy this Partner Showcase. Season one episode three. Danielle, thank you so much for helping us. >> Thank you. Thank you, it's been a blast. I really appreciate it. >> All right, audience, we want to thank you. Enjoy the episode. (upbeat music)

(bright music) >> Everyone, it's nice to see you. Welcome to the "AWS Partner Showcase". I'm Lisa Martin, your host. This is season one, episode three, and this is a great episode that focuses on women in tech. I'm pleased to be joined by Danielle Greshock, the ISV PSA Director at AWS, and the sponsor of this fantastic program. Danielle, it's great to see you, and talk about such an important topic. >> Yes, and I will tell you all of these interviews have just been a blast for me to do, and I feel like there has been a lot of gold that we can glean from all of the stories that we heard on these interviews and good advice that I myself would not have necessarily thought of. So-- >> I agree, and we're going to get to that. 'Cause advice is one of the main things that our audience is going to hear. We have Hillary Ashton, you'll see from Teradata, Vera Reynolds joins us from Honeycomb, Stephanie Curry from NetApp and Sue Persichetti from Jefferson Frank. And the topics that we dig into are first and foremost, diversity, equity and inclusion. That is a topic that is incredibly important to every organization. And some of the things, Danielle, that our audiences shared were really interesting to me. One of the things that I saw from a thematic perspective over and over was that like Vera Reynolds was talking about the importance of companies and hiring managers and how they need to be intentional with DE&I initiatives. And that intention was a common thing that we heard. I'm curious what your thoughts are about that, that we heard about being intentional, working intentionally to deliver a more holistic pool of candidates where DE&I is concerned. What were some of the things that stuck out to you? >> Absolutely, I think each one of us is working in the inside of organizations where in the last five to 10 years there's been a strong push in this direction. Mostly because we've really seen first and foremost by being intentional, that you can change the way your organization looks. But also just that without being intentional, there was just a lot of outcomes and situations that maybe weren't great for a healthy and productive working environment. And so a lot of these companies have made big investments and put forth big initiatives that I think all of us are involved in. And so we're really excited to get out here and talk about it and talk about, especially as these are all partnerships that we have, how these align with our values. >> Yeah, that value alignment that you bring up is another thing that we heard consistently with each of the partners. There's a cultural alignment, there's a customer obsession alignment that they have with AWS, there's a DE&I alignment that they have. And I think everybody also kind of agreed. Stephanie Curry talked about it's really important for diversity on impacting performance. Highly performing teams are teams that are more diverse. I think we heard that kind of echoed throughout the women that we talked to in this episode. >> Absolutely, and I definitely even feel that there are studies out there that tell you that you make better products if you have all of the right input and you're getting many different perspectives. But not just that, but I can personally see it in the performing teams, not just my team, but also the teams that I work alongside. Arguably some of the other business folks have done a really great job of bringing more women into their organization, bringing more underrepresented minorities. Tech is a little bit behind, but we're trying really hard to bring that forward as well in technical roles. But you can just see the difference in the outcomes. At least I personally can just in the adjacent teams of mine. >> That's awesome. We talked also quite a bit during this episode about attracting women and underrepresented groups and retaining them. That retention piece is really key. What were some of the things that stuck out to you that some of the guests talked about in terms of retention? >> Yeah, I think especially speaking with Hillary and hearing how Teradata is thinking about different ways to make hybrid work work for everybody. I think that is definitely... When I talk to women interested in joining AWS, oftentimes that might be one of the first concerns that they have. Like, am I going to be able to go pick my kid up at four o'clock at the bus? Or am I going to be able to be at my kids' conference, or even just have enough work-life balance that I can do the things that I want to do outside of work beyond children and family. So these are all very important questions that especially women come and ask, but also it kind of is a bellwether for, is this going to be a company that allows me to bring my whole self to work? And then I'm also going to be able to have that balance that I need. So I think that was something that is changing a lot and many people are thinking about work a lot differently. >> Absolutely, the pandemic not only changed how we think about work. Initially it was, do I work from home or do I live at work? And that was legitimately a challenge that all of us faced for a long time period. But we're seeing the hybrid model, we're seeing more companies be open to embracing that and allowing people to have more of that balance which at the end of the day it's so much better for product development for the customers as you talked about, it's a win-win. >> Absolutely. And definitely the first few months of it was very hard to find that separation to be able to put up boundaries. But I think at least I personally have been able to find the way to do it and I hope that everyone is getting that space to be able to put those boundaries up to effectively have a harmonious work life. Where you can still be at home most of the time, but also have that cutoff point of the day or at least have that separate space that you can feel that you're able to separate the two. >> Yeah, absolutely. And a lot of that from a work-life balance perspective leads into one of the next topics that we covered in detail. And that's mentors and sponsors, the differences between them, recommendations from the women on the panel about how to combat imposter syndrome, but also how to leverage mentors and sponsors throughout your career. One of the things that Hillary said that I thought was fantastic advice where mentors and sponsors are concerned is be selective in picking your bosses. We often see people, especially younger folks, not necessarily younger folks, I shouldn't say that, that are attracted to a company, its brand maybe, and think more about that than they do the boss or bosses that can help guide them along the way. But I thought that was really poignant advice that Hillary provided, something that I'm going to take into consideration myself. >> Yeah, and I honestly hadn't thought about that, but as I reflect through my own career, I can see how I've had particular managers who have had a major impact on helping me with my career. But if you don't have the ability to do that or maybe that's not a luxury that you have, I think even if you're able to find a mentor for a period of time or just enable for you to be able to get from say a point A to point B just for a temporary period, just so you can grow into your next role, have a particular outcome that you want to drive, have a particular goal in mind. Find that person who's been there and done that and they can really help you get through if you don't have the luxury of picking your manager, at least be able to pick a mentor who can help you get to the next step. >> Exactly, I thought that advice was brilliant and something that I hadn't really considered either. We also talked with several other women about imposter syndrome. That's something that everybody, I think regardless of gender, of your background, everybody feels that at some point. So I think one of the nice things that we do in this episode is sort of identify, yes, imposter syndrome is real. This is how it happened to me, this is how I navigated around it or got over it. I think there's some great advice there for the audience to glean as well about how to dial down the imposter syndrome that they might be feeling. >> Absolutely. And I think the key there is just acknowledging it, but also just hearing all the different techniques on how folks have dealt with it, because everybody does. Even some of the smartest, most confident men I've met in industry still talk to me about how they have it. And I'm shocked by it oftentimes, but it is very common. And hopefully we talk about some good techniques to deal with that. >> I think we do. One of the things that when we were asking our guests about advice, what would they tell their younger selves, what would they tell young women or underrepresented groups in terms of becoming interested in STEM and in tech. And everybody sort of agreed on the don't be afraid to raise your hand and ask questions. Show vulnerabilities, not just as the employee, but even from a leadership perspective, show that as a leader, I don't have all the answers. There are questions that I have. I think that goes a long way to reducing the imposter syndrome that most of us have faced at some point in our lives. And that's just, don't be afraid to ask questions. You never know how many people have the same question sitting in the room. >> Well, and also for folks who've been in industry for 20, 25 years, I think we can just say that it's a marathon, it's not a sprint, and you're always going to have new things to learn. And you can spend... Back to we talked about the zigging and zagging through careers where we'll have different experiences. All of that kind of comes through just being curious and wanting to continue to learn. So yes, asking questions and being vulnerable and being able to say, I don't know all the answers but I want to learn is a key thing, especially culturally at AWS, but I'm sure with all of these companies as well. >> Definitely I think it sounded like it was really ingrained in their culture. And another thing too that we also talked about is the word, no, doesn't always mean a dead end, it can often mean, not right now or maybe this isn't the right opportunity at this time. I think that's another important thing that the audience is going to learn is that failure is not necessarily a bad F-word if you turn it into opportunity. No isn't necessarily the end of the road. It can be an opener to a different door. And I thought that was a really positive message that our guests had to share with the audience. >> Yeah, totally. I can say I had a mentor of mine, a very strong woman who told me, "Your career is going to have lots of ebbs and flows, and that's natural." And that when you say that, not right now, that's a perfect example of maybe there's an ebb where it might not be the right time for you now, but something to consider in the future. But also don't be afraid to say yes when you can. >> Exactly. Danielle, it's been a pleasure filming this episode with you and the great female leaders that we have on. I'm excited for the audience to be able to learn from Hillary, Vera, Stephanie, Sue and you. So much valuable content in here. We hope you enjoy this partner showcase season one episode three. Danielle, thanks so much for helping us with this. >> Thank you. Thank you, it's been a blast, I really appreciate it. >> All right. Audience, we want to thank you, enjoy the episode. (gentle music)

>>Hey everyone. Welcome to the AWS partner showcase season one, episode three women in tech. I'm your host. Lisa Martin. We've got two female rock stars here with me next. Stephanie Curry joins us the worldwide head of sales and go to market strategy for AWS at NetApp and Danielle GShock is back one of our QM ISV PSA director at AWS. Looking forward to a great conversation, ladies, about a great topic, Stephanie, let's go ahead and start with you. Give us an overview of your story, how you got into tech and what inspired you. >>Thanks so much, Lisa and Danielle. It's great to be on this show with you. Thank you for that. My name's Stephanie curs. Lisa mentioned I'm the worldwide head of sales for AWS at NetApp and run a global team of sales people that sell all things AWS going back 25 years now, when I first started my career in tech, it was kind of by accident. I'd come from a different background. I have a business background and a technical background from school, but had been in a different career. And I had an opportunity to try something new. I had an ally really that reached out to me and said, Hey, you'd be great for this role. And I thought, I'd take a chance. I was curious. And it, it turned out to be a 25 year career that I'm really, really excited about and, and really thankful for that person for introducing me to the, to the industry >>25 years in counting. I'm sure Danielle, we've talked about your background before. So what I wanna focus on with you is the importance of diversity for high performance. I know what a machine AWS is, and Stephanie, I'll come back to you with the same question, but talk about that, Danielle, from your perspective, that importance for diversity to drive the performance. >>Yeah. I truly believe that, you know, in order to have high performing teams, that you have to have people from all different types of backgrounds and experiences. And we do find that oftentimes being, you know, field facing, if we're not reflecting our customers and connecting with them deeply on, on the levels that they're at, we, we end up missing them. And so for us, it's very important to bring people of lots of different technical backgrounds experiences. And of course, both men, women, and underrepresented minorities, and put that forth to our customers in order to make that connection and to end up with better outcomes. So >>Definitely it's all about outcomes, Stephanie, your perspective and NetApp's perspective on diversity for creating highly performing teams and organizations. >>I really aligned with Danielle on the comment she made. And in addition to that, you know, just from building teams in my career note, we've had three times as many women on my team since we started a year ago and our results are really showing in that as well. We find the teams are stronger, they're more collaborative and to Danielle's point really not only our partners, but our customers themselves. So this really creates connections, which are really, really important to scale our businesses and, and really meet the customer where they're at as well. So huge proponent of that ourselves, and really finding that we have to be intentional in our hiring and intentional in how we attract diversity to our teams. >>So Stephanie let's stay with you. So a three X increase in women on the team in a year, especially the kind of last year that we've had is really incredible. I, I like your, I, your thoughts on there needs to be a, there needs to be focus and, and thought in how teams are hired. Let's talk about attracting and retaining those women now, especially in sales roles, we all know the number, the percentages of women in technical roles, but what are some of the things that, that you do Stephanie, that NetApp does to attract and retain women in those sales roles? >>The, the attracting part's really interesting. And we find that, you know, you, you read the stats and I'd say in my experience, they're also true in the fact that a lot of women would look at a job description and say, I can't do a hundred percent of that. So I'm not even going to apply with the women that we've attracted to our team. We've actually intentionally reached out and targeted those people in a good way to say, Hey, we think you've got what it takes. Some of the feedback I've got from those women are, gosh, I didn't think I could ever get this role. I didn't think I had the skills to do that. And they've been hired and they are doing a phenomenal job. In addition to that, I think a lot of the feedback I've got from these hires are, Hey, it's an aggressive sales is aggressive. Sales is competitive. It's not an environment that I think I can be successful in. And what we show them is bring those softer skills around collaboration, around connection, around building teams. And they do, they do bring a lot of that to the team. Then they see others like them there and they know they can be successful cuz they see others like them on the team. >>The whole concept of we can't be what we can't see, but we can be what we can see is so important. You said a couple things, Stephanie, that really stuck with me. And one of 'em was an, an interview on the cube I was doing, I think a couple weeks ago about women in tech. And the stat that we talked about was that women will apply will not apply for a job unless they meet 100% of the skills and the requirements that it's listed, but men will, if they only meet 60. And I, that just shocked me that I thought, you know, I, I can understand that imposter syndrome is real. It's a huge challenge, but the softer skills, as you mentioned, especially in the last two years, plus the ability to communicate, the ability to collaborate are incredibly important to, to drive that performance of, of any team of any business. >>Absolutely. >>Danielle, talk to me about your perspective in AWS as well for attracting and retaining talent and, and, and particularly in some of those challenging roles like sales that as Stephanie said, can be known as aggressive. >>Yeah, for sure. I mean, my team is focused on the technical aspect of the field and we definitely have an uphill battle for sure. Two things we are focused on first and foremost is looking at early career women and that how we, how can we bring them into this role, whether in they're in support functions, cl like answering the phone for support calls, et cetera, and how, how can we bring them into this organization, which is a bit more strategic, more proactive. And then the other thing that as far as retention goes, you know, sometimes there will be women who they're on a team and there are no other women on that team. And, and for me, it's about building community inside of AWS and being part of, you know, we have women at solution architecture organizations. We have, you know, I just personally connect people as well and feel like, oh, you should meet this person. Oh, you should talk to that person. Because again, sometimes they can't see someone on their team like them and they just need to feel anchored, especially as we've all been, you know, kind of stuck at home during the pandemic, just being able to make those connections with women like them has been super important and just being a long tenure Amazonian, that's definitely one thing I'm able to, to bring to the table as well. >>That's so important and impactful and spreads across organizations in a good way. Daniel let's stick with you. Let's talk about some of the allies that you've had sponsors, mentors that have really made a difference. And I said that in past tense, but I also mean in present tense, who are some of those folks now that really inspire you? >>Yeah. I mean, I definitely would say that one of my mentors and someone who ha has been a sponsor of my career has Matt ion, who is one of our control tower GMs. He has really sponsored my career and definitely been a supporter of mine and pushed me in positive ways, which has been super helpful. And then other of my business partners, you know, Sabina Joseph who's cube alum as well. She definitely has been, was a fabulous partner to work with. And, you know, between the two of us for a period of time, we definitely felt like we could, you know, conquer the world. It's very great to go in with a, with another strong woman, you know, and, and get things done inside of an organization like AWS. >>Absolutely. And know S I've had, I've been agreed here several times. So Stephanie, same question for you. You talked a little bit about your kind of, one of your original early allies in the tech industry, but talk to me about allies sponsors, mentors who have, and continue to make a difference in your life. >>Yeah. And, you know, I think it's a great differentiation as well, right? Because I think that mentors teach us sponsors show us the way and allies make room for us at the table. And that is really key difference. I thinks also as women leaders, we need to make room for others at the table too, and not forget those softer skills that we bring to the table. Some of the things that Danielle mentioned as well about making those connections for others, right. And making room for them at the table. Some of my allies, a lot of them are men. Brian ABI was my first mentor. He actually is in the distribution, was in distribution with advent tech data no longer there, Cory Hutchinson, who's now at Hashi Corp. He's also another ally of mine and remains an ally of mine, even though we're not at the same company any longer. So a lot of these people transcend careers and transcend different positions that I've held as well and make room for us. And I think that's just really critical when we're looking for allies. And when allies are looking for us, >>I love how you described allies, mentors and sponsors Stephanie. And the difference, I didn't understand the difference between a mentor and a sponsor until a couple of years ago. Do you talk with some of those younger females on your team so that when they come into the organization and maybe they're fresh outta college, or maybe they've transitioned into tech so that they can also learn from you and understand the importance and the difference between the allies and the sponsors and the mentors? >>Absolutely. And I think that's really interesting because I do take an extra approach and extra time to really reach out to the women that have joined the team. One, I wanna make sure they stay right. I don't want them feeling, Hey, I'm alone here and I need to, I need to go do something else. And they are located around the world, on my team. They're also different age groups. So early in career, as well as more senior people and really reaching out, making sure they know that I'm there. But also as Danielle had mentioned, connecting them to other people in the community that they can reach out to for those same opportunities and making room for them >>Make room at the table. It's so important. And it can, you never know what a massive difference and impact you can make on someone's life. And I, and I bet there's probably a lot of mentors and sponsors and allies of mine that would be surprised to know the massive influence they've had Danielle back. Let's talk about some of the techniques that you employ that AWS employs to make the work environment, a great place for women to really thrive and, and be retained as Stephanie was saying. Of course that's so important. >>Yeah. I mean, definitely I think that the community building, as well as we have a bit more programmatic mentorship, we're trying to get to the point of having a more programmatic sponsorship as well. But I think just making sure that, you know, both E everything from recruit to onboard to ever boarding that they they're the women who come into the organization, whether it's they're coming in on the software engineering side or the field side or the sales side that they feel as though they have someone working with them to help them drive their career. Those are the key things that were, I think from an organizational perspective are happening across the board. For me personally, when I run my organization, I'm really trying to make sure that people feel that they can to me at any time open door policy, make sure that they're surfacing any times in which they are feeling excluded or anything like that, any challenges, whether it be with a customer, a partner, or with a colleague. And then also of course, just making sure that I'm being a good sponsor to, to people on my team. That is key. You can talk about it, but you have to start with yourself as well. >>That's a great point. You you've got to, to start with yourself and really reflect on that and, and look, am I, am I embodying what it is that I need? And not that I know they need that focused, thoughtful intention on that is so importants, let's talk about some of the techniques that you use that NetApp uses to make the work environment, a great place for those women are marginalized communities to really thrive. >>Yeah. And I appreciate it. And it much like Danielle and much like AWS, we have some of those more structured programs, right around sponsorship and around mentorship, probably some growth there, opportunities for allies, because I think that's more of a newer concept in really an informal structure around the allies, but something that we're growing into at NetApp on my team personally, I think leading by example is really key. And unfortunately, a lot of the life stuff still lands on the women, whether we like it or not, I have a very active husband in our household, but I still carry when it push comes to shove it's on me. And I wanna make sure that my team knows it's okay to take some time and do the things you need to do with your family. I'm I show up as myself authentically and I encourage them to do the same. >>So it's okay to say, Hey, I need to take a personal day. I need to focus on some stuff that's happening in my personal life this week. Now obviously make sure your job' covered, but just allowing some of that softer vulnerability to come into the team as well, so that others, men and women can feel they can do the same thing. And that it's okay to say, I need to balance my life and I need to do some other things alongside. So it's the formal programs, making sure people have awareness on them. I think it's also softly calling people out on biases and saying, Hey, I'm not sure if you know, this landed that way, but I just wanted to make you aware. And usually the feedback is, oh my gosh, I didn't know. And could you coach me on something that I could do better next time? So all of this is driven through our NetApp formal programs, but then it's also how you manifest it on the teams that we're leading. >>Absolutely. And sometimes having that mirror to reflect into can be really eye-opening and, and allow you to, to see things in a completely different light, which is great. You both talked about kind of being what you can see. And, and I know both companies are obsess customer obsessed in a good way. Talk to me a little bit, Danielle, go back over to you about the AWS NetApp partnership. Some of the maybe alignment on, on performance on obviously you guys are very well aligned in terms of that, but also it sounds like you're quite aligned on diversity and inclusion. >>Well, we definitely do. We have the best partnerships with companies in which we have these value alignments. So I think that is a positive thing, of course, but just from a, from a partnership perspective, you know, from my five now plus years of being a part of the APN, this is, you know, one of the most significant years with our launch of FSX for NetApp, with that key key service, which we're making available natively on AWS. I, I can't think of a better Testament to the, to the partnership than that. And that's doing incredibly well and it really resonates with our customers. And of course it started with customers and their need for NetApp. So, you know, that is a reflection, I think, of the success that we're having together. >>And Stephanie talk to about the partnership from your perspective, NetApp, AWS, what you guys are doing together, cultural alignment, but also your alignment on really bringing diversity into drive performance. >>Yeah, I think it's a, a great question. And I have to say it's just been a phenomenal year. Our relationship has started before our first party service with FSX N but definitely just the trajectory between the two companies since the announcement about nine months ago has just taken off to a, a new level. We feel like an extended part of the family. We worked together seamlessly. A lot of the people on my team often say we feel like Amazonians, and we're really part of this transformation at NetApp from being that storage hardware company, into being an ISV and a cloud company. And we could not do this without the partnership with AWS and without the first party service of Fs XM that we've recently released. I think that those joint values that Danielle referred to are critical to our success, starting with customer obsession and always making sure that we are doing the right thing for the customer. >>We coach our team teams all the time on if you are doing the right thing for the customers, you cannot do anything wrong. Just always put the customer at the dis in the center of your decisions. And I think that there is a lot of best practice sharing and collaboration as we go through this change. And I think a lot of it is led by the diverse backgrounds that are on the team, female, male race, and so forth, and just to really have different perspectives and different experiences about how we approach this change. So we definitely feel like we're part of the family. We are absolutely loving working with the AWS team and our team knows that we are the right place, the right time with the right people. >>I love that last question for each of you. And I wanna stick with you Stephanie advice to your younger self, think back 25 years. What advice would you seen what you've accomplished and maybe the, the turns and, and serendipitous route that you've taken along the way, what would you advise your younger Stephanie self? >>I would say keep being curious, right? Keep being curious, keep asking questions. And sometimes when you get a no, it's not a bad thing, it just means not right now and find out why and, and try to get feedback as to why maybe that wasn't the right opportunity for you, but, you know, just go for what you want. Continue to be curious, continue to ask questions and find a support network of people around you that wanna help you because they are there and they are, they wanna see you be successful too. So never be shy about that stuff. >>Absolutely. And I always say failure does not have to be a bad F word. A no can be the beginning of something. Amazing. Danielle, same question for you. Thinking back to when you first started in your career, what advice would you give your younger self? >>Yeah, I think the advice I'd give my younger self would be, don't be afraid to put yourself out there. It's certainly, you know, coming from an engineering background, maybe you wanna stay behind the scenes, not, not do a presentation, not do a public speaking event, those types of things, but back to what the community really needs. This thing, you know, I genuinely now took me a while to realize it, but I realized I needed to put myself out there in order to, you know, allow younger women to see what they could be. So that would be the advice I would give. Don't be afraid to put yourself out there. >>Absolutely. That advice that you both gave are, is so fantastic, so important and so applicable to everybody. Don't be afraid to put yourself out there, ask questions. Don't be afraid of a, no, that it's all gonna happen at some point or many points along the way. That can also be good. So thank you ladies. You inspired me. I appreciate you sharing what AWS and NetApp are doing together to strengthen diversity, to strengthen performance and the advice that you both shared for your younger was brilliant. Thank you. >>Thank you. >>Thank you >>For my guests. I'm Lisa Martin. You're watching the AWS partner showcase. See you next time.

>>Hey everyone. Welcome to the AWS partner showcase season one, episode three women in tech. I'm your host. Lisa Martin. I've got two female rock stars joining me. Next Vera Reynolds is here engineering manager, telemetry at honeycomb, and one of our Cub alumni, Danielle GShock ISV PSA director at AWS joins us as well. Ladies. It's great to have you talking about a very important topic today. >>Thanks for having us. Yeah, thanks for having me. Appreciate it. >>Of course, Vera, let's go ahead and start with you. Tell me about your background and tech. You're coming up on your 10th anniversary. Happy anniversary. >>Thank you. That's right. I can't believe it's been 10 years, but yeah, I started in tech in 2012. I was an engineer for most of that time. And just recently, as of March switched to engineering management here at honeycomb and, you know, throughout my career, I was very much interested in all the things, right. And it was a big FOMO as far as trying a few different companies and products, and I've done things from web development to mobile, to platforms. It would be apt to call me a generalist. And in the more recent years, I was sort of gravitating more towards developer tool space. And for me, that came in the form of cloud Foundry circle CI, and now honeycomb. I actually had my eye on honeycomb for a while before joining, I came across a blog post by charity majors. Who's one of our founders and she was actually talking about management and how to pursue that and whether or not it's right for your career. >>And so I was like, who is this person? I really like her found the company. They were pretty small at the time. So I was sort of keeping my eye on them. And then when the time came around for me to look again, I did a little bit more digging, found a lot of talks about the product. And on the one hand, they really spoke to me as the solution. They talked about developers owning their coding in production and answering questions about what is happening, what are your users seeing? And I felt that pain, I got what they were trying to do. And also on the other hand, every talk I saw at the time was from an amazing woman, which I haven't seen before. So I came across charity majors again, Christine Young, who's our other founder. And then Liz Frank Jones, who's our, our principal developer advocate. And that really sealed the deal for me as far as wanting to work here. >>Yeah. Honeycomb is interesting. This is a female founded company. You two leaders, you mentioned that you liked the technology, but you were also attracted because you saw females and the leadership position. Talk to me a little bit about what that's like working for a female led organization at honeycomb. >>Yeah. You know, historically we have tried not to over index on that because there was this maybe fear or rareness of it taking away from our legitimacy as an engineering organization, from our success as a company. But I'm seeing that rhetoric shift recently because we believe that with great responsibility with great power comes great responsibility. And we're trying to be more intentional as far as using that attribute of our company. So I would say that for me, it was a choice between a few offers, right. And that was a selling point, for sure, because again, I've never experienced it and I've really seen how much they walk that walk. Even me being here and me moving into management, I think were both ways in which they really put a lot of trust and support in me. And so I it's been a great ride. >>Excellent. Sounds like it. Before we bring Danielle in to talk about the partnership. I do wanna have you here, talk to the audience a little bit about honeycomb, what technology it's delivering and what are its differentiators. >>Yeah, absolutely. So honeycomb is an observability tool that enables engineers to answer questions about the code that runs in production. And we work with a number of various customers. Some of them are Vanguards, slack. Hello, fresh. Just to name a couple. If you're not familiar with observability tooling, it's akin to traditional application performance monitoring, but we believe that observability is succeeding APM because APM tools were built at the time of monoliths and they just weren't designed to help us answer questions about complex distributed systems that we work with today, where things can go wrong anywhere in that chain. And you can't predict what you're gonna need to ask ahead of time. So some of the ways that we are different is our ability to store and query really rich data, which we believe is the key to understanding those complex systems. What I mean by rich data is something that has a lot of attributes. >>So for example, when an error happens, knowing who it happened to, which user ID, which I don't know region, they were in, what, what they were doing at the time and what was happening at the rest of your system. And our ingest engine is really fast. You could do it in as little as three seconds and we call data like this. I said, kind of rich data, contextual data. We refer it as having high ity and high dimensionality, which are big words. But at the end of the day, what that means is we can store and we can query this data and we can do it really fast. And to give you an example of how that looks for our customers, let's say you have a developer team who are using honeycomb to understand and observe their system. And they get a report that a user is experiencing a slowdown or something's wrong. >>They can go into honeycomb and figure out that this only happens to users who are using a particular language pack with their app. And they operated their app last week, that it only happens when they are trying to upload a file. And so it's this level of granularity and being able to zoom in and out under data that allows you to understand what's happening, especially when you have an incident going on, right. Or your really important high profile customer is telling you that something's wrong. And we can do that. Even if everything else in your other tools looks fine, right? All of your dashboards are okay. You're not actually getting paged on it, but your customers are telling you that something's wrong. And we believe that's where we shine in helping you there. >>Excellent. It sounds like that's where you really shine that realtime visibility is so critical these days. Danielle, Danielle, wanna bring you into the conversation. Talk to us a little bit about the honeycomb partnership from the AWS lens. >>Yeah. So excuse me, observability is obviously a very important segment in the cloud space, very important to AWS, because a lot of all of our customers, as they build their systems distributed, they need to be able to see where, where things are happening in the complex systems that they're building. And so honeycomb is a, is an advanced technology partner. They've been working with us for quite some time and they have a, their solution is listed on the marketplace. Definitely something that we see a lot of demand with our customers, and they have many integrations, which, you know, we've seen is key to success. Being able to work seamlessly with the rest of the services inside of the AWS platform. And I know that they've done some, some great things with people who are trying to develop games on top of AWS things in that area as well. And so very important partner in the observa observability market that we have >>You back to you, let's kind of unpack the partnership, the significance that honeycomb ha is getting from being partners with an organization as potent and pivotal as AWS. >>Yeah, absolutely. I know that this predates me to some extent, but I know for a long time, AWS and honeycomb has really pushed the envelope together. And I think it's a beneficial relationship for both ends. There is kind of two ways of looking at it. On the one side, there is our own infrastructure. So honeycomb runs on AWS and actually one of our critical workloads that supports that fast query engine that I mentioned uses Lambda. And it does so in a pretty Orthodox way. So we've had a long standing conversation with the AWS team as far as drawing outside those lines and kind of figuring out how to use the technology in a way that works for us and hopefully will work for other customers of theirs as well. That also allows us to ask for early access for certain features when they become available. >>And then that way we can be sort of the Guinea pigs and try things out in a way that migrates our system and optimizes our own performance, but also allows again, other customers of AWS to follow in that path. And then the other side of that partnership is really supporting our customers who are both honeycomb users and AWS users, because it's, as you imagine, quite a big overlap, and there are certain ways in which we can allow our customers to more easily get their data from AWS to honeycomb. So for example, last year we built a tool based on the new Lambda extension capability that allowed our users who run their applications in Lambdas to get that tele, telemetry data out of their applications and into honeycomb and it land was win-win >>Excellent. So I'm hearing a lot of synergies from a technology perspective, you're sticking with you, and then Danielle will bring you in. Let's talk about how honeycomb supports D and I across its organization. And how is that synergistic with AWS's approach? Yeah, >>Yeah, absolutely. So I, I sort of alluded to that hesitancy to over index on the women led aspect of ourselves. But again, a lot of things are shifting, we're growing a lot. And so we are recognizing that we need to be more intentional with our DEI initiatives, and we also notice that we can do better and we should do better. And to that, and we're doing a few things differently that are pretty recent initiatives. We are partnering with organizations that help us target specific communities that are underrepresented in tech. Some examples would be after tech hu Latinas in tech among a number of others. And another initiative is DEI head start. That's something that is an internal practice that we started that includes reaching out to underrepresented applicants before any new job for honeycomb becomes live. So before we posted to LinkedIn, before it's even live on our job speech, and the idea there is to kind of balance our pipeline of applicants, which the hope is we'll lead to more diverse hires in the long term. >>That's a great focus there. Danielle, I know we've talked about this before, but for the audience, in terms of the context of the honeycomb partnership, the focus at AWS for D E and I is really significant, unpack that a little bit for us. >>Well, let me just bring it back to just how we think about it with the companies that we work with, but also in, in terms of, you know, what we want to be able to do, excuse me, it's very important for us to, you know, build products that reflect the customers that we have. And I think, you know, working with a company like honeycomb that is looking to differentiate in a space by, by bringing in, you know, the experiences of many different types of people I genuinely believe. And I'm sure Vera also believes that by having those diverse perspectives, that we're able to then build better products for our customers. And, you know, it's one of, one of our leadership principles is, is rooted in this. I write a lot, it asks for us to seek out diverse perspectives and you can't really do that if everybody kind of looks the same and thinks the same and has the same background. So I think that is where our de and I, you know, I thought process is rooted and, you know, companies like honeycomb that give customers choice and differentiate and help them to do what they need to do in their unique environments is super important. So >>The, the importance of thought diversity cannot be underscored enough. It's something that is, can be pivotal to organizations. And it's very nice to hear that that's so fundamental to both companies, Barry, I wanna go back to you for a second. You, I think you mentioned this, the DEI headstart program, that's an internal program at honeycomb. Can you shed a little bit of light on that? >>Yeah, that's right. And I actually am in the process of hiring a first engineer for my team. So I'm learning a lot of these things firsthand and how it works is we try to make sure to pre-load our pipeline of applicants for any new job opening we have with diverse candidates to the best of our abilities. And that can involve partnering with the organizations that I mentioned or reaching out to our internal network and make sure that we give those applicants a head start, so to speak. >>Excellent. I like that. Danielle, before we close, I wanna get a little bit of, of your background. We've got various background in tech, she's celebrating her 10th anniversary. Give me a, a short kind of description of the journey that you've navigated through being a female in technology. >>Yeah, thanks so much. I really appreciate being able to share this. So I started as a software engineer back actually in the late nineties during the, the first.com bubble and have, have spent quite a long time actually as an individual contributor, probably working in software engineering teams up through 2014 at a minimum until I joined AWS as a customer facing solutions architect. I do think spending a lot of time, hands on, definitely helped me with some of the imposter syndrome issues that folks suffer from not to say I don't at all, but it, it certainly helped with that. And I've been leading teens at AWS since 2015. So it's really been a great ride. And like I said, I'm very happy to see all of our engineering teams change as far as their composition. And I'm, I'm grateful to be part of it. >>It's pretty great to be able to witness that composition change for the better last question for each of you. And we're almost out of time and Danielle, I'm gonna stick with you. What's your advice or your recommendations for women who either are thinking about getting into tech or those who may be in tech, maybe they're in individual contributor positions and they're not sure if they should apply for that senior leadership position. What do you advise them to do? >>I mean, definitely for the individual contributors, tech tech is a great career direction and you will always be able to find women like you, you have to maybe just work a little bit harder to join, have community in that. But then as a leader, representation is very important and we can bring more women into tech by having more leaders. So that's my, you just have to take the lead, >>Take the lead, love it there. Same question for you. What's your advice and recommendations for those maybe future female leaders in tech? >>Yeah, absolutely. Danielle mentioned imposter syndrome and I think we all struggle with it from time to time, no matter how many years it's been. And I think for me, for me, the advice would be if you're starting out, don't be afraid to ask questions and don't be afraid to kind of show a, a little bit of ignorance because we've all been there. And I think it's on all of us to remember what it's like to not know how things work. And on the flip side of that, if you are a more senior IC or in a leadership role, also being able to model just saying, I don't know how this works and going and figuring out answers together because that was a really powerful shift for me early in my career is just to feel like I can say that I don't know something. >>I totally agree. I've been in that same situation where just ask the question because you I'm guaranteed. There's a million other people in the room that probably has the, have the same question. And because of imposter syndrome, don't wanna admit, I don't understand that. Can we back up, but I agree with you. I think that is one of the best things. Raise your hand, ask a question, ladies. Thank you so much for joining me talking about honeycomb and AWS, what you're doing together from a technology perspective and the focus efforts that each company has on D and I, we appreciate your insights. >>Thank you so much for having us great talking to you. >>My pleasure, likewise for my guests, I'm Lisa Martin. You're watching the AWS partner showcase women in check.

>>Hey everyone. Welcome to the AWS partner showcase season one, episode three women in tech. I'm your host. Lisa Martin. I've got two female rock stars joining me. Next Vera Reynolds is here engineering manager, telemetry at honeycomb, and one of our Cub alumni, Danielle GShock ISV PSA director a at AWS joins us as well. Ladies. It's great to have you talking about a very important topic today. >>Thanks for having us. Yeah, thanks for having me. Appreciate it. >>Of course, Vera, let's go ahead and start with you. Tell me about your background and tech. You're coming up on your 10th anniversary. Happy anniversary. >>Thank you. That's right. I can't believe it's been 10 years, but yeah, I started in tech in 2012. I was an engineer for most of that time. And just recently, as of March switched to engineering management here at honeycomb and, you know, throughout my career, I was very much interested in all the things, right. And it was a big FOMO as far as trying a few different companies and products. And I've done things from web development to mobile, to platforms. It would be apt to call me a generalist. And in the more recent years, I was sort of gravitating more towards developer tool space. And for me, that came in the form of cloud Foundry circle CI, and now honeycomb. I actually had my eye on honeycomb for a while before joining, I came across a blog post by charity majors. Who's one of our founders and she was actually talking about management and how to pursue that and whether or not it's right for your career. >>And so I was like, who is this person? I really like her found the company. They were pretty small at the time. So I was sort of keeping my eye on them. And then when the time came around for me to look again, I did a little bit more digging, found a lot of talks about the product. And on the one hand, they really spoke to me as the solution. They talked about developers owning their coding in production and answering questions about what is happening, what are your users seeing? And I felt that pain, I got what they were trying to do. And also on the other hand, every talk I saw at the time was from an amazing woman, which I haven't seen before. So I came across charity majors again, Christine yen, who our other founder, and then Liz Frank Jones, who our principal developer advocate. And that really sealed the deal for me as far as wanting to work here. >>Yeah. Honeycomb is interesting. This is a female founded company. You're two leaders. You mentioned that you like the technology, but you were also attracted because you saw females in the leadership position. Talk to me a little bit about what that's like working for a female led organization at honeycomb. >>Yeah. You know, historically we have tried not to over index on that because there was this maybe fear or rareness of it taking away from our legitimacy as an engineering organization, from our success as a company. But I'm seeing that rhetoric shift recently because we believe that with great responsibility with great power comes great responsibility. And we're trying to be more intentional as far as using that attribute of our company. So I would say that for me, it was a choice between a few offers, right. And that was a selling point, for sure, because again, I've never experienced it and I've really seen how much they walk that walk. Even me being here and me moving into management, I think were both ways in which they really put a lot of trust and support in me. And so I it's been a great ride. >>Excellent. Sounds like it. Before we bring Danielle in to talk about the partnership. I do wanna have you here, talk to the audience a little bit about honeycomb, what technology it's delivering and what are its differentiators. >>Yeah, absolutely. So honeycomb is an observability tool that enables engineers to answer questions about the code that runs in production. And we work with a number of various customers. Some of them are Vanguard, slack. Hello, fresh. Just to name a couple. If you're not familiar with observability tooling, it's akin to traditional application performance monitoring, but we believe that observability is succeeding APM because APM tools were built at the time of monoliths and they just weren't designed to help us answer questions about complex distributed systems that we work with today, where things can go wrong anywhere in that chain. And you can't predict what you're gonna need to ask ahead of time. So some of the ways that we are different is our ability to store and query really rich data, which we believe is the key to understanding those complex systems. What I mean by rich data is something that has a lot of attributes. >>So for example, when an error happens, knowing who it happened to, which user ID, which I don't know region, they were in, what, what, what they were doing at the time and what was happening at the rest of your system. And our ingest engine is really fast. You can do it in as little as three seconds and we call data like this. I said, kind of rich data, contextual data. We refer it as having high ity and high dimensionality, which are big words. But at the end of the day, what that means is we can store and we can query this data and we can do it really fast. And to give you an example of how that looks for our customers, let's say you have a developer team who are using comb to understand and observe their system. And they get a report that a user is experiencing a slowdown or something's wrong. >>They can go into honeycomb and figure out that this only happens to users who are using a particular language pack with their app. And they operated their app last week, that it only happens when they are trying to upload a file. And so it's this level of granularity and being able to zoom in and out under data that allows you to understand what's happening, especially when you have an incident going on, right. Or your really important high profile customer is telling you that something's wrong. And we can do that. Even if everything else in your other tools looks fine, right? All of your dashboards are okay. You're not actually getting paged on it, but your customers are telling you that something's wrong. And we believe that's where we shine in helping you there. >>Excellent. It sounds like that's where you really shine that real time visibility is so critical these days. Danielle, Danielle, wanna bring you into the conversation. Talk to us a little bit about the honeycomb partnership from the AWS lens. >>Yeah. So excuse me, observability is obviously a very important segment in the cloud space, very important to AWS, because a lot of all of our customers, as they build their systems distributed, they need to be able to see where, where things are happening in the complex systems that they're building. And so honeycomb is a, is an advanced technology partner. They've been working with us for quite some time and they have a, their solution is listed on the marketplace. Definitely something that we see a lot of demand with our customers, and they have many integrations, which, you know, we've seen is key to success. Being able to work seamlessly with the rest of the services inside of the AWS platform. And I know that they've done some, some great things with people who are trying to develop games on top of AWS things in that area as well. And so very important partner in the observa observability market that we have. >>Vera a back to you, let's kind of unpack the partnership, the significance that honeycomb ha is getting from being partners with an organization as potent and pivotal as AWS. >>Yeah, absolutely. I Don know that this Predates me to some extent, but I Don know for a long time, AWS and honeycomb has really pushed the envelope together. And I think it's a beneficial relationship for both ends. There's kind of two ways of looking at it. On the one side, there is our own infrastructure. So honeycomb runs on AWS and actually one of our critical workloads that supports that fast query engine that I mentioned uses Lambda. And it does also in a pretty unorthodox way. So we've had a long standing conversation with the AWS team as far as drawing outside those lines and kind of figuring out how to use the technology in a way that works for us and hopefully will work for other customers of theirs as well. That also allows us to ask for early access for certain features when they become available. >>And then that way we can be sort of the Guinea pigs and try things out in a way that migrates our system and optimizes our own performance, but also allows again, other customers of AWS to follow in that path. And then the other side of that partnership is really supporting our customers who are both honeycomb users and AWS users, because it's, as you imagine, quite a big overlap, and there are certain ways in which we can allow our customers to more easily get their data from AWS to honeycomb. So for example, last year, we built a tool based on the new Lambda extension capability that allowed our users who run their applications in Lambdas to get that tele telemetry data out of their applications and into honeycomb and demand was win-win >>Excellent. So I'm hearing a lot of synergies from a technology perspective, you're sticking with you, and then Danielle will bring you in. Let's talk about how honeycomb supports D E and I across its organization. And how is that synergistic with AWS's approach Vera? >>Yeah, absolutely. So I sort of alluded to that hesitancy to over index on the women led aspect of ourselves. But again, a lot of things are shifting, we're growing a lot. And so we are recognizing that we need to be more intentional with our DEI initiatives, and we also notice that we can do better and we should do better. And to that end, we're doing a few things differently that are pretty recent initiatives. We are partnering with organizations that help us target specific communities that are underrepresented in tech. Some examples would be Africa, tech hu Latinas in tech among a number of others. And another initiative is DEI head start. That's something that is an internal practice that we started that includes reaching out to underrepresented applicants before any new job for honeycomb becomes live. So before we posted to LinkedIn, before it's even live on our job speech, and the idea there is to kind of balance our pipeline of applicants, which the hope is will lead to more diverse hires in the long term. >>That's a great focus there. Danielle, I know we've talked about this before, but for the audience, in terms of the context of the honeycomb partnership, the focus at AWS for D E and I is really significant, unpack that a little bit for us. >>Well, let me just bring it back to just how we think about it with the companies that we work with, but also in, in terms of, you know, what we want to be able to do, excuse me, it's very important for us to, you know, build products that reflect the customers that we have. And I think, you know, working with a company like honeycomb that is looking to differentiate in a space by, by bringing in, you know, the experiences of many different types of people I genuinely believe. And I'm sure Vera also believes that by having those diverse perspectives, that we're able to then build better products for our customers. And, you know, it's one of, one of our leadership principles is, is rooted in this. I write a lot, it asks for us to seek out diverse perspectives and you can't really do that if everybody kind of looks the same and thinks the same and has the same background. So I think that is where our de and I, you know, I thought process is rooted and, you know, companies like honeycomb that give customers choice and differentiate and help them to do what they need to do in their unique environments is super important. So >>The, the importance of thought diversity cannot be underscored enough. It's something that is, can be pivotal to organizations. And it's very nice to hear that that's so fundamental to both companies, Barry, I wanna go back to you for a second. You, I think you mentioned this, the DEI head start program, that's an internal program at honeycomb. Can you shed a little bit of light on that? >>Yeah, that's right. And I actually am in the process of hiring a first engineer for my team. So I'm learning a lot of these things firsthand and how it works is we try to make sure to pre-load our pipeline of applicants for any new job opening we have with diverse candidates to the best of our abilities. And that can involve partnering with the organizations that I mentioned or reaching out to our internal network and make sure that we give those applicants a head start, so to speak. >>Excellent. I like that. Danielle, before we close, I wanna get a little bit of, of your background. We've got various background in tech, she's celebrating her 10th anniversary. Give me a, a short kind of description of the journey that you've navigated through being a female in technology. >>Yeah, thanks so much. I really appreciate being able to share this. So I started as a software engineer back actually in the late nineties during the, the first.com bubble and have, have spent quite a long time actually as an individual contributor, probably working in software engineering teams up through 2014 at a minimum until I joined AWS as a customer facing solutions architect. I do think spending a lot of time, hands on, definitely helped me with some of the imposter syndrome issues that folks suffer from not to say I don't at all, but it, it certainly helped with that. And I've been leading teen at AWS since 2015. So it's really been a great ride. And like I said, I'm very happy to see all of our engineering teams change as far as their composition. And I'm, I'm grateful to be part of it. >>It's pretty great to be able to witness that composition change for the better last question for each of you. And we're almost out of time and Danielle, I'm gonna stick with you. What's your advice, your recommendations for women who either are thinking about getting into tech or those who may be in tech, maybe they're in individual contributor positions, and they're not sure if they should apply for that senior leadership position. What do you advise them to do? >>I mean, definitely for the individual contributors, tech tech is a great career direction and you will always be able to find women like you, you have to maybe just work a little bit harder to join, have community in that. But then as a leader, representation is very important and we can bring more women into tech by having more leaders. So that's my, you just have to take the lead, >>Take the lead. Love that various same question for you. What's your advice and recommendations for those maybe future female leaders in tech? >>Yeah, absolutely. Danielle mentioned imposter syndrome and I think we all struggle with it from time to time, no matter how many years it's been. And I think for me, for me, the advice would be if you're starting out, don't be afraid to ask questions and don't be afraid to kind of show a bit, a little bit of ignorance because we've all been there. And I think it's on all of us to remember what it's like to not know how things work. And on the flip side of that, if you are a more senior IC or in a leadership role, also being able to model just saying, I don't know how this works and going and figuring out answers together because that was a really powerful shift for me early in my career is just to feel like I can say that I don't know something. >>I totally agree. I've been in that same situation where just ask the question because you I'm guaranteed. There's a million outta people in the room that probably has the, have the same question and because an imposter syndrome don't wanna admit, I don't understand that. Can we back up, but I agree with you. I think that is one of the best things. Raise your hand and ask a question, ladies. Thank you so much for joining me talking about honeycomb and AWS, what you're doing together from a technology perspective and the focus efforts that each company has on D E and I, we appreciate your insights. >>Thank you so much for having us talking to >>My pleasure. Likewise, for my guests, I'm Lisa Martin. You're watching the AWS partner showcase women in.