(light music) (airy white noise rumbling) >> Hey everyone, welcome back to Las Vegas. It's theCUBE. We're here, day four of our coverage of AWS re:Invent 22. There's been about, we've heard, north of 55,000 folks here in person. We're seeing only a fraction of that but it's packed in the expo center. We're at the Venetian Expo, Lisa Martin, Dave Vellante. Dave, we've had such great conversations as we always do on theCUBE. With the AWS ecosystem, we're going to be talking with another partner on that ecosystem and what they're doing to innovate together next. >> Well, we know security is the number one topic on IT practitioners, mine, CIOs, CISOs. We also know that they don't have the bench strength, that's why they look to manage service providers, manage service security providers. It's a growing topic, we've talked about it. We talked about it at re:Inforce earlier this year. I think it was July, actually, and August, believe it or not, not everybody was at the Cape. It was pretty well attended conference and that's their security focus conference, exclusive on security. But there's a lot of security here too. >> Lot of security, we're going to be talking about that next. We have two guests from Capgemini joining us. Mike Wasielewski, the head of cloud security, and NextGen secure architectures, welcome Mike. Anne Saunders also joins us, the Director of Cybersecurity Technology Partnerships at Capgemini, welcome Anne. >> Thank you. >> Dave: Hey guys. >> So, day four of the show, how you feeling? >> Anne: Pretty good. >> Mike: It's a long show. >> It is a long, and it's still jamming in here. Normally on the last day, it dwindles down. Not here. >> No, the foot traffic around the booth and around the totality of this expo floor has been amazing, I think. >> It really has. Anne, I want to start with you. Capgemini making some moves in the waves in the cloud and cloud security spaces. Talk to us about what Cap's got going on there. >> Well, we actually have a variety of things going on. Very much partner driven. The SOC Essentials offering that Mike's going to talk about shortly is the kind of the starter offer where we're going to build from and build out from. SOC Essentials is definitely critical for establishing that foundation. A lot of good stuff coming along with partners. Since I manage the partners, I'm kind of keen on who we get involved with and how we work with them to build out value and focus on our overall cloud security strategy. Mike, you want to talk about SOC Essentials? >> Yeah, well, no, I mean, I think at Capgemini, we really say cybersecurity is part of our DNA and so as we look at what we do in the cloud, you'll find that security has always been an underpinning to a lot of what we deliver, whether it's on the DevSecOps services, migration services, stuff like that. But what we're really trying to do is be intentional about how we approach the security piece of the cloud in different ways, right? Traditional infrastructure, you mentioned the totality of security vendors here and at re:Inforce. We're really seeing that you have to approach it differently. So we're bringing together the right partners. We're using what's part of our DNA to really be able to drive the next generation of security inside those clouds for our clients and customers. So as Anne was talking about, we have a new service called the Capgemini Cloud SOC Essentials, and we've really brought our partners to bear, in this case Trend Micro, really bringing a lot of their intelligence and building off of what they do so that we can help customers. Services can be pretty expensive, right, when you go for the high end, or if you have to try to run one yourself, there's a lot of time, I think you mentioned earlier, right, the people's benches. It's really hard to have a really good cybersecurity people in those smaller businesses. So what we're trying to do is we're really trying to help companies, whether you're the really big buyers of the world or some of the smaller ones, right? We want to be able to give you the visibility and ability to deliver to your customers securely. So that's how we're approaching security now and we're cloud SOC Essentials, the new thing that we're announcing while we were here is really driving out of. >> When I came out of re:Invent, when you do these events, you get this Kool-Aid injection and after a while you're like hm, what did I learn? And one of the things that struck me in talking to people is you've got the shared responsibility model that the cloud has sort of created and I know there's complexities across cloud but let's just keep it at cloud generically for a moment. And then you've got the CISO, the AppDev, AppSecDev group is being asked to do a lot. They're kind of being dragged into security that's really not their wheelhouse and then you've got audit which is like the last line of defense. And so one of the things that struck me at re:Inforce is like, okay, Amazon, great job for their portion of the shared responsibility model but I didn't hear a lot in terms of making the CISO's life easier and I'm guessing that's where you guys come in. I wonder if you could talk about that trend, that conceptual layers that I just laid out and where you guys fit. >> Mike: Sure, so I think first and foremost, I always go back to a quote from, I think it's attributed to Peter Drucker, whether that's right or wrong, who knows? But culture eats strategy for breakfast, right? And I think what we've seen in our conversations with whether you're talking to the CISO, the application team, the AppDev team, wherever throughout the organization, we really see that culture is what's going to drive success or failure of security in the org, and so what we do is we really do bring that totality of perspective. We're not just cloud, not just security, not just AppDev. We can really bring across the totality of the Capgemini estate. So that when we go, and you're right, a CISO says, I'm having a hard time getting the app people to deliver what I need. If you just come from a security perspective, you're right, that's what's going to happen. So what we try to do is so, we've got a great DevSecOps service, for example in the cloud where we do that. We bring all the perspectives together, how do we align KPIs? That's a big problem, I think, for what you're seeing, making CISO's lives easier, is about making sure that the app team KPIs are aligned with the CISO's but also the CISO's KPIs are aligned with the app teams. And by doing that, we have had really great success in a number of organizations by giving them the tools then and the people on our side to be able to make those alignments at the business level, to drive the right business outcome, to drive the right security outcome, the right application outcome. That's where I think we've really come to play. >> Absolutely, and I will say from a partnering perspective, what's key in supporting that strategy is we will learn from our partners, we lean on our partners to understand what the trends they're seeing and where they're having an impact with regards to supporting the CISO and supporting the overall security strategy within a company. I mean, they're on the cutting edge. We do a lot to track their technology roadmaps. We do a lot to track how they build their buyer personas and what issues they're dealing with and what issues they're prepared to deal with regards to where they're investing and who's investing in them. A lot of strategy around which partner to bring in and support, how we're going to address the challenges, the CISO and the IT teams are having to kind of support that overall. Security is a part of everything, DNA kind of strategy. >> Yeah, do you have a favorite example, Anne, of a partner that came in with Capgemini, helped a customer really be able to do what Capgemini is doing and that is, have cybersecurity be actually part of their DNA when there's so many challenges, the skills gap. Any favorite example that really you think articulates how you're able to enable organizations to achieve just that? >> Anne: Well, actually the SOC Essentials offering that we're rolling out is a prime example of that. I mean, we work very, very closely with Trend on all fronts with regards to developing it. It's one of those completely collaborative from day one to going to the customer and that it's almost that seamless connectivity and just partnering at such a strategic level is a great example of how it's done right, and when it's done right, how successful it can be. >> Dave: Why Trend Micro? Because I mean, I'm sure you've seen, I think that's Optiv, has the eye test with all the tools and you talk to CISOs, they're like really trying to consolidate those tools. So I presume there's a portfolio play there, but tell us, tell the audience a little bit more about why Trend Micro and I mean your branding with them, why those guys? >> Well, it goes towards the technology, of course, and all the development they've done and their position within AWS and how they address assuring security for our clients who are moving onto and running their estates on AWS. There's such a long heritage with regards to their technology platform and what they've developed, that deep experience, that kind of the strength of the technology because of the longevity they've had and where they sit within their domain. I try to call partners out by their domain and their area of expertise is part of the reason, I mean. >> Yeah, I think another big part of it is Gartner is expecting, I think they published this out in the next three years, we expect to see another consolidation both inside of the enterprises as well as, I look back a couple years, when Palo Alto went on a very nice spending spree, right? And put together a lot of really great companies that built their Prisma platform. So what I think one of the reasons we picked Trend in this particular case is as we look forward for our customers and our clients, not just having point solutions, right? This isn't just about endpoint protection, this isn't just about security posture management. This is really who can take the totality of the customer's problems and deliver on the right outcomes from a single platform, and so when we look at companies like Trend, like Palo, some of the bigger partners for us, that's where we try to focus. They're definitely best in breed and we bring those to our customers too for certain things. But as we look to the future, I think really finding those partners that are going to be able to solve a swath of problems at the right price point for their customers, that is where I think we see the industry moving. >> Dave: And maybe be around as an independent company. Was that a factor as well? I mean, you see Thoma Bravo buying up all his hiring companies and right, so, and maybe they're trying to create something that could be competitive, but you're saying Trend Micros there, so. >> Well I think as Anne mentioned, the 30 year heritage, I think, of Trend Micro really driving this and I've done work with them in various past things. There's also a big part of just the people you like, the people that are good to work with, that are really trying to be customer obsessed, going back right, at an AWS event, the ones that get the cloud tend to be able to follow those Amazon LPs as well, right, just kind of naturally, and so I think when you look at the Trend Micros of the world, that's where that kind of cloud native piece comes out and I like working with that. >> In this environment, the macro environment, lets talk a bit, earning season, it's really mixed. I mean you're seeing some really good earnings, some mixed earnings, some good earnings with cautious guidance. So nobody really (indistinct), and it was for a period time there was a thinking that security was non-discretionary and it's clearly non-discretionary, but the CISO, she or he, doesn't have unlimited budgets, right? So what are you seeing in terms of how are customers dealing with this challenging macro environment? Is it through tools consolidation? Is that a play that's going on? What are you seeing in the customer base? >> Anne: I see ways, and we're working through this right now where we're actually weaving cybersecurity in at the very beginning of how we're designing offers across our entire offer portfolio, not just the cybersecurity business. So taking that approach in the long run will help contain costs and our hope, and we're already seeing it, is it's actually helping change the perception that security's that cost center and that final obstacle you have to get over and it's going to throw your margins off and all that sort of stuff. >> Dave: I like that, its at least is like a security cover charge. You're not getting in unless we do the security thing. >> Exactly, a security cover charge, that's what you should call it. >> Yeah. >> Like it. >> Another piece though, you mentioned earlier about making CISO's life easier, right? And I think, as Anne did a really absolutely true about building it in, not to the security stack but application developers, they want visibility they want observability, they want to do it right. They want CI/CD pipeline that can give them confidence in their security. So should the CISO have a budget issue, right? And they can't necessarily afford, but the application team as they're looking at what products they want to purchase, can I get a SaaS or a DaaS, right? The static or dynamic application security testing in my product up front and if the app team buys into that methodology, the CISO convinces them, yes, this is important. Now I've got two budgets to pull from, and in the end I end up with a cheaper, a lower cost of a service. So I think that's another way that we see with like DevSecOps and a few other services, that building in on day one that you mentioned. >> Lisa: Yeah. >> Getting both teams involved. >> Dave: That's interesting, Mike, because that's the alignment that you were talking about earlier in the KPIs and you're not a tech vendor saying, buy my product, you guys have deep consultancy backgrounds. >> Anne: And the customer appreciates that. >> Yeah. >> Anne: They see us as looking out for their best interest when we're trying to support them and help them and bringing it to the table at the very beginning as something that is there and we're conscientious of, just helps them in the long run and I think, they're seeing that, they appreciate that. >> Dave: Yeah, you can bring best practice around measurements, alignment, business process, stuff like that. Maybe even some industry expertise which you're not typically going to get from a product company. >> Well, one thing you just mentioned that I love talking about with Capgemini is the industry expertise, right? So when you look at systems integrators, there are a lot of really, really good ones. To say otherwise would be foolish. But Capgemini with our acquisition of Altran, a couple years ago, I think think it was, right? How many other GSIs or SIs are actually building silicon for IoT chips? So IoT's huge right now, the intelligent industry moving forward is going to drive a lot of those business outcomes that people are looking for. Who else can say we've built an autonomous vehicle, Capgemini can. Who can say that we've built the IoT devices from the ground up? We know not just how to integrate them into AWS, into the IoT services in the cloud, but to build and have that secure development for the firmware and all and that's where I think our customers really look to us as being those industry experts and being able to bring that totality of our business to bear for what they need to do to achieve their objectives to deliver to their customer. >> Dave: That's interesting. I mean, using silicon as a differentiator to drive a lot of business outcomes and security. >> Mike: Absolutely. >> I mean you see what Amazon's doing in silicon, Look at Apple. Look at what Tesla's doing with silicon. >> Dave: That's where you're seeing a lot of people start focusing 'cause not everybody can do it. >> Yeah. >> It's hard. >> Right. >> It's hard. >> And you'll see some interesting announcements from us and some interesting information and trends that we'll be driving because of where we're placed and what we have going around security and intelligent industry overall. We have a lot of investment going on there right now and again, from the partner perspective, it's an ecosystem of key partners that collectively work together to kind of create a seamless security posture for an intelligent industry initiative with these companies that we're working with. >> So last question, probably toughest question, and that's to give us a 30 second like elevator pitch or a billboard and I'm going to ask you, Anne, specifically about the SOC Essentials program powered by Trend Micro. Why should organizations look to that? >> Organizations should move to it or work with us on it because we have the expertise, we have the width and breadth to help them fill the gaps, be those eyes, be that team, the police behind it all, so to speak, and be the team behind them to make sure we're giving them the right information they need to actually act effectively on maintaining their security posture. >> Nice and then last question for you, Mike is that billboard, why should organizations in any industry work with Capgemini to help become an intelligent industrial player. >> Mike: Sure, so if you look at our board up top, right, we've got our tagline that says, "get the future you want." And that's what you're going to get with Capgemini. It's not just about selling a service, it's not just about what partners' right in reselling. We don't want that to be why you come to us. You, as a company have a vision and we will help you achieve that vision in a way that nobody else can because of our depth, because of the breadth that we have that's very hard to replicate. >> Awesome guys, that was great answers. Mike, Anne, thank you for spending some time with Dave and me on the program today talking about what's new with Capgemini. We'll be following this space. >> All right, thank you very much. >> For our guests and for Dave Vellante, I'm Lisa Martin, you're watching theCUBE, the leader in live enterprise and emerging tech coverage. (gentle light music)

hello I'm John Furrier with thecube and welcome to this special presentation of the cube and Horizon 3.ai they're announcing a global partner first approach expanding their successful pen testing product Net Zero you're going to hear from leading experts in their staff their CEO positioning themselves for a successful Channel distribution expansion internationally in Europe Middle East Africa and Asia Pacific in this Cube special presentation you'll hear about the expansion the expanse partner program giving Partners a unique opportunity to offer Net Zero to their customers Innovation and Pen testing is going International with Horizon 3.ai enjoy the program [Music] welcome back everyone to the cube and Horizon 3.ai special presentation I'm John Furrier host of thecube we're here with Jennifer Lee head of Channel sales at Horizon 3.ai Jennifer welcome to the cube thanks for coming on great well thank you for having me so big news around Horizon 3.aa driving Channel first commitment you guys are expanding the channel partner program to include all kinds of new rewards incentives training programs help educate you know Partners really drive more recurring Revenue certainly cloud and Cloud scale has done that you got a great product that fits into that kind of Channel model great Services you can wrap around it good stuff so let's get into it what are you guys doing what are what are you guys doing with this news why is this so important yeah for sure so um yeah we like you said we recently expanded our Channel partner program um the driving force behind it was really just um to align our like you said our Channel first commitment um and creating awareness around the importance of our partner ecosystems um so that's it's really how we go to market is is through the channel and a great International Focus I've talked with the CEO so you know about the solution and he broke down all the action on why it's important on the product side but why now on the go to market change what's the what's the why behind this big this news on the channel yeah for sure so um we are doing this now really to align our business strategy which is built on the concept of enabling our partners to create a high value high margin business on top of our platform and so um we offer a solution called node zero it provides autonomous pen testing as a service and it allows organizations to continuously verify their security posture um so we our company vision we have this tagline that states that our pen testing enables organizations to see themselves Through The Eyes of an attacker and um we use the like the attacker's perspective to identify exploitable weaknesses and vulnerabilities so we created this partner program from a perspective of the partner so the partner's perspective and we've built It Through The Eyes of our partner right so we're prioritizing really what the partner is looking for and uh will ensure like Mutual success for us yeah the partners always want to get in front of the customers and bring new stuff to them pen tests have traditionally been really expensive uh and so bringing it down in one to a service level that's one affordable and has flexibility to it allows a lot of capability so I imagine people getting excited by it so I have to ask you about the program What specifically are you guys doing can you share any details around what it means for the partners what they get what's in it for them can you just break down some of the mechanics and mechanisms or or details yeah yep um you know we're really looking to create business alignment um and like I said establish Mutual success with our partners so we've got two um two key elements that we were really focused on um that we bring to the partners so the opportunity the profit margin expansion is one of them and um a way for our partners to really differentiate themselves and stay relevant in the market so um we've restructured our discount model really um you know highlighting profitability and maximizing profitability and uh this includes our deal registration we've we've created deal registration program we've increased discount for partners who take part in our partner certification uh trainings and we've we have some other partner incentives uh that we we've created that that's going to help out there we've we put this all so we've recently Gone live with our partner portal um it's a Consolidated experience for our partners where they can access our our sales tools and we really view our partners as an extension of our sales and Technical teams and so we've extended all of our our training material that we use internally we've made it available to our partners through our partner portal um we've um I'm trying I'm thinking now back what else is in that partner portal here we've got our partner certification information so all the content that's delivered during that training can be found in the portal we've got deal registration uh um co-branded marketing materials pipeline management and so um this this portal gives our partners a One-Stop place to to go to find all that information um and then just really quickly on the second part of that that I mentioned is our technology really is um really disruptive to the market so you know like you said autonomous pen testing it's um it's still it's well it's still still relatively new topic uh for security practitioners and um it's proven to be really disruptive so um that on top of um just well recently we found an article that um that mentioned by markets and markets that reports that the global pen testing markets really expanding and so it's expected to grow to like 2.7 billion um by 2027. so the Market's there right the Market's expanding it's growing and so for our partners it's just really allows them to grow their revenue um across their customer base expand their customer base and offering this High profit margin while you know getting in early to Market on this just disruptive technology big Market a lot of opportunities to make some money people love to put more margin on on those deals especially when you can bring a great solution that everyone knows is hard to do so I think that's going to provide a lot of value is there is there a type of partner that you guys see emerging or you aligning with you mentioned the alignment with the partners I can see how that the training and the incentives are all there sounds like it's all going well is there a type of partner that's resonating the most or is there categories of partners that can take advantage of this yeah absolutely so we work with all different kinds of Partners we work with our traditional resale Partners um we've worked we're working with systems integrators we have a really strong MSP mssp program um we've got Consulting partners and the Consulting Partners especially with the ones that offer pen test services so we they use us as a as we act as a force multiplier just really offering them profit margin expansion um opportunity there we've got some technology partner partners that we really work with for co-cell opportunities and then we've got our Cloud Partners um you'd mentioned that earlier and so we are in AWS Marketplace so our ccpo partners we're part of the ISP accelerate program um so we we're doing a lot there with our Cloud partners and um of course we uh we go to market with uh distribution Partners as well gotta love the opportunity for more margin expansion every kind of partner wants to put more gross profit on their deals is there a certification involved I have to ask is there like do you get do people get certified or is it just you get trained is it self-paced training is it in person how are you guys doing the whole training certification thing because is that is that a requirement yeah absolutely so we do offer a certification program and um it's been very popular this includes a a seller's portion and an operator portion and and so um this is at no cost to our partners and um we operate both virtually it's it's law it's virtually but live it's not self-paced and we also have in person um you know sessions as well and we also can customize these to any partners that have a large group of people and we can just we can do one in person or virtual just specifically for that partner well any kind of incentive opportunities and marketing opportunities everyone loves to get the uh get the deals just kind of rolling in leads from what we can see if our early reporting this looks like a hot product price wise service level wise what incentive do you guys thinking about and and Joint marketing you mentioned co-sell earlier in pipeline so I was kind of kind of honing in on that piece sure and yes and then to follow along with our partner certification program we do incentivize our partners there if they have a certain number certified their discount increases so that's part of it we have our deal registration program that increases discount as well um and then we do have some um some partner incentives that are wrapped around meeting setting and um moving moving opportunities along to uh proof of value gotta love the education driving value I have to ask you so you've been around the industry you've seen the channel relationships out there you're seeing companies old school new school you know uh Horizon 3.ai is kind of like that new school very cloud specific a lot of Leverage with we mentioned AWS and all the clouds um why is the company so hot right now why did you join them and what's why are people attracted to this company what's the what's the attraction what's the vibe what do you what do you see and what what do you use what did you see in in this company well this is just you know like I said it's very disruptive um it's really in high demand right now and um and and just because because it's new to Market and uh a newer technology so we are we can collaborate with a manual pen tester um we can you know we can allow our customers to run their pen test um with with no specialty teams and um and and then so we and like you know like I said we can allow our partners can actually build businesses profitable businesses so we can they can use our product to increase their services revenue and um and build their business model you know around around our services what's interesting about the pen test thing is that it's very expensive and time consuming the people who do them are very talented people that could be working on really bigger things in the in absolutely customers so bringing this into the channel allows them if you look at the price Delta between a pen test and then what you guys are offering I mean that's a huge margin Gap between street price of say today's pen test and what you guys offer when you show people that they follow do they say too good to be true I mean what are some of the things that people say when you kind of show them that are they like scratch their head like come on what's the what's the catch here right so the cost savings is a huge is huge for us um and then also you know like I said working as a force multiplier with a pen testing company that offers the services and so they can they can do their their annual manual pen tests that may be required around compliance regulations and then we can we can act as the continuous verification of their security um um you know that that they can run um weekly and so it's just um you know it's just an addition to to what they're offering already and an expansion so Jennifer thanks for coming on thecube really appreciate you uh coming on sharing the insights on the channel uh what's next what can we expect from the channel group what are you thinking what's going on right so we're really looking to expand our our Channel um footprint and um very strategically uh we've got um we've got some big plans um for for Horizon 3.ai awesome well thanks for coming on really appreciate it you're watching thecube the leader in high tech Enterprise coverage [Music] [Music] hello and welcome to the Cube's special presentation with Horizon 3.ai with Raina Richter vice president of emea Europe Middle East and Africa and Asia Pacific APAC for Horizon 3 today welcome to this special Cube presentation thanks for joining us thank you for the invitation so Horizon 3 a guy driving Global expansion big international news with a partner first approach you guys are expanding internationally let's get into it you guys are driving this new expanse partner program to new heights tell us about it what are you seeing in the momentum why the expansion what's all the news about well I would say uh yeah in in international we have I would say a similar similar situation like in the US um there is a global shortage of well-educated penetration testers on the one hand side on the other side um we have a raising demand of uh network and infrastructure security and with our approach of an uh autonomous penetration testing I I believe we are totally on top of the game um especially as we have also now uh starting with an international instance that means for example if a customer in Europe is using uh our service node zero he will be connected to a node zero instance which is located inside the European Union and therefore he has doesn't have to worry about the conflict between the European the gdpr regulations versus the US Cloud act and I would say there we have a total good package for our partners that they can provide differentiators to their customers you know we've had great conversations here on thecube with the CEO and the founder of the company around the leverage of the cloud and how successful that's been for the company and honestly I can just Connect the Dots here but I'd like you to weigh in more on how that translates into the go to market here because you got great Cloud scale with with the security product you guys are having success with great leverage there I've seen a lot of success there what's the momentum on the channel partner program internationally why is it so important to you is it just the regional segmentation is it the economics why the momentum well there are it's there are multiple issues first of all there is a raising demand in penetration testing um and don't forget that uh in international we have a much higher level in number a number or percentage in SMB and mid-market customers so these customers typically most of them even didn't have a pen test done once a year so for them pen testing was just too expensive now with our offering together with our partners we can provide different uh ways how customers could get an autonomous pen testing done more than once a year with even lower costs than they had with with a traditional manual paint test so and that is because we have our uh Consulting plus package which is for typically pain testers they can go out and can do a much faster much quicker and their pain test at many customers once in after each other so they can do more pain tests on a lower more attractive price on the other side there are others what even the same ones who are providing um node zero as an mssp service so they can go after s p customers saying okay well you only have a couple of hundred uh IP addresses no worries we have the perfect package for you and then you have let's say the mid Market let's say the thousands and more employees then they might even have an annual subscription very traditional but for all of them it's all the same the customer or the service provider doesn't need a piece of Hardware they only need to install a small piece of a Docker container and that's it and that makes it so so smooth to go in and say okay Mr customer we just put in this this virtual attacker into your network and that's it and and all the rest is done and within within three clicks they are they can act like a pen tester with 20 years of experience and that's going to be very Channel friendly and partner friendly I can almost imagine so I have to ask you and thank you for calling the break calling out that breakdown and and segmentation that was good that was very helpful for me to understand but I want to follow up if you don't mind um what type of partners are you seeing the most traction with and why well I would say at the beginning typically you have the the innovators the early adapters typically Boutique size of Partners they start because they they are always looking for Innovation and those are the ones you they start in the beginning so we have a wide range of Partners having mostly even um managed by the owner of the company so uh they immediately understand okay there is the value and they can change their offering they're changing their offering in terms of penetration testing because they can do more pen tests and they can then add other ones or we have those ones who offer 10 tests services but they did not have their own pen testers so they had to go out on the open market and Source paint testing experts um to get the pen test at a particular customer done and now with node zero they're totally independent they can't go out and say okay Mr customer here's the here's the service that's it we turn it on and within an hour you're up and running totally yeah and those pen tests are usually expensive and hard to do now it's right in line with the sales delivery pretty interesting for a partner absolutely but on the other hand side we are not killing the pain testers business we do something we're providing with no tiers I would call something like the foundation work the foundational work of having an an ongoing penetration testing of the infrastructure the operating system and the pen testers by themselves they can concentrate in the future on things like application pen testing for example so those Services which we we're not touching so we're not killing the paint tester Market we're just taking away the ongoing um let's say foundation work call it that way yeah yeah that was one of my questions I was going to ask is there's a lot of interest in this autonomous pen testing one because it's expensive to do because those skills are required are in need and they're expensive so you kind of cover the entry level and the blockers that are in there I've seen people say to me this pen test becomes a blocker for getting things done so there's been a lot of interest in the autonomous pen testing and for organizations to have that posture and it's an overseas issue too because now you have that that ongoing thing so can you explain that particular benefit for an organization to have that continuously verifying an organization's posture yep certainly so I would say um typically you are you you have to do your patches you have to bring in new versions of operating systems of different Services of uh um operating systems of some components and and they are always bringing new vulnerabilities the difference here is that with node zero we are telling the customer or the partner package we're telling them which are the executable vulnerabilities because previously they might have had um a vulnerability scanner so this vulnerability scanner brought up hundreds or even thousands of cves but didn't say anything about which of them are vulnerable really executable and then you need an expert digging in one cve after the other finding out is it is it really executable yes or no and that is where you need highly paid experts which we have a shortage so with notes here now we can say okay we tell you exactly which ones are the ones you should work on because those are the ones which are executable we rank them accordingly to the risk level how easily they can be used and by a sudden and then the good thing is convert it or indifference to the traditional penetration test they don't have to wait for a year for the next pain test to find out if the fixing was effective they weren't just the next scan and say Yes closed vulnerability is gone the time is really valuable and if you're doing any devops Cloud native you're always pushing new things so pen test ongoing pen testing is actually a benefit just in general as a kind of hygiene so really really interesting solution really bring that global scale is going to be a new new coverage area for us for sure I have to ask you if you don't mind answering what particular region are you focused on or plan to Target for this next phase of growth well at this moment we are concentrating on the countries inside the European Union Plus the United Kingdom um but we are and they are of course logically I'm based into Frankfurt area that means we cover more or less the countries just around so it's like the total dark region Germany Switzerland Austria plus the Netherlands but we also already have Partners in the nordics like in Finland or in Sweden um so it's it's it it's rapidly we have Partners already in the UK and it's rapidly growing so I'm for example we are now starting with some activities in Singapore um um and also in the in the Middle East area um very important we uh depending on let's say the the way how to do business currently we try to concentrate on those countries where we can have um let's say um at least English as an accepted business language great is there any particular region you're having the most success with right now is it sounds like European Union's um kind of first wave what's them yes that's the first definitely that's the first wave and now we're also getting the uh the European instance up and running it's clearly our commitment also to the market saying okay we know there are certain dedicated uh requirements and we take care of this and and we're just launching it we're building up this one uh the instance um in the AWS uh service center here in Frankfurt also with some dedicated Hardware internet in a data center in Frankfurt where we have with the date six by the way uh the highest internet interconnection bandwidth on the planet so we have very short latency to wherever you are on on the globe that's a great that's a great call outfit benefit too I was going to ask that what are some of the benefits your partners are seeing in emea and Asia Pacific well I would say um the the benefits is for them it's clearly they can they can uh talk with customers and can offer customers penetration testing which they before and even didn't think about because it penetrates penetration testing in a traditional way was simply too expensive for them too complex the preparation time was too long um they didn't have even have the capacity uh to um to support a pain an external pain tester now with this service you can go in and say even if they Mr customer we can do a test with you in a couple of minutes within we have installed the docker container within 10 minutes we have the pen test started that's it and then we just wait and and I would say that is we'll we are we are seeing so many aha moments then now because on the partner side when they see node zero the first time working it's like this wow that is great and then they work out to customers and and show it to their typically at the beginning mostly the friendly customers like wow that's great I need that and and I would say um the feedback from the partners is that is a service where I do not have to evangelize the customer everybody understands penetration testing I don't have to say describe what it is they understand the customer understanding immediately yes penetration testing good about that I know I should do it but uh too complex too expensive now with the name is for example as an mssp service provided from one of our partners but it's getting easy yeah it's great and it's great great benefit there I mean I gotta say I'm a huge fan of what you guys are doing I like this continuous automation that's a major benefit to anyone doing devops or any kind of modern application development this is just a godsend for them this is really good and like you said the pen testers that are doing it they were kind of coming down from their expertise to kind of do things that should have been automated they get to focus on the bigger ticket items that's a really big point so we free them we free the pain testers for the higher level elements of the penetration testing segment and that is typically the application testing which is currently far away from being automated yeah and that's where the most critical workloads are and I think this is the nice balance congratulations on the international expansion of the program and thanks for coming on this special presentation really I really appreciate it thank you you're welcome okay this is thecube special presentation you know check out pen test automation International expansion Horizon 3 dot AI uh really Innovative solution in our next segment Chris Hill sector head for strategic accounts will discuss the power of Horizon 3.ai and Splunk in action you're watching the cube the leader in high tech Enterprise coverage foreign [Music] [Music] welcome back everyone to the cube and Horizon 3.ai special presentation I'm John Furrier host of thecube we're with Chris Hill sector head for strategic accounts and federal at Horizon 3.ai a great Innovative company Chris great to see you thanks for coming on thecube yeah like I said uh you know great to meet you John long time listener first time caller so excited to be here with you guys yeah we were talking before camera you had Splunk back in 2013 and I think 2012 was our first splunk.com and boy man you know talk about being in the right place at the right time now we're at another inflection point and Splunk continues to be relevant um and continuing to have that data driving Security in that interplay and your CEO former CTO of his plug as well at Horizon who's been on before really Innovative product you guys have but you know yeah don't wait for a breach to find out if you're logging the right data this is the topic of this thread Splunk is very much part of this new international expansion announcement uh with you guys tell us what are some of the challenges that you see where this is relevant for the Splunk and Horizon AI as you guys expand uh node zero out internationally yeah well so across so you know my role uh within Splunk it was uh working with our most strategic accounts and so I looked back to 2013 and I think about the sales process like working with with our small customers you know it was um it was still very siled back then like I was selling to an I.T team that was either using this for it operations um we generally would always even say yeah although we do security we weren't really designed for it we're a log management tool and we I'm sure you remember back then John we were like sort of stepping into the security space and and the public sector domain that I was in you know security was 70 of what we did when I look back to sort of uh the transformation that I was witnessing in that digital transformation um you know when I look at like 2019 to today you look at how uh the IT team and the security teams are being have been forced to break down those barriers that they used to sort of be silent away would not commute communicate one you know the security guys would be like oh this is my box I.T you're not allowed in today you can't get away with that and I think that the value that we bring to you know and of course Splunk has been a huge leader in that space and continues to do Innovation across the board but I think what we've we're seeing in the space and I was talking with Patrick Coughlin the SVP of uh security markets about this is that you know what we've been able to do with Splunk is build a purpose-built solution that allows Splunk to eat more data so Splunk itself is ulk know it's an ingest engine right the great reason people bought it was you could build these really fast dashboards and grab intelligence out of it but without data it doesn't do anything right so how do you drive and how do you bring more data in and most importantly from a customer perspective how do you bring the right data in and so if you think about what node zero and what we're doing in a horizon 3 is that sure we do pen testing but because we're an autonomous pen testing tool we do it continuously so this whole thought I'd be like oh crud like my customers oh yeah we got a pen test coming up it's gonna be six weeks the week oh yeah you know and everyone's gonna sit on their hands call me back in two months Chris we'll talk to you then right not not a real efficient way to test your environment and shoot we saw that with Uber this week right um you know and that's a case where we could have helped oh just right we could explain the Uber thing because it was a contractor just give a quick highlight of what happened so you can connect the doctor yeah no problem so um it was uh I got I think it was yeah one of those uh you know games where they would try and test an environment um and with the uh pen tester did was he kept on calling them MFA guys being like I need to reset my password we need to set my right password and eventually the um the customer service guy said okay I'm resetting it once he had reset and bypassed the multi-factor authentication he then was able to get in and get access to the building area that he was in or I think not the domain but he was able to gain access to a partial part of that Network he then paralleled over to what I would assume is like a VA VMware or some virtual machine that had notes that had all of the credentials for logging into various domains and So within minutes they had access and that's the sort of stuff that we do you know a lot of these tools like um you know you think about the cacophony of tools that are out there in a GTA architect architecture right I'm gonna get like a z-scale or I'm going to have uh octum and I have a Splunk I've been into the solar system I mean I don't mean to name names we have crowdstriker or Sentinel one in there it's just it's a cacophony of things that don't work together they weren't designed work together and so we have seen so many times in our business through our customer support and just working with customers when we do their pen tests that there will be 5 000 servers out there three are misconfigured those three misconfigurations will create the open door because remember the hacker only needs to be right once the defender needs to be right all the time and that's the challenge and so that's what I'm really passionate about what we're doing uh here at Horizon three I see this my digital transformation migration and security going on which uh we're at the tip of the spear it's why I joined sey Hall coming on this journey uh and just super excited about where the path's going and super excited about the relationship with Splunk I get into more details on some of the specifics of that but um you know well you're nailing I mean we've been doing a lot of things on super cloud and this next gen environment we're calling it next gen you're really seeing devops obviously devsecops has already won the it role has moved to the developer shift left is an indicator of that it's one of the many examples higher velocity code software supply chain you hear these things that means that it is now in the developer hands it is replaced by the new Ops data Ops teams and security where there's a lot of horizontal thinking to your point about access there's no more perimeter huge 100 right is really right on things one time you know to get in there once you're in then you can hang out move around move laterally big problem okay so we get that now the challenges for these teams as they are transitioning organizationally how do they figure out what to do okay this is the next step they already have Splunk so now they're kind of in transition while protecting for a hundred percent ratio of success so how would you look at that and describe the challenge is what do they do what is it what are the teams facing with their data and what's next what are they what are they what action do they take so let's use some vernacular that folks will know so if I think about devsecops right we both know what that means that I'm going to build security into the app it normally talks about sec devops right how am I building security around the perimeter of what's going inside my ecosystem and what are they doing and so if you think about what we're able to do with somebody like Splunk is we can pen test the entire environment from Soup To Nuts right so I'm going to test the end points through to its I'm going to look for misconfigurations I'm going to I'm going to look for um uh credential exposed credentials you know I'm going to look for anything I can in the environment again I'm going to do it at light speed and and what what we're doing for that SEC devops space is to you know did you detect that we were in your environment so did we alert Splunk or the Sim that there's someone in the environment laterally moving around did they more importantly did they log us into their environment and when do they detect that log to trigger that log did they alert on us and then finally most importantly for every CSO out there is going to be did they stop us and so that's how we we do this and I think you when speaking with um stay Hall before you know we've come up with this um boils but we call it fine fix verifying so what we do is we go in is we act as the attacker right we act in a production environment so we're not going to be we're a passive attacker but we will go in on credentialed on agents but we have to assume to have an assumed breach model which means we're going to put a Docker container in your environment and then we're going to fingerprint the environment so we're going to go out and do an asset survey now that's something that's not something that Splunk does super well you know so can Splunk see all the assets do the same assets marry up we're going to log all that data and think and then put load that into this long Sim or the smoke logging tools just to have it in Enterprise right that's an immediate future ad that they've got um and then we've got the fix so once we've completed our pen test um we are then going to generate a report and we can talk about these in a little bit later but the reports will show an executive summary the assets that we found which would be your asset Discovery aspect of that a fix report and the fixed report I think is probably the most important one it will go down and identify what we did how we did it and then how to fix that and then from that the pen tester or the organization should fix those then they go back and run another test and then they validate like a change detection environment to see hey did those fixes taste play take place and you know snehaw when he was the CTO of jsoc he shared with me a number of times about it's like man there would be 15 more items on next week's punch sheet that we didn't know about and it's and it has to do with how we you know how they were uh prioritizing the cves and whatnot because they would take all CBDs it was critical or non-critical and it's like we are able to create context in that environment that feeds better information into Splunk and whatnot that brings that brings up the efficiency for Splunk specifically the teams out there by the way the burnout thing is real I mean this whole I just finished my list and I got 15 more or whatever the list just can keeps growing how did node zero specifically help Splunk teams be more efficient like that's the question I want to get at because this seems like a very scale way for Splunk customers and teams service teams to be more so the question is how does node zero help make Splunk specifically their service teams be more efficient so so today in our early interactions we're building customers we've seen are five things um and I'll start with sort of identifying the blind spots right so kind of what I just talked about with you did we detect did we log did we alert did they stop node zero right and so I would I put that you know a more Layman's third grade term and if I was going to beat a fifth grader at this game would be we can be the sparring partner for a Splunk Enterprise customer a Splunk Essentials customer someone using Splunk soar or even just an Enterprise Splunk customer that may be a small shop with three people and just wants to know where am I exposed so by creating and generating these reports and then having um the API that actually generates the dashboard they can take all of these events that we've logged and log them in and then where that then comes in is number two is how do we prioritize those logs right so how do we create visibility to logs that that um are have critical impacts and again as I mentioned earlier not all cves are high impact regard and also not all or low right so if you daisy chain a bunch of low cves together boom I've got a mission critical AP uh CPE that needs to be fixed now such as a credential moving to an NT box that's got a text file with a bunch of passwords on it that would be very bad um and then third would be uh verifying that you have all of the hosts so one of the things that splunk's not particularly great at and they'll literate themselves they don't do asset Discovery so dude what assets do we see and what are they logging from that um and then for from um for every event that they are able to identify one of the cool things that we can do is actually create this low code no code environment so they could let you know Splunk customers can use Splunk sword to actually triage events and prioritize that event so where they're being routed within it to optimize the Sox team time to Market or time to triage any given event obviously reducing MTR and then finally I think one of the neatest things that we'll be seeing us develop is um our ability to build glass cables so behind me you'll see one of our triage events and how we build uh a Lockheed Martin kill chain on that with a glass table which is very familiar to the community we're going to have the ability and not too distant future to allow people to search observe on those iocs and if people aren't familiar with it ioc it's an instant of a compromise so that's a vector that we want to drill into and of course who's better at Drilling in the data and smoke yeah this is a critter this is an awesome Synergy there I mean I can see a Splunk customer going man this just gives me so much more capability action actionability and also real understanding and I think this is what I want to dig into if you don't mind understanding that critical impact okay is kind of where I see this coming got the data data ingest now data's data but the question is what not to log you know where are things misconfigured these are critical questions so can you talk about what it means to understand critical impact yeah so I think you know going back to the things that I just spoke about a lot of those cves where you'll see um uh low low low and then you daisy chain together and they're suddenly like oh this is high now but then your other impact of like if you're if you're a Splunk customer you know and I had it I had several of them I had one customer that you know terabytes of McAfee data being brought in and it was like all right there's a lot of other data that you probably also want to bring but they could only afford wanted to do certain data sets because that's and they didn't know how to prioritize or filter those data sets and so we provide that opportunity to say hey these are the critical ones to bring in but there's also the ones that you don't necessarily need to bring in because low cve in this case really does mean low cve like an ILO server would be one that um that's the print server uh where the uh your admin credentials are on on like a printer and so there will be credentials on that that's something that a hacker might go in to look at so although the cve on it is low is if you daisy chain with somebody that's able to get into that you might say Ah that's high and we would then potentially rank it giving our AI logic to say that's a moderate so put it on the scale and we prioritize those versus uh of all of these scanners just going to give you a bunch of CDs and good luck and translating that if I if I can and tell me if I'm wrong that kind of speaks to that whole lateral movement that's it challenge right print serve a great example looks stupid low end who's going to want to deal with the print server oh but it's connected into a critical system there's a path is that kind of what you're getting at yeah I use Daisy Chain I think that's from the community they came from uh but it's just a lateral movement it's exactly what they're doing in those low level low critical lateral movements is where the hackers are getting in right so that's the beauty thing about the uh the Uber example is that who would have thought you know I've got my monthly Factor authentication going in a human made a mistake we can't we can't not expect humans to make mistakes we're fallible right the reality is is once they were in the environment they could have protected themselves by running enough pen tests to know that they had certain uh exposed credentials that would have stopped the breach and they did not had not done that in their environment and I'm not poking yeah but it's an interesting Trend though I mean it's obvious if sometimes those low end items are also not protected well so it's easy to get at from a hacker standpoint but also the people in charge of them can be fished easily or spearfished because they're not paying attention because they don't have to no one ever told them hey be careful yeah for the community that I came from John that's exactly how they they would uh meet you at a uh an International Event um introduce themselves as a graduate student these are National actor States uh would you mind reviewing my thesis on such and such and I was at Adobe at the time that I was working on this instead of having to get the PDF they opened the PDF and whoever that customer was launches and I don't know if you remember back in like 2008 time frame there was a lot of issues around IP being by a nation state being stolen from the United States and that's exactly how they did it and John that's or LinkedIn hey I want to get a joke we want to hire you double the salary oh I'm gonna click on that for sure you know yeah right exactly yeah the one thing I would say to you is like uh when we look at like sort of you know because I think we did 10 000 pen tests last year is it's probably over that now you know we have these sort of top 10 ways that we think and find people coming into the environment the funniest thing is that only one of them is a cve related vulnerability like uh you know you guys know what they are right so it's it but it's it's like two percent of the attacks are occurring through the cves but yeah there's all that attention spent to that and very little attention spent to this pen testing side which is sort of this continuous threat you know monitoring space and and this vulnerability space where I think we play a such an important role and I'm so excited to be a part of the tip of the spear on this one yeah I'm old enough to know the movie sneakers which I loved as a you know watching that movie you know professional hackers are testing testing always testing the environment I love this I got to ask you as we kind of wrap up here Chris if you don't mind the the benefits to Professional Services from this Alliance big news Splunk and you guys work well together we see that clearly what are what other benefits do Professional Services teams see from the Splunk and Horizon 3.ai Alliance so if you're I think for from our our from both of our uh Partners uh as we bring these guys together and many of them already are the same partner right uh is that uh first off the licensing model is probably one of the key areas that we really excel at so if you're an end user you can buy uh for the Enterprise by the number of IP addresses you're using um but uh if you're a partner working with this there's solution ways that you can go in and we'll license as to msps and what that business model on msps looks like but the unique thing that we do here is this C plus license and so the Consulting plus license allows like a uh somebody a small to mid-sized to some very large uh you know Fortune 100 uh consulting firms use this uh by buying into a license called um Consulting plus where they can have unlimited uh access to as many IPS as they want but you can only run one test at a time and as you can imagine when we're going and hacking passwords and um checking hashes and decrypting hashes that can take a while so but for the right customer it's it's a perfect tool and so I I'm so excited about our ability to go to market with uh our partners so that we understand ourselves understand how not to just sell to or not tell just to sell through but we know how to sell with them as a good vendor partner I think that that's one thing that we've done a really good job building bring it into the market yeah I think also the Splunk has had great success how they've enabled uh partners and Professional Services absolutely you know the services that layer on top of Splunk are multi-fold tons of great benefits so you guys Vector right into that ride that way with friction and and the cool thing is that in you know in one of our reports which could be totally customized uh with someone else's logo we're going to generate you know so I I used to work in another organization it wasn't Splunk but we we did uh you know pen testing as for for customers and my pen testers would come on site they'd do the engagement and they would leave and then another release someone would be oh shoot we got another sector that was breached and they'd call you back you know four weeks later and so by August our entire pen testings teams would be sold out and it would be like well even in March maybe and they're like no no I gotta breach now and and and then when they do go in they go through do the pen test and they hand over a PDF and they pack on the back and say there's where your problems are you need to fix it and the reality is that what we're going to generate completely autonomously with no human interaction is we're going to go and find all the permutations of anything we found and the fix for those permutations and then once you've fixed everything you just go back and run another pen test it's you know for what people pay for one pen test they can have a tool that does that every every Pat patch on Tuesday and that's on Wednesday you know triage throughout the week green yellow red I wanted to see the colors show me green green is good right not red and one CIO doesn't want who doesn't want that dashboard right it's it's exactly it and we can help bring I think that you know I'm really excited about helping drive this with the Splunk team because they get that they understand that it's the green yellow red dashboard and and how do we help them find more green uh so that the other guys are in red yeah and get in the data and do the right thing and be efficient with how you use the data know what to look at so many things to pay attention to you know the combination of both and then go to market strategy real brilliant congratulations Chris thanks for coming on and sharing um this news with the detail around the Splunk in action around the alliance thanks for sharing John my pleasure thanks look forward to seeing you soon all right great we'll follow up and do another segment on devops and I.T and security teams as the new new Ops but and super cloud a bunch of other stuff so thanks for coming on and our next segment the CEO of horizon 3.aa will break down all the new news for us here on thecube you're watching thecube the leader in high tech Enterprise coverage [Music] yeah the partner program for us has been fantastic you know I think prior to that you know as most organizations most uh uh most Farmers most mssps might not necessarily have a a bench at all for penetration testing uh maybe they subcontract this work out or maybe they do it themselves but trying to staff that kind of position can be incredibly difficult for us this was a differentiator a a new a new partner a new partnership that allowed us to uh not only perform services for our customers but be able to provide a product by which that they can do it themselves so we work with our customers in a variety of ways some of them want more routine testing and perform this themselves but we're also a certified service provider of horizon 3 being able to perform uh penetration tests uh help review the the data provide color provide analysis for our customers in a broader sense right not necessarily the the black and white elements of you know what was uh what's critical what's high what's medium what's low what you need to fix but are there systemic issues this has allowed us to onboard new customers this has allowed us to migrate some penetration testing services to us from from competitors in the marketplace But ultimately this is occurring because the the product and the outcome are special they're unique and they're effective our customers like what they're seeing they like the routineness of it many of them you know again like doing this themselves you know being able to kind of pen test themselves parts of their networks um and the the new use cases right I'm a large organization I have eight to ten Acquisitions per year wouldn't it be great to have a tool to be able to perform a penetration test both internal and external of that acquisition before we integrate the two companies and maybe bringing on some risk it's a very effective partnership uh one that really is uh kind of taken our our Engineers our account Executives by storm um you know this this is a a partnership that's been very valuable to us [Music] a key part of the value and business model at Horizon 3 is enabling Partners to leverage node zero to make more revenue for themselves our goal is that for sixty percent of our Revenue this year will be originated by partners and that 95 of our Revenue next year will be originated by partners and so a key to that strategy is making us an integral part of your business models as a partner a key quote from one of our partners is that we enable every one of their business units to generate Revenue so let's talk about that in a little bit more detail first is that if you have a pen test Consulting business take Deloitte as an example what was six weeks of human labor at Deloitte per pen test has been cut down to four days of Labor using node zero to conduct reconnaissance find all the juicy interesting areas of the of the Enterprise that are exploitable and being able to go assess the entire organization and then all of those details get served up to the human to be able to look at understand and determine where to probe deeper so what you see in that pen test Consulting business is that node zero becomes a force multiplier where those Consulting teams were able to cover way more accounts and way more IPS within those accounts with the same or fewer consultants and so that directly leads to profit margin expansion for the Penn testing business itself because node 0 is a force multiplier the second business model here is if you're an mssp as an mssp you're already making money providing defensive cyber security operations for a large volume of customers and so what they do is they'll license node zero and use us as an upsell to their mssb business to start to deliver either continuous red teaming continuous verification or purple teaming as a service and so in that particular business model they've got an additional line of Revenue where they can increase the spend of their existing customers by bolting on node 0 as a purple team as a service offering the third business model or customer type is if you're an I.T services provider so as an I.T services provider you make money installing and configuring security products like Splunk or crowdstrike or hemio you also make money reselling those products and you also make money generating follow-on services to continue to harden your customer environments and so for them what what those it service providers will do is use us to verify that they've installed Splunk correctly improved to their customer that Splunk was installed correctly or crowdstrike was installed correctly using our results and then use our results to drive follow-on services and revenue and then finally we've got the value-added reseller which is just a straight up reseller because of how fast our sales Cycles are these vars are able to typically go from cold email to deal close in six to eight weeks at Horizon 3 at least a single sales engineer is able to run 30 to 50 pocs concurrently because our pocs are very lightweight and don't require any on-prem customization or heavy pre-sales post sales activity so as a result we're able to have a few amount of sellers driving a lot of Revenue and volume for us well the same thing applies to bars there isn't a lot of effort to sell the product or prove its value so vars are able to sell a lot more Horizon 3 node zero product without having to build up a huge specialist sales organization so what I'm going to do is talk through uh scenario three here as an I.T service provider and just how powerful node zero can be in driving additional Revenue so in here think of for every one dollar of node zero license purchased by the IT service provider to do their business it'll generate ten dollars of additional revenue for that partner so in this example kidney group uses node 0 to verify that they have installed and deployed Splunk correctly so Kitty group is a Splunk partner they they sell it services to install configure deploy and maintain Splunk and as they deploy Splunk they're going to use node 0 to attack the environment and make sure that the right logs and alerts and monitoring are being handled within the Splunk deployment so it's a way of doing QA or verifying that Splunk has been configured correctly and that's going to be internally used by kidney group to prove the quality of their services that they've just delivered then what they're going to do is they're going to show and leave behind that node zero Report with their client and that creates a resell opportunity for for kidney group to resell node 0 to their client because their client is seeing the reports and the results and saying wow this is pretty amazing and those reports can be co-branded where it's a pen testing report branded with kidney group but it says powered by Horizon three under it from there kidney group is able to take the fixed actions report that's automatically generated with every pen test through node zero and they're able to use that as the starting point for a statement of work to sell follow-on services to fix all of the problems that node zero identified fixing l11r misconfigurations fixing or patching VMware or updating credentials policies and so on so what happens is node 0 has found a bunch of problems the client often lacks the capacity to fix and so kidney group can use that lack of capacity by the client as a follow-on sales opportunity for follow-on services and finally based on the findings from node zero kidney group can look at that report and say to the customer you know customer if you bought crowdstrike you'd be able to uh prevent node Zero from attacking and succeeding in the way that it did for if you bought humano or if you bought Palo Alto networks or if you bought uh some privileged access management solution because of what node 0 was able to do with credential harvesting and attacks and so as a result kidney group is able to resell other security products within their portfolio crowdstrike Falcon humano Polito networks demisto Phantom and so on based on the gaps that were identified by node zero and that pen test and what that creates is another feedback loop where kidney group will then go use node 0 to verify that crowdstrike product has actually been installed and configured correctly and then this becomes the cycle of using node 0 to verify a deployment using that verification to drive a bunch of follow-on services and resell opportunities which then further drives more usage of the product now the way that we licensed is that it's a usage-based license licensing model so that the partner will grow their node zero Consulting plus license as they grow their business so for example if you're a kidney group then week one you've got you're going to use node zero to verify your Splunk install in week two if you have a pen testing business you're going to go off and use node zero to be a force multiplier for your pen testing uh client opportunity and then if you have an mssp business then in week three you're going to use node zero to go execute a purple team mssp offering for your clients so not necessarily a kidney group but if you're a Deloitte or ATT these larger companies and you've got multiple lines of business if you're Optive for instance you all you have to do is buy one Consulting plus license and you're going to be able to run as many pen tests as you want sequentially so now you can buy a single license and use that one license to meet your week one client commitments and then meet your week two and then meet your week three and as you grow your business you start to run multiple pen tests concurrently so in week one you've got to do a Splunk verify uh verify Splunk install and you've got to run a pen test and you've got to do a purple team opportunity you just simply expand the number of Consulting plus licenses from one license to three licenses and so now as you systematically grow your business you're able to grow your node zero capacity with you giving you predictable cogs predictable margins and once again 10x additional Revenue opportunity for that investment in the node zero Consulting plus license my name is Saint I'm the co-founder and CEO here at Horizon 3. I'm going to talk to you today about why it's important to look at your Enterprise Through The Eyes of an attacker the challenge I had when I was a CIO in banking the CTO at Splunk and serving within the Department of Defense is that I had no idea I was Secure until the bad guys had showed up am I logging the right data am I fixing the right vulnerabilities are my security tools that I've paid millions of dollars for actually working together to defend me and the answer is I don't know does my team actually know how to respond to a breach in the middle of an incident I don't know I've got to wait for the bad guys to show up and so the challenge I had was how do we proactively verify our security posture I tried a variety of techniques the first was the use of vulnerability scanners and the challenge with vulnerability scanners is being vulnerable doesn't mean you're exploitable I might have a hundred thousand findings from my scanner of which maybe five or ten can actually be exploited in my environment the other big problem with scanners is that they can't chain weaknesses together from machine to machine so if you've got a thousand machines in your environment or more what a vulnerability scanner will do is tell you you have a problem on machine one and separately a problem on machine two but what they can tell you is that an attacker could use a load from machine one plus a low from machine two to equal to critical in your environment and what attackers do in their tactics is they chain together misconfigurations dangerous product defaults harvested credentials and exploitable vulnerabilities into attack paths across different machines so to address the attack pads across different machines I tried layering in consulting-based pen testing and the issue is when you've got thousands of hosts or hundreds of thousands of hosts in your environment human-based pen testing simply doesn't scale to test an infrastructure of that size moreover when they actually do execute a pen test and you get the report oftentimes you lack the expertise within your team to quickly retest to verify that you've actually fixed the problem and so what happens is you end up with these pen test reports that are incomplete snapshots and quickly going stale and then to mitigate that problem I tried using breach and attack simulation tools and the struggle with these tools is one I had to install credentialed agents everywhere two I had to write my own custom attack scripts that I didn't have much talent for but also I had to maintain as my environment changed and then three these types of tools were not safe to run against production systems which was the the majority of my attack surface so that's why we went off to start Horizon 3. so Tony and I met when we were in Special Operations together and the challenge we wanted to solve was how do we do infrastructure security testing at scale by giving the the power of a 20-year pen testing veteran into the hands of an I.T admin a network engineer in just three clicks and the whole idea is we enable these fixers The Blue Team to be able to run node Zero Hour pen testing product to quickly find problems in their environment that blue team will then then go off and fix the issues that were found and then they can quickly rerun the attack to verify that they fixed the problem and the whole idea is delivering this without requiring custom scripts be developed without requiring credential agents be installed and without requiring the use of external third-party consulting services or Professional Services self-service pen testing to quickly Drive find fix verify there are three primary use cases that our customers use us for the first is the sock manager that uses us to verify that their security tools are actually effective to verify that they're logging the right data in Splunk or in their Sim to verify that their managed security services provider is able to quickly detect and respond to an attack and hold them accountable for their slas or that the sock understands how to quickly detect and respond and measuring and verifying that or that the variety of tools that you have in your stack most organizations have 130 plus cyber security tools none of which are designed to work together are actually working together the second primary use case is proactively hardening and verifying your systems this is when the I that it admin that network engineer they're able to run self-service pen tests to verify that their Cisco environment is installed in hardened and configured correctly or that their credential policies are set up right or that their vcenter or web sphere or kubernetes environments are actually designed to be secure and what this allows the it admins and network Engineers to do is shift from running one or two pen tests a year to 30 40 or more pen tests a month and you can actually wire those pen tests into your devops process or into your detection engineering and the change management processes to automatically trigger pen tests every time there's a change in your environment the third primary use case is for those organizations lucky enough to have their own internal red team they'll use node zero to do reconnaissance and exploitation at scale and then use the output as a starting point for the humans to step in and focus on the really hard juicy stuff that gets them on stage at Defcon and so these are the three primary use cases and what we'll do is zoom into the find fix verify Loop because what I've found in my experience is find fix verify is the future operating model for cyber security organizations and what I mean here is in the find using continuous pen testing what you want to enable is on-demand self-service pen tests you want those pen tests to find attack pads at scale spanning your on-prem infrastructure your Cloud infrastructure and your perimeter because attackers don't only state in one place they will find ways to chain together a perimeter breach a credential from your on-prem to gain access to your cloud or some other permutation and then the third part in continuous pen testing is attackers don't focus on critical vulnerabilities anymore they know we've built vulnerability Management Programs to reduce those vulnerabilities so attackers have adapted and what they do is chain together misconfigurations in your infrastructure and software and applications with dangerous product defaults with exploitable vulnerabilities and through the collection of credentials through a mix of techniques at scale once you've found those problems the next question is what do you do about it well you want to be able to prioritize fixing problems that are actually exploitable in your environment that truly matter meaning they're going to lead to domain compromise or domain user compromise or access your sensitive data the second thing you want to fix is making sure you understand what risk your crown jewels data is exposed to where is your crown jewels data is in the cloud is it on-prem has it been copied to a share drive that you weren't aware of if a domain user was compromised could they access that crown jewels data you want to be able to use the attacker's perspective to secure the critical data you have in your infrastructure and then finally as you fix these problems you want to quickly remediate and retest that you've actually fixed the issue and this fine fix verify cycle becomes that accelerator that drives purple team culture the third part here is verify and what you want to be able to do in the verify step is verify that your security tools and processes in people can effectively detect and respond to a breach you want to be able to integrate that into your detection engineering processes so that you know you're catching the right security rules or that you've deployed the right configurations you also want to make sure that your environment is adhering to the best practices around systems hardening in cyber resilience and finally you want to be able to prove your security posture over a time to your board to your leadership into your regulators so what I'll do now is zoom into each of these three steps so when we zoom in to find here's the first example using node 0 and autonomous pen testing and what an attacker will do is find a way to break through the perimeter in this example it's very easy to misconfigure kubernetes to allow an attacker to gain remote code execution into your on-prem kubernetes environment and break through the perimeter and from there what the attacker is going to do is conduct Network reconnaissance and then find ways to gain code execution on other machines in the environment and as they get code execution they start to dump credentials collect a bunch of ntlm hashes crack those hashes using open source and dark web available data as part of those attacks and then reuse those credentials to log in and laterally maneuver throughout the environment and then as they loudly maneuver they can reuse those credentials and use credential spraying techniques and so on to compromise your business email to log in as admin into your cloud and this is a very common attack and rarely is a CV actually needed to execute this attack often it's just a misconfiguration in kubernetes with a bad credential policy or password policy combined with bad practices of credential reuse across the organization here's another example of an internal pen test and this is from an actual customer they had 5 000 hosts within their environment they had EDR and uba tools installed and they initiated in an internal pen test on a single machine from that single initial access point node zero enumerated the network conducted reconnaissance and found five thousand hosts were accessible what node 0 will do under the covers is organize all of that reconnaissance data into a knowledge graph that we call the Cyber terrain map and that cyber Terrain map becomes the key data structure that we use to efficiently maneuver and attack and compromise your environment so what node zero will do is they'll try to find ways to get code execution reuse credentials and so on in this customer example they had Fortinet installed as their EDR but node 0 was still able to get code execution on a Windows machine from there it was able to successfully dump credentials including sensitive credentials from the lsas process on the Windows box and then reuse those credentials to log in as domain admin in the network and once an attacker becomes domain admin they have the keys to the kingdom they can do anything they want so what happened here well it turns out Fortinet was misconfigured on three out of 5000 machines bad automation the customer had no idea this had happened they would have had to wait for an attacker to show up to realize that it was misconfigured the second thing is well why didn't Fortinet stop the credential pivot in the lateral movement and it turned out the customer didn't buy the right modules or turn on the right services within that particular product and we see this not only with Ford in it but we see this with Trend Micro and all the other defensive tools where it's very easy to miss a checkbox in the configuration that will do things like prevent credential dumping the next story I'll tell you is attackers don't have to hack in they log in so another infrastructure pen test a typical technique attackers will take is man in the middle uh attacks that will collect hashes so in this case what an attacker will do is leverage a tool or technique called responder to collect ntlm hashes that are being passed around the network and there's a variety of reasons why these hashes are passed around and it's a pretty common misconfiguration but as an attacker collects those hashes then they start to apply techniques to crack those hashes so they'll pass the hash and from there they will use open source intelligence common password structures and patterns and other types of techniques to try to crack those hashes into clear text passwords so here node 0 automatically collected hashes it automatically passed the hashes to crack those credentials and then from there it starts to take the domain user user ID passwords that it's collected and tries to access different services and systems in your Enterprise in this case node 0 is able to successfully gain access to the Office 365 email environment because three employees didn't have MFA configured so now what happens is node 0 has a placement and access in the business email system which sets up the conditions for fraud lateral phishing and other techniques but what's especially insightful here is that 80 of the hashes that were collected in this pen test were cracked in 15 minutes or less 80 percent 26 of the user accounts had a password that followed a pretty obvious pattern first initial last initial and four random digits the other thing that was interesting is 10 percent of service accounts had their user ID the same as their password so VMware admin VMware admin web sphere admin web Square admin so on and so forth and so attackers don't have to hack in they just log in with credentials that they've collected the next story here is becoming WS AWS admin so in this example once again internal pen test node zero gets initial access it discovers 2 000 hosts are network reachable from that environment if fingerprints and organizes all of that data into a cyber Terrain map from there it it fingerprints that hpilo the integrated lights out service was running on a subset of hosts hpilo is a service that is often not instrumented or observed by security teams nor is it easy to patch as a result attackers know this and immediately go after those types of services so in this case that ILO service was exploitable and were able to get code execution on it ILO stores all the user IDs and passwords in clear text in a particular set of processes so once we gain code execution we were able to dump all of the credentials and then from there laterally maneuver to log in to the windows box next door as admin and then on that admin box we're able to gain access to the share drives and we found a credentials file saved on a share Drive from there it turned out that credentials file was the AWS admin credentials file giving us full admin authority to their AWS accounts not a single security alert was triggered in this attack because the customer wasn't observing the ILO service and every step thereafter was a valid login in the environment and so what do you do step one patch the server step two delete the credentials file from the share drive and then step three is get better instrumentation on privileged access users and login the final story I'll tell is a typical pattern that we see across the board with that combines the various techniques I've described together where an attacker is going to go off and use open source intelligence to find all of the employees that work at your company from there they're going to look up those employees on dark web breach databases and other forms of information and then use that as a starting point to password spray to compromise a domain user all it takes is one employee to reuse a breached password for their Corporate email or all it takes is a single employee to have a weak password that's easily guessable all it takes is one and once the attacker is able to gain domain user access in most shops domain user is also the local admin on their laptop and once your local admin you can dump Sam and get local admin until M hashes you can use that to reuse credentials again local admin on neighboring machines and attackers will start to rinse and repeat then eventually they're able to get to a point where they can dump lsas or by unhooking the anti-virus defeating the EDR or finding a misconfigured EDR as we've talked about earlier to compromise the domain and what's consistent is that the fundamentals are broken at these shops they have poor password policies they don't have least access privilege implemented active directory groups are too permissive where domain admin or domain user is also the local admin uh AV or EDR Solutions are misconfigured or easily unhooked and so on and what we found in 10 000 pen tests is that user Behavior analytics tools never caught us in that lateral movement in part because those tools require pristine logging data in order to work and also it becomes very difficult to find that Baseline of normal usage versus abnormal usage of credential login another interesting Insight is there were several Marquee brand name mssps that were defending our customers environment and for them it took seven hours to detect and respond to the pen test seven hours the pen test was over in less than two hours and so what you had was an egregious violation of the service level agreements that that mssp had in place and the customer was able to use us to get service credit and drive accountability of their sock and of their provider the third interesting thing is in one case it took us seven minutes to become domain admin in a bank that bank had every Gucci security tool you could buy yet in 7 minutes and 19 seconds node zero started as an unauthenticated member of the network and was able to escalate privileges through chaining and misconfigurations in lateral movement and so on to become domain admin if it's seven minutes today we should assume it'll be less than a minute a year or two from now making it very difficult for humans to be able to detect and respond to that type of Blitzkrieg attack so that's in the find it's not just about finding problems though the bulk of the effort should be what to do about it the fix and the verify so as you find those problems back to kubernetes as an example we will show you the path here is the kill chain we took to compromise that environment we'll show you the impact here is the impact or here's the the proof of exploitation that we were able to use to be able to compromise it and there's the actual command that we executed so you could copy and paste that command and compromise that cubelet yourself if you want and then the impact is we got code execution and we'll actually show you here is the impact this is a critical here's why it enabled perimeter breach affected applications will tell you the specific IPS where you've got the problem how it maps to the miter attack framework and then we'll tell you exactly how to fix it we'll also show you what this problem enabled so you can accurately prioritize why this is important or why it's not important the next part is accurate prioritization the hardest part of my job as a CIO was deciding what not to fix so if you take SMB signing not required as an example by default that CVSs score is a one out of 10. but this misconfiguration is not a cve it's a misconfig enable an attacker to gain access to 19 credentials including one domain admin two local admins and access to a ton of data because of that context this is really a 10 out of 10. you better fix this as soon as possible however of the seven occurrences that we found it's only a critical in three out of the seven and these are the three specific machines and we'll tell you the exact way to fix it and you better fix these as soon as possible for these four machines over here these didn't allow us to do anything of consequence so that because the hardest part is deciding what not to fix you can justifiably choose not to fix these four issues right now and just add them to your backlog and surge your team to fix these three as quickly as possible and then once you fix these three you don't have to re-run the entire pen test you can select these three and then one click verify and run a very narrowly scoped pen test that is only testing this specific issue and what that creates is a much faster cycle of finding and fixing problems the other part of fixing is verifying that you don't have sensitive data at risk so once we become a domain user we're able to use those domain user credentials and try to gain access to databases file shares S3 buckets git repos and so on and help you understand what sensitive data you have at risk so in this example a green checkbox means we logged in as a valid domain user we're able to get read write access on the database this is how many records we could have accessed and we don't actually look at the values in the database but we'll show you the schema so you can quickly characterize that pii data was at risk here and we'll do that for your file shares and other sources of data so now you can accurately articulate the data you have at risk and prioritize cleaning that data up especially data that will lead to a fine or a big news issue so that's the find that's the fix now we're going to talk about the verify the key part in verify is embracing and integrating with detection engineering practices so when you think about your layers of security tools you've got lots of tools in place on average 130 tools at any given customer but these tools were not designed to work together so when you run a pen test what you want to do is say did you detect us did you log us did you alert on us did you stop us and from there what you want to see is okay what are the techniques that are commonly used to defeat an environment to actually compromise if you look at the top 10 techniques we use and there's far more than just these 10 but these are the most often executed nine out of ten have nothing to do with cves it has to do with misconfigurations dangerous product defaults bad credential policies and it's how we chain those together to become a domain admin or compromise a host so what what customers will do is every single attacker command we executed is provided to you as an attackivity log so you can actually see every single attacker command we ran the time stamp it was executed the hosts it executed on and how it Maps the minor attack tactics so our customers will have are these attacker logs on one screen and then they'll go look into Splunk or exabeam or Sentinel one or crowdstrike and say did you detect us did you log us did you alert on us or not and to make that even easier if you take this example hey Splunk what logs did you see at this time on the VMware host because that's when node 0 is able to dump credentials and that allows you to identify and fix your logging blind spots to make that easier we've got app integration so this is an actual Splunk app in the Splunk App Store and what you can come is inside the Splunk console itself you can fire up the Horizon 3 node 0 app all of the pen test results are here so that you can see all of the results in one place and you don't have to jump out of the tool and what you'll show you as I skip forward is hey there's a pen test here are the critical issues that we've identified for that weaker default issue here are the exact commands we executed and then we will automatically query into Splunk all all terms on between these times on that endpoint that relate to this attack so you can now quickly within the Splunk environment itself figure out that you're missing logs or that you're appropriately catching this issue and that becomes incredibly important in that detection engineering cycle that I mentioned earlier so how do our customers end up using us they shift from running one pen test a year to 30 40 pen tests a month oftentimes wiring us into their deployment automation to automatically run pen tests the other part that they'll do is as they run more pen tests they find more issues but eventually they hit this inflection point where they're able to rapidly clean up their environment and that inflection point is because the red and the blue teams start working together in a purple team culture and now they're working together to proactively harden their environment the other thing our customers will do is run us from different perspectives they'll first start running an RFC 1918 scope to see once the attacker gained initial access in a part of the network that had wide access what could they do and then from there they'll run us within a specific Network segment okay from within that segment could the attacker break out and gain access to another segment then they'll run us from their work from home environment could they Traverse the VPN and do something damaging and once they're in could they Traverse the VPN and get into my cloud then they'll break in from the outside all of these perspectives are available to you in Horizon 3 and node zero as a single SKU and you can run as many pen tests as you want if you run a phishing campaign and find that an intern in the finance department had the worst phishing behavior you can then inject their credentials and actually show the end-to-end story of how an attacker fished gained credentials of an intern and use that to gain access to sensitive financial data so what our customers end up doing is running multiple attacks from multiple perspectives and looking at those results over time I'll leave you two things one is what is the AI in Horizon 3 AI those knowledge graphs are the heart and soul of everything that we do and we use machine learning reinforcement techniques reinforcement learning techniques Markov decision models and so on to be able to efficiently maneuver and analyze the paths in those really large graphs we also use context-based scoring to prioritize weaknesses and we're also able to drive collective intelligence across all of the operations so the more pen tests we run the smarter we get and all of that is based on our knowledge graph analytics infrastructure that we have finally I'll leave you with this was my decision criteria when I was a buyer for my security testing strategy what I cared about was coverage I wanted to be able to assess my on-prem cloud perimeter and work from home and be safe to run in production I want to be able to do that as often as I wanted I want to be able to run pen tests in hours or days not weeks or months so I could accelerate that fine fix verify loop I wanted my it admins and network Engineers with limited offensive experience to be able to run a pen test in a few clicks through a self-service experience and not have to install agent and not have to write custom scripts and finally I didn't want to get nickeled and dimed on having to buy different types of attack modules or different types of attacks I wanted a single annual subscription that allowed me to run any type of attack as often as I wanted so I could look at my Trends in directions over time so I hope you found this talk valuable uh we're easy to find and I look forward to seeing seeing you use a product and letting our results do the talking when you look at uh you know kind of the way no our pen testing algorithms work is we dynamically select uh how to compromise an environment based on what we've discovered and the goal is to become a domain admin compromise a host compromise domain users find ways to encrypt data steal sensitive data and so on but when you look at the the top 10 techniques that we ended up uh using to compromise environments the first nine have nothing to do with cves and that's the reality cves are yes a vector but less than two percent of cves are actually used in a compromise oftentimes it's some sort of credential collection credential cracking uh credential pivoting and using that to become an admin and then uh compromising environments from that point on so I'll leave this up for you to kind of read through and you'll have the slides available for you but I found it very insightful that organizations and ourselves when I was a GE included invested heavily in just standard vulnerability Management Programs when I was at DOD that's all disa cared about asking us about was our our kind of our cve posture but the attackers have adapted to not rely on cves to get in because they know that organizations are actively looking at and patching those cves and instead they're chaining together credentials from one place with misconfigurations and dangerous product defaults in another to take over an environment a concrete example is by default vcenter backups are not encrypted and so as if an attacker finds vcenter what they'll do is find the backup location and there are specific V sender MTD files where the admin credentials are parsippled in the binaries so you can actually as an attacker find the right MTD file parse out the binary and now you've got the admin credentials for the vcenter environment and now start to log in as admin there's a bad habit by signal officers and Signal practitioners in the in the Army and elsewhere where the the VM notes section of a virtual image has the password for the VM well those VM notes are not stored encrypted and attackers know this and they're able to go off and find the VMS that are unencrypted find the note section and pull out the passwords for those images and then reuse those credentials across the board so I'll pause here and uh you know Patrick love you get some some commentary on on these techniques and other things that you've seen and what we'll do in the last say 10 to 15 minutes is uh is rolled through a little bit more on what do you do about it yeah yeah no I love it I think um I think this is pretty exhaustive what I like about what you've done here is uh you know we've seen we've seen double-digit increases in the number of organizations that are reporting actual breaches year over year for the last um for the last three years and it's often we kind of in the Zeitgeist we pegged that on ransomware which of course is like incredibly important and very top of mind um but what I like about what you have here is you know we're reminding the audience that the the attack surface area the vectors the matter um you know has to be more comprehensive than just thinking about ransomware scenarios yeah right on um so let's build on this when you think about your defense in depth you've got multiple security controls that you've purchased and integrated and you've got that redundancy if a control fails but the reality is that these security tools aren't designed to work together so when you run a pen test what you want to ask yourself is did you detect node zero did you log node zero did you alert on node zero and did you stop node zero and when you think about how to do that every single attacker command executed by node zero is available in an attacker log so you can now see you know at the bottom here vcenter um exploit at that time on that IP how it aligns to minor attack what you want to be able to do is go figure out did your security tools catch this or not and that becomes very important in using the attacker's perspective to improve your defensive security controls and so the way we've tried to make this easier back to like my my my the you know I bleed Green in many ways still from my smoke background is you want to be able to and what our customers do is hey we'll look at the attacker logs on one screen and they'll look at what did Splunk see or Miss in another screen and then they'll use that to figure out what their logging blind spots are and what that where that becomes really interesting is we've actually built out an integration into Splunk where there's a Splunk app you can download off of Splunk base and you'll get all of the pen test results right there in the Splunk console and from that Splunk console you're gonna be able to see these are all the pen tests that were run these are the issues that were found um so you can look at that particular pen test here are all of the weaknesses that were identified for that particular pen test and how they categorize out for each of those weaknesses you can click on any one of them that are critical in this case and then we'll tell you for that weakness and this is where where the the punch line comes in so I'll pause the video here for that weakness these are the commands that were executed on these endpoints at this time and then we'll actually query Splunk for that um for that IP address or containing that IP and these are the source types that surface any sort of activity so what we try to do is help you as quickly and efficiently as possible identify the logging blind spots in your Splunk environment based on the attacker's perspective so as this video kind of plays through you can see it Patrick I'd love to get your thoughts um just seeing so many Splunk deployments and the effectiveness of those deployments and and how this is going to help really Elevate the effectiveness of all of your Splunk customers yeah I'm super excited about this I mean I think this these kinds of purpose-built integration snail really move the needle for our customers I mean at the end of the day when I think about the power of Splunk I think about a product I was first introduced to 12 years ago that was an on-prem piece of software you know and at the time it sold on sort of Perpetual and term licenses but one made it special was that it could it could it could eat data at a speed that nothing else that I'd have ever seen you can ingest massively scalable amounts of data uh did cool things like schema on read which facilitated that there was this language called SPL that you could nerd out about uh and you went to a conference once a year and you talked about all the cool things you were splunking right but now as we think about the next phase of our growth um we live in a heterogeneous environment where our customers have so many different tools and data sources that are ever expanding and as you look at the as you look at the role of the ciso it's mind-blowing to me the amount of sources Services apps that are coming into the ciso span of let's just call it a span of influence in the last three years uh you know we're seeing things like infrastructure service level visibility application performance monitoring stuff that just never made sense for the security team to have visibility into you um at least not at the size and scale which we're demanding today um and and that's different and this isn't this is why it's so important that we have these joint purpose-built Integrations that um really provide more prescription to our customers about how do they walk on that Journey towards maturity what does zero to one look like what does one to two look like whereas you know 10 years ago customers were happy with platforms today they want integration they want Solutions and they want to drive outcomes and I think this is a great example of how together we are stepping to the evolving nature of the market and also the ever-evolving nature of the threat landscape and what I would say is the maturing needs of the customer in that environment yeah for sure I think especially if if we all anticipate budget pressure over the next 18 months due to the economy and elsewhere while the security budgets are not going to ever I don't think they're going to get cut they're not going to grow as fast and there's a lot more pressure on organizations to extract more value from their existing Investments as well as extracting more value and more impact from their existing teams and so security Effectiveness Fierce prioritization and automation I think become the three key themes of security uh over the next 18 months so I'll do very quickly is run through a few other use cases um every host that we identified in the pen test were able to score and say this host allowed us to do something significant therefore it's it's really critical you should be increasing your logging here hey these hosts down here we couldn't really do anything as an attacker so if you do have to make trade-offs you can make some trade-offs of your logging resolution at the lower end in order to increase logging resolution on the upper end so you've got that level of of um justification for where to increase or or adjust your logging resolution another example is every host we've discovered as an attacker we Expose and you can export and we want to make sure is every host we found as an attacker is being ingested from a Splunk standpoint a big issue I had as a CIO and user of Splunk and other tools is I had no idea if there were Rogue Raspberry Pi's on the network or if a new box was installed and whether Splunk was installed on it or not so now you can quickly start to correlate what hosts did we see and how does that reconcile with what you're logging from uh finally or second to last use case here on the Splunk integration side is for every single problem we've found we give multiple options for how to fix it this becomes a great way to prioritize what fixed actions to automate in your soar platform and what we want to get to eventually is being able to automatically trigger soar actions to fix well-known problems like automatically invalidating passwords for for poor poor passwords in our credentials amongst a whole bunch of other things we could go off and do and then finally if there is a well-known kill chain or attack path one of the things I really wish I could have done when I was a Splunk customer was take this type of kill chain that actually shows a path to domain admin that I'm sincerely worried about and use it as a glass table over which I could start to layer possible indicators of compromise and now you've got a great starting point for glass tables and iocs for actual kill chains that we know are exploitable in your environment and that becomes some super cool Integrations that we've got on the roadmap between us and the Splunk security side of the house so what I'll leave with actually Patrick before I do that you know um love to get your comments and then I'll I'll kind of leave with one last slide on this wartime security mindset uh pending you know assuming there's no other questions no I love it I mean I think this kind of um it's kind of glass table's approach to how do you how do you sort of visualize these workflows and then use things like sore and orchestration and automation to operationalize them is exactly where we see all of our customers going and getting away from I think an over engineered approach to soar with where it has to be super technical heavy with you know python programmers and getting more to this visual view of workflow creation um that really demystifies the power of Automation and also democratizes it so you don't have to have these programming languages in your resume in order to start really moving the needle on workflow creation policy enforcement and ultimately driving automation coverage across more and more of the workflows that your team is seeing yeah I think that between us being able to visualize the actual kill chain or attack path with you know think of a of uh the soar Market I think going towards this no code low code um you know configurable sore versus coded sore that's going to really be a game changer in improve or giving security teams a force multiplier so what I'll leave you with is this peacetime mindset of security no longer is sustainable we really have to get out of checking the box and then waiting for the bad guys to show up to verify that security tools are are working or not and the reason why we've got to really do that quickly is there are over a thousand companies that withdrew from the Russian economy over the past uh nine months due to the Ukrainian War there you should expect every one of them to be punished by the Russians for leaving and punished from a cyber standpoint and this is no longer about financial extortion that is ransomware this is about punishing and destroying companies and you can punish any one of these companies by going after them directly or by going after their suppliers and their Distributors so suddenly your attack surface is no more no longer just your own Enterprise it's how you bring your goods to Market and it's how you get your goods created because while I may not be able to disrupt your ability to harvest fruit if I can get those trucks stuck at the border I can increase spoilage and have the same effect and what we should expect to see is this idea of cyber-enabled economic Warfare where if we issue a sanction like Banning the Russians from traveling there is a cyber-enabled counter punch which is corrupt and destroy the American Airlines database that is below the threshold of War that's not going to trigger the 82nd Airborne to be mobilized but it's going to achieve the right effect ban the sale of luxury goods disrupt the supply chain and create shortages banned Russian oil and gas attack refineries to call a 10x spike in gas prices three days before the election this is the future and therefore I think what we have to do is shift towards a wartime mindset which is don't trust your security posture verify it see yourself Through The Eyes of the attacker build that incident response muscle memory and drive better collaboration between the red and the blue teams your suppliers and Distributors and your information uh sharing organization they have in place and what's really valuable for me as a Splunk customer was when a router crashes at that moment you don't know if it's due to an I.T Administration problem or an attacker and what you want to have are different people asking different questions of the same data and you want to have that integrated triage process of an I.T lens to that problem a security lens to that problem and then from there figuring out is is this an IT workflow to execute or a security incident to execute and you want to have all of that as an integrated team integrated process integrated technology stack and this is something that I very care I cared very deeply about as both a Splunk customer and a Splunk CTO that I see time and time again across the board so Patrick I'll leave you with the last word the final three minutes here and I don't see any open questions so please take us home oh man see how you think we spent hours and hours prepping for this together that that last uh uh 40 seconds of your talk track is probably one of the things I'm most passionate about in this industry right now uh and I think nist has done some really interesting work here around building cyber resilient organizations that have that has really I think helped help the industry see that um incidents can come from adverse conditions you know stress is uh uh performance taxations in the infrastructure service or app layer and they can come from malicious compromises uh Insider threats external threat actors and the more that we look at this from the perspective of of a broader cyber resilience Mission uh in a wartime mindset uh I I think we're going to be much better off and and will you talk about with operationally minded ice hacks information sharing intelligence sharing becomes so important in these wartime uh um situations and you know we know not all ice acts are created equal but we're also seeing a lot of um more ad hoc information sharing groups popping up so look I think I think you framed it really really well I love the concept of wartime mindset and um I I like the idea of applying a cyber resilience lens like if you have one more layer on top of that bottom right cake you know I think the it lens and the security lens they roll up to this concept of cyber resilience and I think this has done some great work there for us yeah you're you're spot on and that that is app and that's gonna I think be the the next um terrain that that uh that you're gonna see vendors try to get after but that I think Splunk is best position to win okay that's a wrap for this special Cube presentation you heard all about the global expansion of horizon 3.ai's partner program for their Partners have a unique opportunity to take advantage of their node zero product uh International go to Market expansion North America channel Partnerships and just overall relationships with companies like Splunk to make things more comprehensive in this disruptive cyber security world we live in and hope you enjoyed this program all the videos are available on thecube.net as well as check out Horizon 3 dot AI for their pen test Automation and ultimately their defense system that they use for testing always the environment that you're in great Innovative product and I hope you enjoyed the program again I'm John Furrier host of the cube thanks for watching

>>from around the >>globe. It's the Cube with digital coverage of AWS reinvent 2020 sponsored by Intel, AWS and our community partners. Welcome back to the Cubes Coverage Cube Virtual coverage of AWS reinvent 2020 which is also virtual. We're not in person this year. We're doing the remote interviews. But of course, getting all the stories, of course, reinvented, full of partnerships full of news. And we've got a great segment here with Salesforce and AWS. Eileen Schneider Win, who is the senior vice president of strategic partnerships, and Maureen Lundergan, director of worldwide training and certification address. Maureen Eileen. Great to see you. Thanks for coming on. And nice keynote. What's up with the partnership? Give us a quick over your lien. What's what's the Salesforce? A day was partnership. Take a minute to explain it. >>Sure, thank you. I think I'll start out by talking about how sales were thinks about strategic partnerships. So for us, it's really it starts with the customer and being where they want us to be. And we've been so fortunate to be in this relationship with AWS for over five years now. It really started out as an infrastructure based partnership as we were seeing customers start their digital transformation journeys and moved to the cloud. But what has been really exciting as we've spent more time working together and working with our customers, we have now started to move into emotion of really bringing some differentiated solutions between the number one CRM and the most broadly adopted cloud platform to market for customers, uh, in areas like productivity, security and training and certification which will talk more about in a bit Onda. Specifically, some of those solutions are service Cloud Voice Product, which we launched this summer, announced last fall, a dream force as well as our private connect product which creates great security between the AWS platform and Salesforce. >>What? Some of the impact area is actually the two clouds you mentioned CRM and Amazon. We're seeing data obviously being a part of the equation ai machine learning. Um, what's been the impact I lean to your customer specifically >>Yeah, so specifically I'd call out to areas what one is really that foundation of security. Specifically, as government regulations and data security has become more critical, we've really been able to partner together there and and that's been crucial for certain customers in certain regions as well a certain industries like government. Uh, in addition, I would call out again that service cloud voice partnership, a zoo. We see the world moving more digital. This really allows customers to go quickly and, uh, turn on. There are solutions from anywhere at any time. >>You know, I love that any time, anywhere kind of philosophy. Now more than ever. With the pandemic collaborations required more than ever, and some people are used to it. You know, I've seen more technical developers have used to working at home, but not everyone else. The workforce still needs to get the job done. So this idea of collaboration, what is the impact in for your customers and how are you guys helping them? Because I think this is a big theme of this year That's gonna not only carry over, even when the pandemics over this idea of anywhere is all about collaboration. >>Yeah, I totally agree. I mean, the exciting thing about the partnership is we've been talking digital transformation with customers for years, but I think what we saw at the beginning of this year, as we were all thrown home and forced Thio, you know, fire up our jobs from our bedrooms or our garages. It really came down to our ability to work quickly and turn on our solutions. It's and these unprecedented times, while we're going through this now, everything we're building really is the future. So it's not just the tools and technology, it's also the processes and how work is getting done that's really come into play. But again, I'll anchor back to that service blood voice solution. So for us, call centers were completely disrupted. You think of call centers and you know, pre 2020 everyone sitting in a room together, agent side by side managers, having the ability to pop over and assist with a call or managing escalation. Now that's been completely disrupted. And it's been very exciting for us to work with our customers, to reimagine what that looks like again both from a technology perspective but also from a process perspective. And along with that, you had to reimagine how employees are learning these solutions and being trained. So we're very grateful for the partnership with AWS, and we're doing some really amazing things together. >>You know this is one of my favorite things about the enablement of Cloud. But in Salesforce has been a pioneer. As you pointed out, this connectedness feature has always been there. Now more than ever, it's highlighted with call centers, not the call center more. It's the connected center. People are connecting. And I think, Maureen, I think last time you're in the Cube. A few years ago, we were talking about virtual training online, and that was pre pet pandemic. Now you're seeing surge of online training not only because people's jobs are changing and being displaced or even shut down. New roles are emerging, right? So the virtual space Virtual world digital world, there's everyone's getting more digital faster now. How has the cove in 19 changed the landscape for training and skills demand? From your perspective, I >>mean at AWS, we've been working on our virtual capabilities for a while, so we had a digital platform out. We had a great partnership, have a great partnership with Salesforce and putting content on trailhead. We had to pivot very rapidly to virtual instructor led training and also our certifications right. We were lucky that our vendors partnered with us rapidly to pivot certification toe proctor environment. And this actually has helped to expand our ability to deliver the both training and certification in locations that we may not have been able to do before. And we have seen while it slowed. Initially, we have seen such an uptake and training over the last, um, 6 to 8 months. It's been incredible. We've been working with our customers. We've been working with our partnerships like Salesforce. We've been pushing more content out. I think customers and partners air really looking for how toe upscale their employees, uh, in a in a way, that is easy for them. And so it's actually been a great surprise to see the adoption of all of our curriculum over the last couple months. >>Well, congratulations knows a lot more work to do. It's gonna get more engaging, more virtual, more rich media. But this idea of connecting lean I wanna get back to the your your thoughts earlier, um, mentioned trailhead. Maury mentioned trailhead. You guys were doing some work with the virtual training there. What? Can you tell us more about that? And how that's going so far? >>Sounds great. So trailhead is our free online learning platform. And it really started because we have a commitment to democratizing anyone's ability to enter our industry s so you could go there and both online or with our trail head go app and experience what we call trails, which our paths for learning again on different areas of knowledge and skills and technology. And late last year, we announced an incredible partnership with AWS, where we're bringing the AWS learning content and certification to trailhead. And this is really again driven by our customers to are asking us to do our part in bringing mawr of these skilled resource is into the ecosystem. But something I also wanna highlight is I feel like this moment that we're in right now has also forced everyone to reimagine how they're doing learning even businesses, how they're training their employees and again having this free platform. And the partnership with AWS has really helped us go very quickly and create a lot of impact with customers. >>I just want to say I love the trailhead metaphor because, you know, learnings nonlinear. It's asynchronous. You've got digital. So you want to take a shortcut? You gotta know the maps And I think that's, you know, people wanna learn versus the linear, you know, tracks on. And I think that's how people have been learning online. And AWS has got a data driven strategy. Marine, I want to get your take on this because as you bring content on the trailhead, can you talk about how that works? And how you working with Railhead? >>Yeah. I mean, we started conversations a couple of years ago, and I think the interesting thing is that Salesforce and AWS have a very similar philosophy about bringing education to anybody who wants it. You'll hear me talk a lot about that in my leadership talk at reinvent, but, um, we really believe that we wanna provide content where learners learn and salesforce and trailhead have this amazing captured audience. And, um, you know, we're really looking at exploring. How do we bring education to people that might not otherwise have access to it? On DSO, we started with really foundational level content, a ws Cloud, Practitioner Essentials and AWS Cloud for technical professionals. And the interesting thing is, both of those courses have been consumed. ITT's not enough to just put it out there you want people to complete the trails and we've seen such an amazing uptake on the courses with, like 85% completion rate on one of the trails and 95% completion rate on the other one. And to keep customers engage is really a credit toe. How trailhead is designed. >>You know, it's interesting. The certification people don't lose sight of the fact that that's kind of the in the end state. Then you start a new trail. I mean, this >>is >>the this is really what it's all about. Can you just share some observations that you've seen for people that are coming into this now to say, Hey, okay, what do I expect? And what are some of the outcomes? >>Yeah, I mean, first, what we're seeing is our customers are being very clear that they need more of these skills. So we're also seeing the need for Salesforce administrators out in our ecosystem. And I think with everything going on this year, it's also an opportunity for people who are looking to pivot. Their careers were moving to tech and again, this free learning platform and the content that we're bringing has been really powerful and again for us. The need for salesforce administrators and cloud practitioners out in our ecosystem are in more demand than ever. >>Maureen. From your perspective on AWS, you see a lot of the new new jobs cybersecurity, Brazilian openings. Where do you see the most needs on for training and certification? Can you highlight some of the areas that are emerging and trending, if you will? >>I would say it's interesting because what we're seeing is is both ends of the spectrum. People that are really trying to just really understand who cloud is, whether it's, ah, business leader within an organization, a finance person, a marketing person. So cloud practitioner, you know, we're seeing huge adoption and consumption on both our platform in on Salesforce. But also some other areas are security and machine learning machine learning. We have five learning paths on our digital platform. We've also extended that content out to other platforms and the consumption rate is significant. And so, you know, I think we're seeing, uh, customers consume that. But the other thing that we're doing is we're really focused on looking at who doesn't have access to education and making sure that's available. So I think the large adoption of Cloud Practitioner in Practitioner is is largely due to the other things that we're doing with programs like Restart our academic programs >>to close it out, Alina want to get your thoughts and final thoughts on the relationship and how people can find more information about this partnership and what it means. Take, take it home. >>Thank you for asking. So just like everything else we've been talking about today, we've had to reimagine how we're showing up at this event together and very exciting thing that my team has created is the AWS Virtual Park. And anyone can access that at salesforce dot com slash aws. So please go check it out. You can experience our products here from our experts and experience its innovation on your own. >>Great insight. Thanks for coming on and participating. Really appreciate Salesforce and AWS two big winning leading clouds working together Trail had great great offering. Thanks for coming on sharing the news. Appreciate >>it. Thank you. >>It's the Cube virtual covering. It was reinvent virtual. Of course. Check out all the information here All three weeks. Walter Wall coverage. I'm John Fury with the Cube. Thanks for watching

>>long from Las Vegas. It's the Q covering a ws re invent 2019. Brought to you by Amazon Web service is and in Came along with its ecosystem partners. >>Hey, welcome back to the Cube. Lisa Martin at AWS Reinvent in Vegas. Very busy. Sands Expo Center. Pleased to be joined by my co host this afternoon. Justin Warren, founder and chief analyst at Pivot nine. Justin, we're hosting together again. We are. >>It's great to be >>here. It's great to have you that. So. Justin Meyer, please welcome a couple of our cue ball. Um, back to the program. A couple guys from nut up. We have Anthony Lie, the S B, P and G m of the Cloud business unit. Welcome back at the >>very much great to be here >>and color coordinating with Anthony's Jandi Stephenson, Chief Technology officer and GPS Cloud. Welcome back. >>Thank you. Thank you >>very shortly. Dress, guys and very >>thank you. Thank you. It's, uh, the good news Is that their suits anymore. So we're not going to have to wear ties >>comfortable guys net up a w s this event even bigger than last year, which I can't even believe that 65,000 or so thugs. But, Anthony, let's start with you. Talk to us about what's new with the net up AWS partnership a little bit about the evolution of it. >>Yeah. I mean, you know, we started on AWS. Oh, my gosh. Must be almost five or six years ago now and we made a conscious effort to port are operating system to AWS, which was no small task on dhe. It's taken us a few years, but we're really starting to hit our stride Now. We've been very successful, were on boarding customers on an ever increasing rate. We've added more. Service is on. We just continue to love the cloud as a platform for development. We can go so fast, and we can do things in in an environment like aws that, frankly, you just couldn't do on premise, you know, they're they're complexity and EJ ineighty of on premise was always a challenge. The cloud for us is an amazing platform where we can go very, very fast >>and from a customer demand standpoint. Don't talk to me about that, Chief technologist. One of the thing interesting things that that Andy Jassy shared yesterday was that surprised me. 97% of I t spend is still on from So we know that regardless of the M word, multi cloud work customers are living in that multi cloud world. Whether it's by strategy, a lot of it's not. A lot of it's inherited right, but they have to have that choice, right? It's gonna depend on the data, the workload, etcetera. What can you tell us about when you're talking with customers? What what? How are they driving NetApp evolution of its partnership with public provider AWS? >>So actually, I don't know if it's the desired state to be running in a hybrid, mostly cloud fashion, but it's it's It's driven by strategy, and it's usually driven by specific workloads and on the finding the best home for your application or for your workers at any given time. Because it's it's ultimately unrealistic for on premise customers to try to compete with like a machine and keep learning algorithms and the rate of development and rate off basically evolution in the cloud. So you always have to be there to be able to stay competitive, so it's becoming a part of the strategy even though it was probably asked that developers that drove a lot off cloud adoption to begin with. Maybe, maybe not. Not in favor of the c i o r. You have, like a lot of Cloud Cloud sprawling, but there's no longer sprawling it. It's part of the strategy before every company in my way >>heard from any Jesse in the keynote yesterday about the transformation being an important thing. And he also highlighted a lot of enterprise. Nedda has a long history with enterprise, Yes, very solid reputation with enterprise. So it feels to me like this This is an enterprise show. Now that the enterprise has really arrived at with the cloud, what are you seeing from the customers that you've already had for a long time? No, no, no, I'm familiar with it. Trust Net up. We're now exploring the Clouded and doing more than just dipping their toe in the water. What are they actually doing with the cloud and and we'll get up together, you know, >>we see and no one ever growing list of workload. I think when people make decisions in the cloud, they're not making those traditional horizontal decisions anymore. They're making workload by workload by workload decisions and Internet EPPS history and I think, uh, performance on premises, given customers peace of mind now in the cloud, they sort of know that what's been highly reliable, highly scaleable for them on premise, they can now have that same confidence in the cloud. So way started. Like just like Amazon. We started off seeing secondary workloads like D r Back Up Dev ops, but now is seeing big primaries go A s, a p big database workloads, e commerce. Ah, lot of HBC high forming compute. We're doing very well in oil and gas in the pharmaceutical industries where file has been really lacking on the public cloud. I think we leaned in as a company years ago and put put, put a concerted effort to make it there. And I think now the workloads a confident that were there and we can give them the throughput. We give them the performance on the protocols and now we're seeing big, big workloads come over to the public clouds. >>And he did make a big deal about transformation being important. And a lot of that was around the operational model. Let's let's just the pure technology. But what about the operating model? How are you seeing Enterprises Transformer? There's a lot of traditionally just taken a workload, do a bit of lift and shift and put it to the cloud. Where are they now transforming the way they actually operate? Things because of >>cloud? Absolutely. I mean, they have to They have to adopt the new technologies and new ways of doing business. So I mean, I think they are actually celebrating that to answer point. I think this is not a partnership and we're partnering with. We have a very unique story. We're partnering with all of them and have really deep engineering relationship with all of them. And they are now able to go after enterprise type workloads that they haven't been gone. I've been able to go after before, so that's why it's such a strategic strategic relationship that we have with all of them. That sort of brings in in the freedom of choice. You can basically go everywhere anywhere. That, in my opinion, is that true hyper cloud story lot has always been really difficult. But with the data management capabilities of not top, it's really easy to move my greater replicate across on premise toe are hyper scaler off choice. >>I mean, I think you know, if you're in enterprise right now, you know you're a CEO. You're probably scared to death of, like, being uber, you know exactly on. Uh, you know, if you're you know, So speed has now become what we say. The new scale they used to be scaled is your advantage. And now, if you're not fast, you could be killed any day by some of these startups who just build a mobile app. And all of a sudden they've gotten between you and the customer and you've lost. And I think CEOs are now. How fast are we going? How many application developers do we have? And did a scientist do we have? And because of that, that they're seeing Amazon as a platform for speed on. So that's just that paranoia. I think digital transformation is driving everybody to the cloud. >>You're right. If we look at transformation if a business and Andy Jassy and John for your talked about this and that exclusive interview that they did the other day. And Andy, if you're and a legacy enterprise and you're looking at your existing market share segment exactly, and you're not thinking there's somebody else. What assisting on there on the side mirror? Objects in mirror are closer. Not getting ready for that. You're on the wrong. You're going to be on the wrong side of that equation. But if we look at cloud, it has had an impact on traditional story one of naps. Taglines is data driven. If we look at transformation and if we'll even look at the translation of cloud in and of itself, data is at the heart of everything. Yes, and they talk to us about net APS transformation as cloud is something that you're enabling on prime hybrid multi cloud as you talked about. But how is your advantage allowing customers to not only be data driven, but to find value in that data that gives them that differentiation that they need for the guy or a girl that's right behind them. I already did take over. >>Well, I think if you're you know, if you're an enterprise, you know, the one asset you have is data. You have history now >>a liability Now with an asset. >>Can they can they do anything with it. Do they know where it is? Do they know how to use it where it should be, you know, Is it secured? Is it protected all of those things? It's very hard for enterprise to answer those questions. What one end up, I think it's done incredibly well, is by leaning in as much as we did onto AWS way. Give our customers the absolute choice to leave our on premise business and a lot of people, I think years ago thought we were crazy. But because now we've expanded our footprint to allow customers to run anywhere without any fear of lock in, people will start to see us now not as a storage vendor but as a strategic partner, and that that that strategic partnership is really has really come about because of our willingness to let people move the data and manage the data wherever they needed to be. On that something our customers have said, you know, used to be a storage vendor on along with the other storage vendors and now all of a sudden that we're having conversations with you about strategy where the data should be, you know who's using it is. It's secured all of those kinds of conversations we're having with customers. >>You mentioned moving data, and that was something that again came up in the keynote yesterday. And he mentioned that Hey, maybe instead of taking the data to the computer, we should bring the computer's data. That's something that Ned Abbas has long actually talked about. I remember when you used to mention data fabric was something about We want to take your data and then make it available to where the computer is. I'd like you to talk it through that, particularly in light of like a I and ML, which is on the tip of everybody's tongue. It's It's a bit of I think, it's possibly reaching the peak of the hype cycle at the moment s o what our customers actually doing with their data to actually analyze it? Are they actually seeing real value from machine learning? And I are We still isn't just kicking the tires on that. >>I mean, the biggest problem with deep learning and machine learning is having our accumulating enough on being able to have the data or lessening that gravity by being able to move it then you can take advantage off states maker in AWS, the big Cleary and Google, whatever fits your needs. And then, if you want to store the results back on premise, that's what we enable. With it out of harbor having that free flowing work clothes migration has to count for data. It's not enough to just move your application that that that's the key for machine learning and thought the lakes and others, >>absolutely in terms of speed. Anthony mentioned that that's the new scale. How is flash changing the game >>with perspective, you know, flashes a media type, but it's just, you know, the prices have come down now that you know the price performance couple flashes an obvious thing. Um, and a lot of people are, I think now, making on premise decisions to get rid of spinning disc and replaced with Flash because the R. O. I is so good. Tco the meantime between failures, that's that's so many advantages that percent workloads. It's a better decision, of course. You know, AWS provides a whole bunch of media Onda again. It's just you like a kid in a candy store, you know, as a developer, you look at Amazon. You're like, Oh, my God. Back in the day, we had to make, like, an Oracle decision and everything was Oracle. And now you can just move things around and you can take advantage of all sorts of different utilities. And now you piece together an application very differently. And so you're able to sort of really think I think Dion sees point. People are telling us they have to have a date, a strategy, and then, based on the data strategy, they will then leverage the right storage with the right protocols. They'll then bring that to compute whatever compute is necessary. I think data science is, you know, a little fashion, you know, conscious. Right now, you know, everybody wants to say how many did a scientist they have on their teams? They're looking for needles in haystacks. Someone, they're finding them. Some of them are but not doing it, I think it is. Makes companies very, very nervous. So they're going the results, gonna trying as hard as they can to leverage that technology. >>And you'll see where is that data strategy conversation happening if we think about the four essentials that Andy Johnson talked about yesterday for transformation in one of the first things he said was, it has to be topped at senior level decision. Then it's going to be aggressively pushed down through the organization. Are you seeing this data strategy at the CEO level yet? >>Yeah, we are. But I'm also seeing it much lower. I mean, with the data engineers with the developers, because it's asked, is it is extremely important to be developing on top off production data, specifically if you're doing machine and deep learning. So I think it's both. I think the decision authority has actually moved lower in the company where the developers are the side reliability engineers are actually choosing more technology to use. That fits the product that they are actually creating off course. The strategy happens at the tall, but the influencer and the decision makers, in my opinion, has been moving lower and within the organization. So I'm basically contradicting what yes is a. But to me that is also important. The days off a C t o r C E o. Forcing a specific platform or strategy on to developers. Those days are hopefully gone. >>I think if you're a CEO and you know of any company in any industry you have to be a tech company, you know, it used to be a tech industry, and now every company in the world is now tech. Everyone's building APS. Everyone's using data. Everybody's, you know, trying to figure out machine learning. And so I think what's happening is CEOs are are increasingly becoming technically literate. They have to Exactly. They're dead if they're not. I mean, you know whether your insurance company, your primary platform, is now digital if you're a medical company or primary platform additional. So I think that's a great stat. I saw that about two and 1/2 years ago. The number of software engineering jobs in non tech surpassed the number of jobs in tech, so we used to have our little industry and all the software engineers came to work for tech companies. Now there are more jobs outside the tech segment for engineers, and there are in the text >>well, and you brought up uber a minute ago and I think of a couple of companies examples in my last question for you is real. Rapid is about industries. You look at uber for example, what the fact that the taxi cab companies were transitional. And we're really eager to, you know, AP, if I their organizations, and meet the consumer demand. And then you look at Airbnb and how that's revolutionized hospitality or pellet on how it's revolutionized. Fitness Last question, Jonesy, Let's go for you. Looking at all of the transformation that cloud has enabled and can enable what industry you mentioned when the gas. But is there any industry that you see right now that is just at the tipping point to be ableto blow the door wide open if they transform successfully? >>Well, I mean way are working with a lot off pharma companies and genome sequencing companies that have not actually working with sensitive data on if those companies, I mean, these are people's medical histories and everything, so we're seeing them moving now in close into the cloud so those companies can move to the cloud. Anybody can move to the cloud. You mean these sort of compliancy scaremongering? You cannot move to the cloud because of P. C. I or hip power. Those days are over because aws, Microsoft and Google, that's the first thing they do they have? Ah, stricter compliancy than most on premise Homemade tartar sentence. So I see. I see that industry really moving into the cloud. Now >>who knows what a ws re invent 2020 will look like Gentlemen I wish we had more time, but thank you. Both Young and Anthony were talking with Justin and me today sharing what's new with netapp. What? You guys are enabling customers. D'oh! In multiple. Same old way. We appreciate your time where my car is. Justin Warren, I'm Lisa Martin. You're watching the Cube from AWS or reinvent 19 from Vegas. Thanks for watching.

(upbeat music) >> Announcer: Live from Las Vegas, it's theCUBE. Covering AWS re:Invent 2019, brought to you by Amazon Web Services and Intel, along with it's Ecosystem partners. >> Good morning, welcome back to theCUBE, Lisa Martin live at AWS re:Invent. Day two of theCUBEs coverage. I am with Stu Miniman, and Stu and I are pleased to welcome a couple of guests of our own from Dell EMC. To my left is Joe CaraDonna, the VP of engineering technology. Welcome to theCUBE. >> Good to be here. >> And then one of our alumni, we've got Bob Ganley, senior consultant Cloud product marketing. Welcome back. >> Thank you. Glad to be here. >> So guys, here we are at AWS re:Invent, with 60 plus thousand people all over the strip here. We know Dell technologies, Dell EMC well, big friends of theCUBE. Joe, Dell, AWS, what's going on? You guys are here. >> Apparently Cloud is a thing. >> Lisa: I heard that. I think I've seen the sticker. >> Yeah, you've seen the sticker. Over the last year, we've been busy rolling out new Cloud services. I mean, look around right. It's important to our customers that we can deliver hybrid Cloud solutions to them, that are meaningful to them and to help them get their workloads to the Cloud. and to be able to migrate, move between Clouds and data center. >> Yeah, Joe, maybe expand a little on this. So we watched when VMware made the partnership announcement with AWS a couple of years ago, which sent ripples through the industry. And VMware has had a large presence at this show, we've seen a lot of announcements and movements with Dell, Dell technologies, Dell EMC over the last year or more, but this is the first year that Dell's actually exhibiting here so help explain for our audience a little bit that dynamic with leveraging VMware and also what Dell is bringing to this ecosystem. >> Yeah, sure. I mean, the way we think about it is, it's really a multi-level stack, you have the application layer and you've got the data layer. So applications with VMware, we're focusing on enabling applications, whether they're VMs or containerized now, being able to move those to the Cloud, move them on-prem. Same is true for data. And data is actually the harder part of the problem, in my opinion, all right, because data has gravity. It's just big, it's hard to move, the principles of data in the Cloud are the same as they are on-prem where you still have to provide the high availability and the accessibility and the security and the capacity and scale in the Cloud as you would in the data center. And what we've been doing here, with our Cloud storage services is bringing essentially our range as a service, to the Cloud. >> You talked about some of those changes and absolutely, data's at the center of everything. We've been saying for a long time, you talk about digital transformation, the outcome of that is if you're not letting data drive your decisions, you really haven't been successful there. One of the biggest challenges beyond data, is the applications. Customers have hundreds, if not thousands of applications, they're building new ones, they're migrating, they're breaking them apart in to micro services, Bob, help us understand where that intersects with what you're talking with customers about. >> Yeah, absolutely. So one of the reasons we're here is most organizations today are leveraging some public Cloud services and at the same time, most organizations have investment on-prem infrastructure. I think we heard Andy say in the keynote yesterday, 97% of all enterprise IT spend is on-prem right now. So organizations are trying to figure out how to make those work together. And that's really what we're here to do, is help organizations figure out how to make their big on-prem investment work well with their public Cloud investment and AWS is clearly the leader there in that space and so we're here to work with our customers in order to help them really bridge that gap between public Cloud and private Cloud and make them work together well. >> And Bob, where does that conversation start? Because one of the other things that Andy talked about is that, his four essentials for transformation is it's got to start at the senior executive level, strategic vision that's aggressively pushed down throughout the organization. Are you now having conversations at that CEO level for them to really include this value of data and apps as part of an overall business transformation? >> Yeah, definitely. If you think about it, it's all about people, process and technology. And technology is only a small part of it. And I think that's the important thing about what Andy was saying in the keynote yesterday, is that it's about making sure that Cloud as an operating model, not as a place, but as an operating model, gets adopted across your organization. And that has to have senior leadership investment. Yeah, they have to be invested in this move, but both from an applications and a data perspective. >> Yeah and on the technology side of things, you want to be able to give the developers the tools they need so they can develop those Cloud native applications. So in the on-prem sphere, we have ECS or objects stored kind of technology for bringing an object to data center. We're plugging into kubernetes every which way. With VMware, we're developing CSI drivers across our storage portfolio to be able to plug in to these kubernetes environments. And we're enabling for data and application migration across environments, as well. >> In many ways, Joe, we've seen, there's a really disaggregation of how people build things. When I talk to the developer community, hybrid is the model that many of them are using, but it used to be nice in the old days as, I bought a box and it had all the feature checklist that I wanted. Now, I need to put together all these micro services. So help us understand some of those services that you provide everywhere. >> It's a horror, right? What did Andy Jassy say yesterday, these are your father's data requirements, right? And he's right about that because what's happening with data is it's sprawling. You have them in data centers, you have them in Cloud, you have them in multiple Clouds, you have them in SaaS portals, you have it on file services and blog services, and how do you wrap your arms around that? And especially when you start looking at use cases like data analytics and you start thinking about data sets, how do you manage data sets? Maybe I had my data born on-prem and I want to do my analytics in the Cloud, how do I even wrap my hands around data sets? So we have a product called ClarityNow, that in fact does that. It indexes billions of files and objects across our storage, across our Cloud services, across Amazon S3, across third party NAS systems as well, and you can get a single pane of glass to see where your files and your objects reside. You can tag it, you can search upon it, you can create data sets based on search, on your tags and your meta data, to then operate on those data sets. So the rules, data's being used in new and different ways, they need new ways to manage it and these are some of the solutions that we're bringing to market. >> You mentioned Multicloud, I wanted to chat about that. We know it's not a word that AWS likes. >> Joe: Can we say that here? >> Yeah. >> On theCUBE, absolutely. >> This is theCUBE, exactly. But the reality is, as we talked to, and Stu knows as well, most CIO's say, we've inherited this mess, of Multicloud, often symptomatically, not as a strategic direction, give us an overview of what Dell EMC, I'll ask you both the same question, and Joe we'll start with you, how are you helping customers address, whether they've inherited Multicloud through M&A acquisition, or developer choice, how do they really extract value from that data, that they know, there's business insights in here that can allow us to differentiate our business, but we have all of this sprawl. What's the answer for that? >> Well some of that is ClarityNow, that I was talking about, the ability to see your data, because half the battle is seeing your data, being able to see it. Also, with Multicloud, whether you inherit it, or whether it was intentional or not, we're setting out our solutions are Multicloud, you can run them anywhere. But not only that, the twist to Multicloud is, well what if you made your data available to multiple clouds simultaneously. And why would you want to do that? One reason we want to go that path is maybe you want to use the best services from each Cloud. But you don't want to move your data around because again it has gravity and it takes time and money and resources to do that. Through our Cloud Storage Services, it's centralized, and you can attach to whatever Cloud you want. So some of that is around taking advantage of that, some of that's around data brokering, we heard Andy talk a little bit about that this morning, where you may have data sets that you want to sell to your customers and they may be running in other Clouds. And some of that is, you may want to switch Clouds due to the services they have, the economics or perhaps even the requirements of your applications. >> Yeah, from an application perspective, for us it's really about consistency, right. So we say it's consistency in two ways, consistent infrastructure and consistent operations. And so we talk about consistent infrastructure, we want to help organizations be able to take that virtual machine and move it. Where is the best place for it, right? So it's about right workload, right Cloud. And we talk about application portfolio analysis and helping organizations figure out, what is that set of applications that they have? What should they do with those applications? Which ones are right to move to Cloud? Which ones should they not invest in and kind of let retire? And so that's another aspect of that people and process thing that we talked about earlier. Helping organizations look at that application portfolio and then take that consistent infrastructure, use that multiple Clouds with that, and then consistent operations which is a single management control plane that can help you have consistency between the way you run your on-prem and the way you run your public Cloud. >> Yeah and give them the freedom to choose the Cloud they want for the workload they want. >> And is that the data level where the differences between, we'll say the public Cloud files, is most exposed? Is it at the data layer where the differences in, we'll say AWS versus it's competitors, is that where the differences between the features and the functionalities is most exposed? >> I think so. I think that one place that we think public Cloud is weak, is file. File workloads. And one of the things we're trying to do is bring consistent file, whether it's on-prem or across the Clouds, through with our Cloud Storage Services at Isilon and the scale and the throughput that those systems can provide, bringing consistent file services, whether it's NFS, SNB or even HDFS or the snapshotting capabilities. And as equally as important, that native replication capabilities across these environments. >> I wonder if we could talk a little bit about some of the organizational changes, the transformation was one of the key takeaways that Andy Jassy was talking about in his three hour keynote yesterday. We've watched for more than a decade now, the role of IT compared to the business, and we know that it's not only does IT need to respond to the business but that data discussion we have better be driving the business, because if you're not leveraging your data, your competition definitely will. I want to get your opinion as to just the positions of power and who you're talking to and what are some of the successful companies doing to help lead this type of change. >> I'll go. I think IT and business are coming together more, the lines are blurring there. And IT's being stretched in to new directions now, they have to serve customers with new demands. So whether it's managing storage or AIs or servers, or VMware environments now being pushed in to things like now managing analytics, kind of environment, right? And all the tools associated with that. Whether it's Cassandra or TetraFlow, being able to stretch, and being able to provide the kind of services that the business requires. >> And up the stack too. >> Yeah. When you talk about the fact that business and IT need to work together, it's kind of like an obvious statement, right? What that really means is, that there needs to be a way to help organizations get to responding more quickly to what the needs of the business are. It's about agility. It's about the ability to respond quickly. So you see organizations moving from waterfall process for development to Agile and you see that being supported by Cloud native architectures, and organizations need to take and be able to do that in a way that preserves the investments that they have today. So most organizations are on this journey from physical to virtual to infrastructure as a service, to container as a service and beyond and they don't want to throw away those investments that they have in existing virtualization, in existing skill sets, and so what we're really doing is helping organizations move to that place where they can adopt Cloud Native while bringing forward those investments they have in traditional infrastructure. So we think that's helping organizations work better together, both from a technology and a business perspective. >> And as far as the kind of people we talk to, I mean data science is growing and growing, data science is becoming more part of the conversation. CIO's as well, right? I mean behind all this, again, is that data that we keep coming back to. You have to ensure the governance of that data, right? That it's being controlled and it's within compliance. >> So we started off the conversation talking about that this was Dell's first year. So 60, 65,000 here. There's a sprawling ecosystem. One of the largest ones here. What do you want to really emphasize? Give us the final takeaway as to how people should think about Dell Technologies in the Cloud ecosystem. >> Yeah, I think, we know our customers want to be able to leverage the Cloud, the kind of conversation we're having with customers is more around, how can I use the Cloud to optimize my business? And that's going to vary on a workload by workload basis. We feel it's our job to arm the customer with the tools they need, right? To be able to have hybrid Cloud architectures, to be able to have the freedom to run the applications wherever they want, consume infrastructure in a way they want it to be consumed, and we're there for them. >> Yeah, I think it's really about a couple of things. One is trust, and the other one is choice. So if you think about it, organizations need to move in to this Cloud world in a way that brings forward those investments that they've made. Dell EMC is the number one provider of hyper-converged infrastructure, of servers, and we can help organizations understand that Cloud operating model, and how to bring the private Cloud investments that they have today forward to work well with the public Cloud investments that they're making, clearly. So it's really about trust and choice of how they implement. >> Trust is a big deal. >> Absolutely. >> I mean, we're the number one storage vendor for a reason. Our customers trust us with their data. >> Well Joe, Bob, thank you so much for joining me and Stu on theCUBE. >> Thank you. >> Thank you. >> And sharing with us what you guys are doing at Dell, AWS. The trust and the choice that you're delivering to your customers, we'll see you at Dell Technologies World. >> We'll see you here next year. >> All right. You got it. All right. For our guests and for Stu Miniman, I'm Lisa Martin and you're watching theCUBE, day two of our coverage of AWS re:Invent '19. Thanks for watching. (upbeat, title music)

>> Announcer: Live from Anaheim, California. It's theCUBE, covering Nutanix.NEXT, 2019. Brought to you by Nutanix. >> Welcome back the theCUBE's live coverage of Nutanix.NEXT here in Anaheim California. I'm your host, Rebecca Knight. Along with my co-host John Furrier. Here we are, we're at day two, John, this conference, I gotta say it's pretty cool. 6500 people, we're steps away from Disneyland, and, you go to a lot of these things every year. I also do about a dozen or so for theCUBE. So in other words, we're veterans of this kind of thing. This does seem to have a different vibe and I think it really gets to the kind of company Nutanix is, and where it is in its journey. >> Nutanix is still a small company even though they're 10 years old, as Dheeraj talks about. The numbers aren't massive, I mean, we go to a lot of other shows where it's 15,000, Amazon Web Services just had an event in London, Dave Vellante was out there covering, Stu was covering Red Hat summit in Boston this week, tons of events going on. Amazon Web Services' summit in comparison was 12,500 people, 22,000 registered, that's a summit in London. It's not the re:Invent main conferences like 30,000 people. And that's always sold out, so they got a lot, in terms of attendees numbers they're still in the entry level, mid range growth. But I think that's okay, they like that culture and I think the story here at this show is intimacy, they would rather err on the side of better content and more intimate opportunities for their customers to really get the straight scoop. And I think it's less of a conference slash trade show, more of an intimate relationships where they can provide feedback, for customers to give feedback, and for Nutanix to figure out with the customers how to connect to them. So, I think the story here is, Nutanix is growing up as a company, they're 10 years old and they gotta go the next level and the management team has technical chops, and they have a long term view. They have that 20 mile stare, they can see out and they're trying to figure it out. I still think that the numbers are light on their forecast I still think that there's some sandbagging going on there, I'm not saying they're sandbagging, but I mean, I think, you look at Essentials, which is the enterprise and then multi-cloud, the numbers that we're seeing at Wikibon are much bigger, and Amazon reflects that. So I think they're being cautious but smart about how they execute off their success they've had in the first 10 years to go the next 10 to 20 years and I think that's clear in the management team, that they wanna build a durable company. >> Well exactly, and I think that that's what's really coming through, is that this is, as you said, they're growing up. This is a real coming of age moment for them, they've celebrated the 10 years. Okay, so what kind of company are we? Who do we want to be? And what's coming through is that from the technology side, they get it. They say, I'm sort of reminded of the Henry David Thoreau quote, our life is frittered away by detail, simplify simplify simplify, that's what customers want. They want this one click data recovery, they want their credentials to be assumed. You know who I am, I'm safe to be in here. Fixing things, dealing with that. So I think that they get that, that simplicity is key. They also get customer service. I mean their Net Promoter scores, as we've noted, are in the 90s, that's just unheard of. >> It's monster, monster numbers. >> It really is and so they get it. We need to be responsive to customers, we need to have a personal relationship with these, because it's not just organizations, it's people at the other end of these transactions. >> I mean, I think Nutanix, one of the stories that's popping out in the hallways as I walk around and talk to customers and people and the company and partners, is that Nutanix has a lot of headroom in their growth. I think Wall Street is interesting and you heard Dheeraj talk about that yesterday, about having a new customer, you asked him about his management style and he said quote, I have a new customer called Wall Street. And I have to balance that against mainstream enterprise which is his core business. And so he as a CEO and the company are dealing with this new stakeholder called public company customer retail stock buyers. That's a short term cycle and I think, if you look at their stock, they had a big knife edge drop in the past quarter. And I think the shorts are circling, it's a whole nother dynamic, it's a whole nother theater for Nutanix to deal with, and I think that's something that they gotta get used to. And he was clear, he said I'm addressing it, we're gonna balance it, but they gotta be thinking long term because this company has a lot more to do and their customer base are risk takers. Because everyone we talk to has this different style or persona. They're smart, they're usually engineering oriented, they love engineered solutions. And they're taking chances. And everyone who's taken the chance with Nutanix, has paid off. That seems to be the theme. And as we were talking before we came on camera, Mark Hamill, Jedi knight, you know, Star Wars, was on stage giving the keynote, their customer base, is a lot like the Jedi order, right? I mean they see themselves as, elite, technically, they're not afraid to take organizational risks and push that DevOps culture. And we heard that from Sunil, the chief product officer that they're really looking at, this new way to do things, like they did with hyperconvergence, they pioneered that, set the table on that and foundationally built that. They wanna take that same playbook of HCI, hyperconverged infrastructure, and apply it to the cloud. And provide an abstraction layer advantage and I think that is clearly their strategy and that's, to me, the top story here. >> I couldn't agree more and I also think that, what is also coming through is this idea of we don't wanna be safe. What's clear is that, consumer technologies have leapfrogged IT enterprise vendors. The things that we hold in our pockets are so much more sophisticated than what businesses and organizations, multi-billion dollar businesses and organizations, are using, what their employees are using on a day to day basis. So we expect a certain kind of design and ease of use, in our personal lives and they're bringing it to enterprises and think that that is really what's exciting and interesting about this company. >> What's interesting about their story is that, the consistent theme about the customers is that it's kind of a consolidation story but that's not the real story because back in the old days of IT, consolidation was the strategy. Consolidate vendors, consolidate footprint to reduce cost, clearly a cost reduction. With Nutanix what they get is they get consolidation, and they enable advantages so the real value of Nutanix is to be positioned for those new kinds of app developers, so. This is like, you get consolidation as a side benefit for enabling the value, and that's the theme that's coming out of all the customer testimonials and interviews is, we gotta do more, we gotta create more enablement for the app developers and we gotta provide more performant storage servers and software for the customers. And that's their main focus and they consolidation as a benefit. That's gonna scare a lot of people and customers that I've talked to said, hey I got all the stuff but I can't just throw it away tomorrow, I gotta move it out over time, so, this is the Nutanix sales challenge, how do you move faster with all that incumbent, legacy stuff in these datacenters, while enabling the multi-cloud capability? >> And we're gonna be talking about that more today with Chris Kaddaras on the show. We have a lot of great guests, we have the CIO, Wendy Pfeiffer, I was reading an article about her today, she answered an ad as a teenager to work for NASA. She had an idea for NASA and so we're gonna hear much more about her story, we've got a lot of great guests. >> Well what's your take? I mean, you've been here, you're getting immersed in. What's your take of the show, what's your analysis? >> Well, what's really interesting to me is that we're having this conversation against this backdrop where, the technology industry is really under fire. I mean, we heard Ayanna Howard here on the show yesterday and then she was up on the main stage today, talking about the good, the bad, and then the really scary elements of AI and how it really has these powers that can do a lot of wonderful things and help children with special needs and help workers be more productive and engaged and collaborate. But yet, there's also this much darker side that AI's really only as good as its creators. And then the other difficulty is that, because we have become so trusting of these machines, we disregard our own intuition. And that is a really scary element, so. What I think is exciting, and it goes back to this risk taking mentality, that Nutanix has, is, we're gonna talk about these things. We're just going to forget about them or they're gonna be a sideshow, this is really on the main stage, let's talk about our values, let's talk about the humanity of technology and this is really an important part of the conversation. >> It's interesting, the culture, we talked about the culture a lot yesterday. And you can see from the mix of the guests we've had here and how they're putting their content together across the show portfolio, it's not just speeds and feeds. There's a lot of tech for good angle but they're not tech for good stories like hey, look, here's a tech for good story. Look how good we are because we promote it. They're authentic people that have a great story that has a tech involvement. But it's not a pure Nutanix messaging kind of thing. >> Right, and it goes to back to their values, the humble, hungry, honest, and have a lot of heart. I mean I think that that is, you really see how important culture is, when it is top down. When Dheeraj embodies certain characteristics and traits, you see that employees then look up and they say okay, this is what we're about, this is who we are. >> You know, we also talked yesterday about our analysis in the keynote, what's interesting about culture is, there's also a culture shift going on inside their customer base. And again, it's back to this kind of Star Wars theme, Jedi knights and the revolution continuing for Nutanix, their opportunity is to continue to stay on the course, and this is gonna be a big bet for them, they gotta make some big bets on the technology side, which they're making, but also they have an opportunity because a lot of their installed base are rebels, right? So you have this rebellion IT guy, generational shift where you have DevOps coming in and Gene Kim who wrote the book on DevOps, runs the biggest DevOps event in the world, series of events, DevOps Enterprise Summit, he's even saying it's about 3% changeover. So I think there's a big tailwind coming for Nutanix. Around DevOps, operating models, in the enterprise and cloud where, the convergence of those two worlds coming together, and it's gonna be a younger generation, it's gonna be a different world. If that happens, I think that's gonna be something that Wall Street might not see. I think that's kind of an area. And that's gonna be a good tailwind for Nutanix. The other notable thing that I would point out from this show is, the presence of VMware visibly in the conversation. And I think Dheeraj was talking about, hey we don't mind talking about VMware because they validate the marketplace, they're the big 800 pound gorilla. And we're gonna continue to innovate around them. We don't need their Hypervisor, customers don't need to pay their vTax, that's his messaging, so that was a key notable. The other one was the challenge that Nutanix has, this is, again, might be a Wall Street insight for some of the Wall Street folks out there is that, their challenge has been getting new logos. Their cost to sales is a little bit high because they require POCs and once they get in there they usually win. And then their cost per sales, cost per order dollar on the sales side once they have a customer, is very low, they get more renewals and they have more net contract value so they have great customer economics on that side. The Hewlett Packard Enterprise deal for them, could bring them a tsunami of new logos. That could give them a lot of leverage and bring their customer base well above their 12,000 number now. And bring them up into a whole nother level. So I think the HPE deal will be a tell sign on the numbers, and if they can get more new logos in there, the big accounts that HP has through their channel, that's a big story. So VMware, HPE, culture, all the main story here. >> And of course we had HPE on the show yesterday, talking about that very development, so. We have lots more great content, great guests to come today, this has been just a ball hosting with you, so I'm really for another day. >> Very intimate show, I mean, Nutanix are a very intimate show they don't really care about the big numbers, they want the right numbers and that speaks to their culture. >> And they know their people. Because as we talked about many times, Mark Hamill, up on the stage yesterday, so, they know their community. Please stay tuned for more of the coverage from theCUBE of .NEXT here in Anaheim. I'm Rebecca Knight for John Furrier, stay tuned. (electronic music)

(groovy music) >> Live from London, England. It's theCUBE. Covering .NEXT Conference Europe 2018, brought to you by Nutanix. >> Welcome back to London, England. You're watching two days of wall-to-wall coverage from Nutanix .NEXT 2018 Europe. I'm Stu Miniman and my cohost is Joep Piscaer and happy to welcome to the program Tim Isaacs, who's the general manager of data services, which really is the core products of Nutanix underneath the Hypervisor, if I understand correct. >> That's right. >> With Nutanix. Tim, thanks so much for joining us. >> Absolutely, thank you for having me. Very nice to be here. >> Alright, so, Tim. This is my 7th .NEXT and for a lot of 'em, it's like, okay, where are we with that HCI marketplace? A couple years ago, Nutanix expanded the marketing to enterprise cloud and now has, if I've got right, from two years it was about two products and today it's more like 14 products. >> Right. >> Some organically, some through M&A. As it was put out, there was Core, which is AOS, and to the HCI, AHV, Prism Management, and your stuff is what all of these customers that are attending here are using. I'd love to get a number sometime, as to how many Nutanix customers aren't running that in the future. We were hearing how many are doing more than that. But give us the state of your business. >> Sure. >> At the, no pun intended, core of what Nutanix does. >> Absolutely. Yeah, so I think you are referring to our most recent segmentation. You're talking about Core, then Core is basically AOS, which is synonymous with HCI, and then obviously that includes AHV built in and then Prism for management and then Essentials is a, several other things relating to operations management, automation, file storage, so on and so forth. So, I'll talk about Core and I'll talk about maybe a few things in the Essentials bucket. So, Core, obviously, is all of our customers today, right? It's a layered kick, clearly, so people start with Core, then they move up the stack, if you will, right? Into Essentials and then many into Enterprise as well. And Core, at its base, is softly defined storage technologies, right? Powering HCI. So what we realize quite early on is, look, you know, HCI is all about virtualization. Virtualized workload. So, you got virtual machines, they can be desktops, they can be servers, they can be databases. But then there's also the notion of unstructured data, right? So, what about all this file storage that I have? What about all this object storage that I have? And what we realized was, well, we have a platform, we have the infrastructure, softly defined storage, and it was simply a matter of expanding that. And if you think about files, it's just another use case on this infrastructure. So, we started on our files journey about two years ago and I think you might have seen some announcements, today as well as about six months ago, where we're getting ready to release our object storage solution. So, now, if I take stock of the portfolio. >> Buckets, I believe it's called. >> Buckets, it's called Buckets, exactly. What do you think of the name? >> I don't hate it. >> Okay, okay. (laughing) >> As an analyst, that's probably the most you're gonna get out of me. >> Got you, got you. Yeah, so if I take stock of the portfolios today, you got Core, right, which is hyperconvergence, virtual machines, multiple workloads. And then you got unstructured data. Real files as well as, soon it will be objects. And then we also provide just generic block storage for anybody who wants to, "Hey, I got a database, it's running on a bare metal server, "can you give me block storage? "I wanna consume it and I'm gonna run Oracle on it "in a RAC setting." Yeah, sure, go for it, right? So, even though most of our customers are indeed hyperconverged, there are some customers who use us as storage only, and that's okay. If that works for them, great. But the power of the whole thing is, now you can consolidate all of your workloads on a single platform. >> Yeah, one of the things we talked about with Dheeraj yesterday is, when Nutanix launched, there were certain waves that it kinda hit. It seemed to be the right time for things, so, you know, software defined before we called it software defined. What was there, flashes of technology, was really coming from a little niche project to broad adoption. A lot has changed in the about nine years since the solution went on and you had a major file system rewrite in 5.10. I've heard some people think of it almost as AOS 2.0. >> Right. >> To get ready for some of the modern things happening from a technology standpoint as well as the modern applications that will sit on top of it. >> Right. >> Dheeraj said it's like the plane flying at 35,000 feet, running at full speed, and we're gonna change the engine out. Gives a little bit of insight as to what goes into that, to what that took and what that prepares Nutanix and your customers for. >> Absolutely. So, there comes a time in every technologies lifespan where you have to re-architect significantly. And that's because things are changing. Applications are changing, the world is changing. There are a bunch of emerging technologies that come about, and we are sort of in an interesting time, where things like memory glass storage, NVMe, RDMA, all of these things are starting to get mainstream, and for good reason, right? They actually deliver a lot of value. So the file system that have developed nine years ago, yes, you can make incremental changes, but there comes a time where you have to say, "Look, I gotta make these big changes. "I have to rethink my data, metadata structure." And that's what you're seeing. And obviously, this will be in phases. Phase one was more about optimizing metadata. Phase two will be about rewriting the file system in a major way. What we're calling block store, to basically take advantage of things like memory glass storage. And then, result is two things. One is we'll be able to take better advantage of all of these new technologies. And by doing so, now you are delivering a very different kind of a, if you will, not just an experience, but value to your customers. So, somebody could be running a database today and there's certain expectations of performance and reliability and latency. In this new world, AOS 2.0, those expectations will be entirely different, right? >> So, looking at the adoption of it, so, AOS 2.0, basically, everyone's gonna run it at some point. You know, everybody is running it already, upgrading it is gonna be, in Nutanix style, pretty easy. But I'm wondering, the other storage products, you don't see adoption there. How many people are using it, what are they using it for? >> Sure, sure. And by the other storage products, you're referring to file storage and things like that, right? >> Yes. >> So, for all of them, files is the most mature. We released SSG about two years ago and we have close to 1,000 customers using files today. So not just purchased, but using. So 1,000 users as customers, so you know, pretty decent. Good adoption. And there's also been a bit of a journey here. You know, we started with files being a SMB protocol product. So, it had a bias towards Windows environments, user data. About a year ago, we released NFS support. So now, the game changes a little bit. You're talking machine data, machine generated data, right? So it's very different. And that's also forced us to rethink how we go about scalability, how we go about automation. You know, if there's a hot spot, the system should take care of itself. Does it go off and scale up? Does it go off and scale out? Does this happen automatically? So, a lot of those things started to get weaved into the fold of the product. So, that's files. I would say, the most mature outside of HCI. Objects is new. Just ready to get it ready to go GA. We've done a bunch of early access with a few customers, things are looking good, alright? So, looking forward to what we have there. Block storage, we also offer generic iSCSI-based block storage. That's also been in market for a while, and this has been use cases where somebody wants to run a bare metal database outside. Reasons of licensing or what have you. Maybe it's legacy databases. And I just want storage from the Nutanix cluster. So, what we said is, "You know what we'll do? "We'll carve off a portion of the Nutanix cluster, "logically speaking, serve it out as volumes, right? "Generic volumes, and you can use it for your databases." Performance and everything is very similar to what you would get if you were hyperconverged. So, you're not giving up anything by doing so, other than the fact that, obviously, you're not in a true hyperconverged form factor. >> Alright, since we're talking about storage, I wonder if you could drill a little deeper on some of the new stuff. So, in 5.10, you're ready for memory glass storage, things like NVMe. Where are we today? What is further down the road map? You know, the storage industry, NVMe, and NVMe over Fabrics is a pretty hot discussion. Everybody's getting ready for it. Is there anything that Nutanix is doing unique there? And give us what the customer expectations should be. >> Sure, sure, it makes sense. So, I think, at the more fundamental level, I think we all agree that, if you're in a hyperconverged form factor, because you have storage right with compute, that gives you an inherent advantage to begin with, versus three-tier storage that goes over the network. So, what we're trying to do is, hey, let's continue to milk that, so to speak. And you know, in 5.10, we released, I would say, one portion of what we call AOS 2.0. And here, what we did was we optimized heavily for metadata. So, our metadata versus data model changes with AOS 2.0. And then what we'll do, we'll follow this up with major changes to the data model itself. So, for example, now, when you're dealing with memory glass storage, you gotta be able to address it slightly differently. You have to be using low-level APIs. Things like SPDK to circumvent the kernel, for example, and go directly into storage. So, all those things are in the works, and the net result is going to be, well, I see higher performance, I see more consistent performance, I see lower latencies, right? And obviously more through-put as well. Now, you talked about NVMe over Fabrics. Now, the idea there is, look, you got the NVMe protocol Fabrics now, so what sort of a fabric are you building? Because we deal, essentially, with ethernet, ours will be an ethernet fabric, right? So, now we'll start to leverage RDMA more. We already do so in our systems today, but I would like to see end-to-end RDMA, where you start at the application, and then right through the pipeline, the data path, it's RDMA all the way down to storage. And even for your replicas, it's RDMA. And now you're talking a very different kind of latency, right? You're not talking, forget about a millisecond. We're talking about less than a hundred microseconds of latency end to end. >> So, that kind of sounds like the perfect use case for IoT, you know, heavy data processing. What are some of the efforts you're undertaking to optimize for Zi IoT? >> Right, so, IoT. You know, there's obviously two pieces to IoT, right? There's the computing I do on the Edge and then the computing I do after the fact, somewhere else, machine-building models that I can feed back to the Edge, right? So, this new technology would apply in both places. Now, when you're on the Edge itself, there's certain situations where your real-time processing needs to be real-time. It better be quick, right? So, the faster my storage, the faster my decision-making. And then, so let's say you're able to make decisions faster, inferencing decisions faster in real time. Now you go to the cloud, shall we say, where you're doing the long-time processing, and there, too, it's a matter of, okay, I'm doing all this machine learning. I have a bunch of, say, AI OML packages running here. There, too, there's an angle of time. If I do this in two weeks and feed it back versus two days, there's a big difference in business value that's being delivered, right? So, I think the applicability of all of these changes is across any use case. >> Alright, Tim, wanna give you the final word. You know, you've got the Core products there, but what are you hoping that customers walk away from as they leave the show this week? >> So, I mean, I would say, dear customers, we are ready for all use cases, all workloads. We are getting better and better. You will see us be on the bleeding edge when it comes to Core technologies. I think we are a first mover. All the things we talked about, we have been investing in. This is not the first time. It's released for the first time, but it's been around, we've been developing it for multiple years. So, you can think of Nutanix as someone who's on the forefront of all of these new technologies and, at the end of the day, it's all about your applications being ready for all of those applications, traditional as well as new, and in your choice of form factor. You wanna go hyperconverged? Great, you wanna go as storage only? It's up to you. >> Alright, well, Tim, really appreciate the updates. Congrats on all the progress and look forward to watching where things go in the future. >> Awesome, thank you guys. >> Alright, be sure to stay with us, got a couple more interviews left here from Nutanix. .NEXT 2018 in London, England. Thanks for watching theCUBE. >> Thank you. (electronic music) (upbeat music)

>> Live from London, England, it's the Cube, Covering .Next Conference Europe 2018. Brought to you by Nutanix. >> Hi, and welcome to the Excel Center in London, England, where 3500 customers, partners, and employees of Nutanix have gathered for the annual European show of Nutanix .Next 2018. I'm Stu Miniman, my cohost for two days of wall to wall exclusive coverage from the Cube is Joep Piscaer, our first European co-host. Joep, I first met you two years ago at the Nutanix show in Vienna. Last year was in Nice. We're now in London, and now you're not just a guest, but a host. Thanks so much for joinin' us. >> Thank you. So, it was awesome three years ago I was a customer, then I transitioned into a tech champion as well, for getting to know the technology and the people behind Nutanix, and now I'm here as a co-host, looking at Nutanix as a company. >> Well, we really appreciate you joining us. Give us, first of all, some more credibility in the European space, and also we always love to get the practitioner viewpoint. So, you have been a customer, you're part of I believe the NTC Program that Nutanix has, so you understand the technology. We're going to get to talk to some of the customers, some of those executives, and the like, so lookin' forward to havin' ya' sit with me, and dig into it, including, a first on the Cube, you're going to do one interview in your native tongue of Dutch. >> Yes, oh yeah. It's going to be completely in Nederlands, so completely Dutch, and I'm looking forward to that. >> Alright, so Dheeraj Pandey was on stage this morning, and Dheeraj, masterful, gives quite a good keynote, talking about how Nutanix is now nine years old, and so therefore he says still very young when you look at most of the technology companies out there, but they've come a long way. I've watched Nutanix since the very early days, and still kind of blows my mind. Some of the companies I've watched in their ascendancy, I remember VMware back when they were about 100 people. Nutanix, I met when they were about 30 people. Pernixdata that Nutanix bought, Soft Jamb that we're going to have on later today, introduced me to the company when it was three people and a dog, and Nutanix now, over I think 3000, 3500 people, announced last night their Q 1 2019 earnings, and some of the quick speeds would be 313 million dollars of revenue. That is up 14% year over year for the quarter, up 3% quarter over quarter from the previous quarter. Strong growth in a lot of the financials, really moving strongly along their path to be software, which is 51% of billings were from the software, and expect to read somewhere between 70 and 75% in the next four to six quarters, so aggressively meeting that, and publicly traded company, you kind of look at it and say "Wow, this Nutanix has a seven billion dollar market cap before the market opened today. We'll see what the market thinks of their earnings." What's just it that at a high level, you've been watching Nutanix for a while, so what's your take on the company? >> So, you know, I met em' a couple years ago as well. I think they were 100 people big back then. I learned from them from a technology perspective, so I just got to know the technology, got to know why they were building the startup, building this technology, and this was back in the day when it was basically a VDI product, and it was hardware. It was a thin layer of software, and they kept building that out, and building it out. At some point I became a customer of them, when their appliances were becoming so mature, that I actually saw the advantages that they were touting. Ease of management, one click for everything, and that made such a difference in the world back then, that it's just so good to see them growing and growing from the VDI product it was at some point, all to where it is now. This is not a startup anymore, this is a big company, with a portfolio that's becoming very broad, very deep as well. So seeing them grow this quickly, it's been pretty much amazing to see. I haven't seen a company go that fast in a long time. >> Yeah, well it's one of the things that really, if you look at where we are in technology today, things move fast. So the rest of the team for the Cube is at Amazon re:Invent, and the amount of announcements coming out of them is just staggering, but we're going to talk here about Nutanix. Actually the amount of announcements that Nutanix had, considering as you said they started out, really you think of that thin layer, to really simplify IT. Deeraj in the keynote talked about, "We want to achieve invisible together." was the line that he used, and simplifying things are really tough. That's really what characterized the wave of hyperconverged infrastructure in my mind. When I talk to users, why the bought it, it was simplifying it. It was not, when you think back to VMware, VMware was real easy. It was "Oh, I'm going to consolidate. I'm going to get high utilization.", and there was a clear cost savings. Well today, this hyperconverge is, if you look at building it one way, versus buying it this other way, the actual raw dollars was not that immediately compelling. It is the operational simplicity, and therefore I can allow, in many ways they say IT can now say yes to the business, and focus on things that add value to the business. Move up the stack. a line that I've used at a few of these Nutanix shows is "First, I want to modernize my platform, and then I can do things like modernize my application, modernize all my operations around that." It's catalyst to help customers along their journey for digital transformation. Is that what you've seen? >> Oh yeah, absolutely. So looking at my own experience, I've seen it so clearly that simplifying that infrastructure later, five, six years ago, that was the driver for us to move there. It's become so much more than just a simplification. It's become a story of freeing up time from the IT ops personnel to do other stuff. Just like you said, saying yes to the business, because infrastructure used to be hard. It used to be difficult. You'd need to spend a lot of time on it, and now it's really so easy, it's become a commodity. You either get it from the cloud, you get it from Nutanix or VM or whoever, and that frees up time for the IT ops personnel to do value add stuff on top of it, and I kind of see Nutanix going along that same route. They focused on the infrastructure part. They're still an infrastructure company I think, but they're expanding into that whole journey the customer's going through as well. I think we're going to here a lot more about the hybrid strategy, about cloud, about hybrid cloud, about how to manage that, instead of just the infrastructure stuff. >> Yeah, you bring a good point, that customer journey is definitely one that they talked about, and let's talk about the way you look at the Nutanix portfolio now. The way that Nutanix has framed it, is they gave, it was the customer journey of crawl, walk, run. So first, we have Core, which really is the primary product we've been thinking about, it's what the vast majority of Nutanix customers use, it's HCI, it's Prism, it's those pieces to manage that Core piece. Then, we add on top of that is Essentials, which really looked at some of the expansion areas. Files is one that they launched as an announcement about two years ago I believe it was, that they have Blocks now, which is now a highly scalable object model there, and the Prism Pro, so a bunch of pieces to add on and go beyond the Core, and then they have Enterprise, which is is ICloud's kind of the branding that they have along these, but Leap is DR as a service. They've got Frame, which is desktop as a service. They've got Era, and they've got a whole lot of other software solutions out there that make up this whole portfolio. I wouldn't say it was simple. It took me two or three times of hearing it before it started to crystallize, but if you look out from that customer lens, the customer doesn't need to worry about where these buckets have, it's the, you know, "I'm buying Core stuff, I'm probably growing to Essentials, and then there's areas where Enterprise will make sense.", and it's likely going to be a different go to market and different buying motion. Take something like Frame, who we're going to have on the program today. Frame today is not attached to the Nutanix appliance itself, it was born in the cloud, and many of the enterprise solutions are born in the cloud, multi-cloud. So what's your take on how they're splitting up and discussing the portfolio? >> Just like you said, it took me awhile to figure out what that whole portfolio was, you know, the Core, Essentials, Enterprise stuff, but I do think looking at it from a customer perspective, it does make sense. So they started out simplifying the Core infrastructure. Now they're simplifying the Essentials in the data center as well, like files, like micro-segmentation, like monitoring. Those are topics that customers still spend a lot of time on, but they don't necessarily want to. They want to have something that is readily off the shelf, it's easy to use, easy to expand upon, so I do see Essentials as a good expansion of that messaging that they have been giving for quite a number of years already. Simplifying what is already in the data center already, and then the stretch into the cloud, into the hyper-cloud, delivering services that are still so difficult to do yourself, like take VDI for example. That's still difficult. Sending up an entire environment, managing it, you have to have really specialized people to do that for you, to do the do the design, and being able to get that directly from the cloud makes that so much easier. So I do agree with the de-segmentation into three big buckets, and I do think customers are going to respond positively to it. >> Alright, so, you brought up a term hyper-cloud, that I really didn't feel that we heard a lot about in the keynote this morning. It's an area I want to poke and understand a little bit more when I hear from Nutanix. I was talkin' to one customer in prep for this, and he said a year ago, and the last couple of times, but hearin' a lot about Google. Diane Greene on the stage, I believe it was the D.C show, I didn't see Google here. I know there is updates as to where the Google relationships are going. They did mention Kubernetes. The Kubernetes offer that Nutanix has is called Karbon. I actually expect to see not only what we will have Nutanix on the program here to talk about it, but at the Kubernetes show Kubcon in Seattle in two weeks. Nutanix is one of the sponsors that we'll have on the program there. Other than Kubernetes and how that fits into the cloud native discussion, I haven't heard a good cohesive message as to Nutanix's hybrid, they talk about how Nutanix lives in a lot of environments, and many of their products live in multi-cloud, and there's some nuance there. I think VMware has a nice clear message on hybrid. Microsoft of course, and of course VMware is the partnership with Amazon is really the core of what they're doing there. They're doing more cloud native and Kubernetes. They bought Heptio. There are things going on there. Amazon is talking a lot more about hybrid. We'll see if they actually use the term hybrid when they talk about it. Nutanix's messaging, we're going to have Deeraj on today, he says "Azure Stack gets a lot of press, but there's not a lot of people using it. VMware on AWS gets a lot of press, once again, not a lot of companies using it yet". And while I agree, customers actually feel comforted by the message that they understand how do I get from where I am today, to where I need to go? And of course I'm not saying that everybody goes 100% public cloud. The hybrid multi cloud world kind of looks like where we'll be for the next five or 10 years at least, and Edge puts a whole 'nother spin on things. What do you want to hear from Nutanix? What is hybrid, customers might not care about hybrid, but the message about where they're going with cloud is I think what they want clarity on. >> Yeah, I agree. So I think Nutanix doesn't call it hybrid, they're calling it hyperconverged cloud, which makes sense from their historical background. I do think Nutanix has ways to go in developing their own hybrid. Cloud story, making a management layer on top of it, like VMware's done, like Microsoft's doing. So I do think Nutanix is only on the beginning of this journey for themselves, but you're only seeing the small acquisitions they're doing, or the small steps they're taking. Acquiring Frame is one of those unexpected things for me. I would never have thought Nutanix would go that direction, So I do think Nutanix is taking small steps in the right direction. But like you said, they're story isn't complete yet. Its not a story that customers can buy into fully just now, so they do still need a little bit of time for that. >> Yeah, well Joep, really appreciate you helpin' us break down this. We've got two days of full coverage. So much your goin' is that, right, MNA in the space, it's a software world, picking up pieces are easy, heck, one of the under riding rumors I've heard for the last couple of years is "will someone take Nutanix off the table?" Not something I expect them to specifically direct, but at a seven billion dollar market, that would be a large acquisition, but we have seen a few of those in the last couple a' years. so for Joep Piscaer, I'm Stu Miniman, stay with us for two days. Wall to wall coverage. Thecube.net is of course where to see all of the live and on demand content. Thanks so much for watchin' the Cube. (contemplative music)

>> Live from London, England, it's theCUBE. Covering .NEXT Conference Europe, 2018. Brought to you by Nutanix. >> Welcome back, I'm Stu Miniman, my cohost Joep Piscaer, and you're watching theCUBE here at Nutanix .NEXT, London, 2018. Happy to welcome back to the program the co-founder, CEO, and chairman of Nutanix, Dheeraj Pandey. Dheeraj, thanks so much. Congratulations on 3500 people here at the third annual European show, and thanks so much for having theCUBE. >> Thank you, my pleasure. >> All right. So, Dheeraj, first of all, you got a lot going on. Big company event here, last night you announced the Q1 2019 earnings. I guess, step back for a second. Nutanix is now, nine years since the founding, you've been public now for a little while, you got to be feeling good. The company's reached a certain size, very respected in the marketplace. So how are you and the team feeling? >> Yeah, well, I tell people that it's actually fun to be a public company. And obviously there is a cost to being a public company, because you're on a quarterly treadmill, in some sense. But Wall Street also keeps you honest. Just like Main Street keeps you honest on quality of product and customer service, Wall Street keeps you honest on spend and what does it really mean to grow at scale. So I like the fact that there is two good streets that are keeping the company honest. And it's really fun to think about capital allocation, one of the big things as you grow. I mean, you're going to spend more than a billion dollars this year alone. How do you allocate capital wisely is something that I think a lot about in (mumbles). >> Yeah. So, at this show, you kind of change some of the positioning of the portfolio. It's the Core, Essentials, and Enterprise, and right, that asset allocation, when I look at Essential, Xi Cloud, there's all these different pieces, some of them through acquisition, some of them created internally. You need to be careful that you don't over-commit, but when do you decide to kill stuff or keep it going, so you got a lot of plates to spin now, a lot more than you did a year or two ago. >> Yeah, absolutely, and it's not just product development. It's also marketing and sales and G&A. I mean, there's other departments we need to think hard about. Like, how do you create brand awareness for these new things? How do you do demand generation? How do you have a specialty sales force? All those things have to be considered, so, nine years, it's been a journey, but it still looks like it's nothing. And we're still a very small company, and we need to think hard about the next five years, in some sense. >> Yeah. So, one of the metrics you gave Wall Street to be able to look at is, what percentage of customers are using more than just the Core? So the Essentials or the Enterprise. And if I got it right, it's up to 19% from 15%, the quarter before. I wonder, is the packaging, how much of that is for Wall Street? Somebody cynically might look and be like, hey, is the Core market slowing down? And therefore you need to expand. We've all seen public companies that need to go into adjacencies, and shouldn't you stick to your knitting? You've got a great solid product with leadership in the marketplace. >> Yep, absolutely. Also, look, we are not bundling them in SKUs so we cannot force customers to actually buy them. We're not doing financial engineering of dollars, because these not SKUs or bundles. This is a journey which is mostly advisory, in some sense. This is how you should start, this is how you should go, and this is advisory for our sellers and our buyers and our channel people. Everybody needs to say, look, have the customer go through the journey. If you had to do what he just said, probably would've bundled them in SKUs and then allocated capital to one or the other. I think, to your other comment about just sticking to the core, Juniper stuck to the core. And many companies out there which just stayed as a single-box company, they stayed at the core. And eventually you realize the market has moved faster than your core itself. So there's this business school thinking, they call it the Icarus Effect. The Icarus Effect is all about, I'm so good at what I do that I can fly to the sun and nothing will happen. But you don't realize that Icarus, the wings were actually pasted using wax. And you go to the sun, and the sun actually melts the wax. So companies like FGI and SUN, Norca, many companies just stuck to one thing. And they couldn't evolve, actually. >> Obviously you're not sticking to the core alone, right? You're expanding the portfolio, I mean, you're not just an infrastructure company anymore. You do so much on top of the infrastructure on-prem. You have so many SAP services, so how do you manage the portfolio in terms of the customer journey? Because there's so much to tell to a customer. How do you sell it? How do you convince a customer to go from Core to Essentials to Enterprise? >> The most important thing is leverage. Is Essentials going to leverage Core, and is the Enterprise going to leverage Essentials and Core itself? Case in point, Files is completely built on top of Core. So every time somebody's using Files, they're also using Core. If you think about Flow, it uses AHV underneath. Frame, and case in point. When it's going to deliver desktops, it's going to use Files because every desktop needs a filer as well. And then when Frame delivers desktops on-prem, it's going to use all the Core. So the important thing is how they don't become disparate things, like they're all going in their own direction, is there a level of progressiveness where you say, well, if you're using the Enterprise features, a lot of them actually go in and drag in the Core as well as Essentials. So how do we build that progressive experience for the customer, where each of these layers are actually being utilized, is the important piece. >> Dheeraj, so, we're talking a lot about the expansion beyond the Core. But there was a pretty significant activity that your team did on Core itself. So the first time I heard about it, it basically said, we're doing an entire file system rewrite. Think of it almost as AoS 2.0. Now, from a product name, I believe it's 5.10, so I might have trouble remembering which release it was, but talk about what went involved in that. Obviously a lot has changed in the nine years since you created it, so. >> Absolutely. Yeah, yesterday in the earnings call I talked about it too, that people scoff at Core infrastructure. Like, oh, it's going to be a commodity because it's good enough infrastructure. But then I argue that there's no such thing as good enough infrastructure. And companies struggle when they don't focus on infrastructure itself. It's like food, shelter, clothing in the Maslow's hierarchy of needs. If you don't get that, then there's no point self-actualizing it. So, Core infrastructure completely destroys network insecurity. You got to get it right. I mean, look at Oracle, how it's struggling with IaaS. And look at Google, they're trying to figure out how to make it relevant for the Enterprise. Azure has like three or four different stacks for infrastructure. One for old 265, one for Azure DB, one for Azure, and now they're rewriting it for Azure itself. VMware has three different infrastructure stacks. One for three tier, where they are very happily, they're saying, look, let EMC, their NetApps actually are underneath, and Cisco's, and stuff like that. And then they have this software-defined infrastructure with commodity servers. And finally, they have VMware-enabled AWS which is going to use AWS services. So now you have three different forks of your core base, in some sense. And for us, what's important is how we use a single core base for everything. So architecture matters. I was arguing yesterday in the earnings call that good enough infrastructure is an oxymoron. You need to get core right before you can go and try to live the other layers of the Maslow's hierarchy of needs, actually. And that's why we went back and thought about, as the workloads were growing and increasing, and we had mission-critical stuff in memory databases, what do we need to really do about the way we lay out the data and lay out the metadata? So as you know, metadata is at the core of anything in systems, and especially storage systems. And the metadata of our erstwhile system was actually very completely distributed. And then we realized that some things can be local, and some things can be distributed, and that's better scale. Again, going back to this understanding of what things can be represented locally for a certain disk versus what things need to be global so that you can go and say, okay, where is this data really located? What drive? But once you go to the drive, you can actually get more metadata. So, again, you're getting more progressive scanning. So at the end of the day, our engineers are constantly thinking about performance and scalability, and how do you change the wings of the plane at 35,000 feet? It's a very big challenge. >> So that's one of the issues, right? So you're still focusing on your own infrastructure layer, right? But many customers do already have presence in a different hardware stack, or the public cloud, or some service provider. So not everything runs on your platform. So how are you planning to deliver the services ensemble to customers that don't necessarily run on AoS? >> So that's the multi-cloud journey, which is basically the enterprise journey of our customers. I said this yesterday in the earnings call as well, that all our services should be available both on-prem and off-prem. This idea of a VPC, that is multi-location, is what hybrid cloud is all about. So how do you get a virtual private cloud to really span multiple clouds in multiple locations? I think you saw from the demos today of how you're really running all of AoS on top of GCP virtual infrastructure. And in the course of the coming year or two, you'll see us do the same thing, BEM at Amazon, BEM at Azure. Because they deliver servers in their data centers and that's leverage for them because they've already gone and spent so much money on data centers that it's easy for them to deliver a physical server that our software can run on top of. And if people are not using AoS, they'll still want to use things like Frame and Beam and COM and other such things like that. >> Yep, Dheeraj, what are you hearing from customers and how do you think of hybrid, as it were? You know, a lot of attention gets played to things like Azure Stack from Microsoft from VMware on AWS, I know you've got some view points on this. >> Yeah, no, in fact, so if you go back five years, hyperconvergence had become a buzz word maybe three, four years ago. And there were a lot of companies doing hyperconvergence. And only one or two have survived and it's us and VMware, basically have survived that. Everybody else has a checkbox because the customers said well, what about that? Will we have a check box? But, it's really about operating system sort of hyperconvergence. And it has to be honest. And it has to really blur the lines between compute and storage and networking and security. I think hybrid needs to be honest and one of the killer things that hybrid needs is blurring the lines between networks, blurring the lines on storage so you can do one click replication and one click fail over. So a lot of those things have required a lot of innovations from us. That's why we were delayed in Xi. We didn't want to just put up data centers and just like that. I mean, if you go back in time to many hardware companies were putting open stack data centers and calling it their new cloud in response to Amazon. And VMware tried vCloud Air. And they had a charter to go spend money. They weren't going to spend a ton of money on hardware. Without even knowing that the cloud is not about data centers. Cloud is about an experience. It's about eCommerce and computing coming together. And you have to be passionate about a catalog. You know, the marketplace, the catalog so that people can really go and consume things from a catalog. I think that's what our experience has been that. Look, if you don't think of it like a retail giant or retail customer, which is what Amazon has done such a good job of. You know, they've thought about computing as an eCommerce problem as opposed to as a compute storage networking problem itself. And those are the lessons that we have learned about hybrid just as much >> Alright, you did a nice job on the keynote, laying out that Nutanix, like your customers, you're going through a journey. The crawl-walk-run, if you will. We got a tease in the keynote this morning about something cloud native. Where you're going. Final question for you is as you look at the company, you said it's still young, where are your customers going, where are some of the things they need to work on, and that Nutanix will mature with them as we look to move forward? >> Well, I mean, look. I think everybody knows where customers are headed. They're questioning who fulfills the promise because the requirements are all the same. They all want to go and use next generation infrastructure, they want to modernize their data centers, the infrastructure. They want to use some things that they want to own, some things they want to rent. The question is, where is the best experience possible? And by that, I mean not just systems experience of hybrid clouds but also customer service and having an ever-growing catalog and being able to deliver things for developers and devops. And technology will come and go. Two, three years ago, the Puppet and Chef were the hottest thing on, now today, it's Kubernetes. Tomorrow, it's going to be something else. It's the fact that what you see is what you do. And what you do is what you say. In our business, it's about integrity. I was arguing about this yesterday in the earnings call, as well, that building business software is a little bit easier. I shouldn't trivialize it as much but if people use business software, they can work around weaknesses of business software. But if you are in the business of infrastructure, applications cannot work around weaknesses of infrastructure. So integrity matters a lot in our space, actually, and that is about great products, great customer service, fast innovation, recovering fast, being resilient. Those are the things that we focus a lot on. >> Alright, well, Dheeraj, thanks again, always. We didn't even get to talk about the width part, the fourth H that you've been talking about for the honest, humble, and hungry. So, thank you. Congratulations to the team and always appreciate you having on our program. >> My pleasure. >> Alright, for Joep Piscaer, I'm Stu Miniman. Stay with us. Two days live of wall to wall coverage. Thanks for watching theCUBE. (light music) >> I have been in the software and technology industry for over 12 years now. And so I've had the opportunity as a marketer.

[Music] [Music] [Music] [Music] ladies and gentlemen please welcome Red Hat senior vice president of engineering Matt Hicks [Music] welcome back I hope you're enjoying your first day of summit you know for us it is a lot of work throughout the year to get ready to get here but I love the energy walking into someone on that first opening day now this morning we kick off with Paul's keynote and you saw this morning just how evolved every aspect of open hybrid cloud has become based on an open source innovation model that opens source the power and potential of open source so we really brought me to Red Hat but at the end of the day the real value comes when were able to make customers like yourself successful with open source and as much passion and pride as we put into the open source community that requires more than just Red Hat given the complexity of your various businesses the solution set you're building that requires an entire technology ecosystem from system integrators that can provide the skills your domain expertise to software vendors that are going to provide the capabilities for your solutions even to the public cloud providers whether it's on the hosting side or consuming their services you need an entire technological ecosystem to be able to support you and your goals and that is exactly what we are gonna talk about this afternoon the technology ecosystem we work with that's ready to help you on your journey now you know this year's summit we talked about earlier it is about ideas worth exploring and we want to make sure you have all of the expertise you need to make those ideas a reality so with that let's talk about our first partner we have him today and that first partner is IBM when I talk about IBM I have a little bit of a nostalgia and that's because 16 years ago I was at IBM it was during my tenure at IBM where I deployed my first copy of Red Hat Enterprise Linux for a customer it's actually where I did my first professional Linux development as well you and that work on Linux it really was the spark that I had that showed me the potential that open source could have for enterprise customers now iBM has always been a steadfast supporter of Linux and a great Red Hat partner in fact this year we are celebrating 20 years of partnership with IBM but even after 20 years two decades I think we're working on some of the most innovative work that we ever have before so please give a warm welcome to Arvind Krishna from IBM to talk with us about what we are working on Arvind [Applause] hey my pleasure to be here thank you so two decades huh that's uh you know I think anything in this industry to going for two decades is special what would you say that that link is made right Hatton IBM so successful look I got to begin by first seeing something that I've been waiting to say for years it's a long strange trip it's been and for the San Francisco folks they'll get they'll get the connection you know what I was just thinking you said 16 it is strange because I probably met RedHat 20 years ago and so that's a little bit longer than you but that was out in Raleigh it was a much smaller company and when I think about the connection I think look IBM's had a long long investment and a long being a long fan of open source and when I think of Linux Linux really lights up our hardware and I think of the power box that you were showing this morning as well as the mainframe as well as all other hardware Linux really brings that to life and I think that's been at the root of our relationship yeah absolutely now I alluded to a little bit earlier we're working on some new stuff and this time it's a little bit higher in the software stack and we have before so what do you what would you say spearheaded that right so we think of software many people know about some people don't realize a lot of the words are called critical systems you know like reservation systems ATM systems retail banking a lot of the systems run on IBM software and when I say IBM software names such as WebSphere and MQ and db2 all sort of come to mind as being some of that software stack and really when I combine that with some of what you were talking about this morning along hybrid and I think this thing called containers you guys know a little about combining the two we think is going to make magic yeah and I certainly know containers and I think for myself seeing the rise of containers from just the introduction of the technology to customers consuming at mission-critical capacities it's been probably one of the fastest technology cycles I've ever seen before look we completely agree with that when you think back to what Paul talks about this morning on hybrid and we think about it we are made of firm commitment to containers all of our software will run on containers and all of our software runs Rell and you put those two together and this belief on hybrid and containers giving you their hybrid motion so that you can pick where you want to run all the software is really I think what has brought us together now even more than before yeah and the best part I think I've liked we haven't just done the product in downstream alignment we've been so tied in our technology approach we've been aligned all the way to the upstream communities absolutely look participating upstream participating in these projects really bringing all the innovation to bear you know when I hear all of you talk about you can't just be in a single company you got to tap into the world of innovation and everybody should contribute we firmly believe that instead of helping to do that is kind of why we're here yeah absolutely now the best part we're not just going to tell you about what we're doing together we're actually going to show you so how every once you tell the audience a little bit more about what we're doing I will go get the demo team ready in the back so you good okay so look we're doing a lot here together we're taking our software and we are begging to put it on top of Red Hat and openshift and really that's what I'm here to talk about for a few minutes and then we go to show it to you live and the demo guard should be with us so it'll hopefully go go well so when we look at extending our partnership it's really based on three fundamental principles and those principles are the following one it's a hybrid world every enterprise wants the ability to span across public private and their own premise world and we got to go there number two containers are strategic to both of us enterprise needs the agility you need a way to easily port things from place to place to place and containers is more than just wrapping something up containers give you all of the security the automation the deploy ability and we really firmly believe that and innovation is the path forward I mean you got to bring all the innovation to bear whether it's around security whether it's around all of the things we heard this morning around going across multiple infrastructures right the public or private and those are three firm beliefs that both of us have together so then explicitly what I'll be doing here number one all the IBM middleware is going to be certified on top of openshift and rel and through cloud private from IBM so that's number one all the middleware is going to run in rental containers on OpenShift on rail with all the cloud private automation and deployability in there number two we are going to make it so that this is the complete stack when you think about from hardware to hypervisor to os/2 the container platform to all of the middleware it's going to be certified up and down all the way so that you can get comfort that this is certified against all the cyber security attacks that come your way three because we do the certification that means a complete stack can be deployed wherever OpenShift runs so that way you give the complete flexibility and you no longer have to worry about that the development lifecycle is extended all the way from inception to production and the management plane then gives you all of the delivery and operation support needed to lower that cost and lastly professional services through the IBM garages as well as the Red Hat innovation labs and I think that this combination is really speaks to the power of both companies coming together and both of us working together to give all of you that flexibility and deployment capabilities across one can't can't help it one architecture chart and that's the only architecture chart I promise you so if you look at it right from the bottom this speaks to what I'm talking about you begin at the bottom and you have a choice of infrastructure the IBM cloud as well as other infrastructure as a service virtual machines as well as IBM power and IBM mainframe as is the infrastructure choices underneath so you choose what what is best suited for the workload well with the container service with the open shift platform managing all of that environment as well as giving the orchestration that kubernetes gives you up to the platform services from IBM cloud private so it contains the catalog of all middle we're both IBM's as well as open-source it contains all the deployment capability to go deploy that and it contains all the operational management so things like come back up if things go down worry about auto scaling all those features that you want come to you from there and that is why that combination is so so powerful but rather than just hear me talk about it I'm also going to now bring up a couple of people to talk about it and what all are they going to show you they're going to show you how you can deploy an application on this environment so you can think of that as either a cloud native application but you can also think about it as how do you modernize an application using micro services but you don't want to just keep your application always within its walls you also many times want to access different cloud services from this and how do you do that and I'm not going to tell you which ones they're going to come and tell you and how do you tackle the complexity of both hybrid data data that crosses both from the private world to the public world and as well as target the extra workloads that you want so that's kind of the sense of what you're going to see through through the demonstrations but with that I'm going to invite Chris and Michael to come up I'm not going to tell you which one's from IBM which runs from Red Hat hopefully you'll be able to make the right guess so with that Chris and Michael [Music] so so thank you Arvind hopefully people can guess which ones from Red Hat based on the shoes I you know it's some really exciting stuff that we just heard there what I believe that I'm I'm most excited about when I look out upon the audience and the opportunity for customers is with this announcement there are quite literally millions of applications now that can be modernized and made available on any cloud anywhere with the combination of IBM cloud private and OpenShift and I'm most thrilled to have mr. Michael elder a distinguished engineer from IBM here with us today and you know Michael would you maybe describe for the folks what we're actually going to go over today absolutely so when you think about how do I carry forward existing applications how do I build new applications as well you're creating micro services that always need a mixture of data and messaging and caching so this example application shows java-based micro services running on WebSphere Liberty each of which are then leveraging things like IBM MQ for messaging IBM db2 for data operational decision manager all of which is fully containerized and running on top of the Red Hat open chip container platform and in fact we're even gonna enhance stock trader to help it understand how you feel but okay hang on so I'm a little slow to the draw sometimes you said we're gonna have an application tell me how I feel exactly exactly you think about your enterprise apps you want to improve customer service understanding how your clients feel can't help you do that okay well this I'd like to see that in action all right let's do it okay so the first thing we'll do is we'll actually take a look at the catalog and here in the IBM cloud private catalog this is all of the content that's available to deploy now into this hybrid solution so we see workloads for IBM will see workloads for other open source packages etc each of these are packaged up as helm charts that are deploying a set of images that will be certified for Red Hat Linux and in this case we're going to go through and start with a simple example with a node out well click a few actions here we'll give it a name now do you have your console up over there I certainly do all right perfect so we'll deploy this into the new old namespace and will deploy notate okay alright anything happening of course it's come right up and so you know what what I really like about this is regardless of if I'm used to using IBM clout private or if I'm used to working with open shift yeah the experience is well with the tool of whatever I'm you know used to dealing with on a daily basis but I mean you know I got to tell you we we deployed node ourselves all the time what about and what about when was the last time you deployed MQ on open shift you never I maybe never all right let's fix that so MQ obviously is a critical component for messaging for lots of highly transactional systems here we'll deploy this as a container on the platform now I'm going to deploy this one again into new worlds I'm gonna disable persistence and for my application I'm going to need a queue manager so I'm going to have it automatically setup my queue manager as well now this will deploy a couple of things what do you see I see IBM in cube all right so there's your stateful set running MQ and of course there's a couple of other components that get stood up as needed here including things like credentials and secrets and the service etc but all of this is they're out of the box ok so impressive right but that's the what I think you know what I'm really looking at is maybe how a well is this running you know what else does this partnership bring when I look at IBM cloud private windows inches well so that's a key reason about why it's not just about IBM middleware running on open shift but also IBM cloud private because ultimately you need that common management plane when you deploy a container the next thing you have to worry about is how do I get its logs how do I manage its help how do I manage license consumption how do I have a common security plan right so cloud private is that enveloping wrapper around IBM middleware to provide those capabilities in a common way and so here we'll switch over to our dashboard this is our Griffin and Prometheus stack that's deployed also now on cloud private running on OpenShift and we're looking at a different namespace we're looking at the stock trader namespace we'll go back to this app here momentarily and we can see all the different pieces what if you switch over to the stock trader workspace on open shipped yeah I think we might be able to do that here hey there it is alright and so what you're gonna see here all the different pieces of this op right there's d b2 over here I see the portfolio Java microservice running on Webster Liberty I see my Redis cash I see MQ all of these are the components we saw in the architecture picture a minute ago ya know so this is really great I mean so maybe let's take a look at the actual application I see we have a fine stock trader app here now we mentioned understanding how I feel exactly you know well I feel good that this is you know a brand new stock trader app versus the one from ten years ago that don't feel like we used forever so the key thing is this app is actually all of those micro services in addition to things like business rules etc to help understand the loyalty program so one of the things we could do here is actually enhance it with a a AI service from Watson this is tone analyzer it helps me understand how that user actually feels and will be able to go through and submit some feedback to understand that user ok well let's see if we can take a look at that so I tried to click on youth clearly you're not very happy right now here I'll do one quick thing over here go for it we'll clear a cache for our sample lab so look you guys don't actually know as Michael and I just wrote this no js' front end backstage while Arvin was actually talking with Matt and we deployed it real-time using continuous integration and continuous delivery that we have available with openshift well the great thing is it's a live demo right so we're gonna do it all live all the time all right so you mentioned it'll tell me how I'm feeling right so if we look at so right there it looks like they're pretty angry probably because our cache hadn't been cleared before we started the demo maybe well that would make me angry but I should be happy because I mean I have a lot of money well it's it's more than I get today for sure so but you know again I don't want to remain angry so does Watson actually understand southern I know it speaks like eighty different languages but well you know I'm from South Carolina to understand South Carolina southern but I don't know about your North Carolina southern alright well let's give it a go here y'all done a real real know no profanity now this is live I've done a real real nice job on this here fancy demo all right hey all right likes me now all right cool and the key thing is just a quick note right it's showing you've got a free trade so we can integrate those business rules and then decide to I do put one trade if you're angry give me more it's all bringing it together into one platform all running on open show yeah and I can see the possibilities right of we've not only deployed services but getting that feedback from our customers to understand well how well the services are being used and are people really happy with what they have hey listen Michael this was amazing I read you joining us today I hope you guys enjoyed this demo as well so all of you know who this next company is as I look out through the crowd based on what I can actually see with the sun shining down on me right now I can see their influence everywhere you know Sports is in our everyday lives and these guys are equally innovative in that space as they are with hybrid cloud computing and they use that to help maintain and spread their message throughout the world of course I'm talking about Nike I think you'll enjoy this next video about Nike and their brand and then we're going to hear directly from my twitting about what they're doing with Red Hat technology new developments in the top story of the day the world has stopped turning on its axis top scientists are currently racing to come up with a solution everybody going this way [Music] the wrong way [Music] please welcome Nike vice president of infrastructure engineering Mike witig [Music] hi everybody over the last five years at Nike we have transformed our technology landscape to allow us to connect more directly to our consumers through our retail stores through Nike comm and our mobile apps the first step in doing that was redesigning our global network to allow us to have direct connectivity into both Asia and AWS in Europe in Asia and in the Americas having that proximity to those cloud providers allows us to make decisions about application workload placement based on our strategy instead of having design around latency concerns now some of those workloads are very elastic things like our sneakers app for example that needs to burst out during certain hours of the week there's certain moments of the year when we have our high heat product launches and for those type of workloads we write that code ourselves and we use native cloud services but being hybrid has allowed us to not have to write everything that would go into that app but rather just the parts that are in that application consumer facing experience and there are other back-end systems certain core functionalities like order management warehouse management finance ERP and those are workloads that are third-party applications that we host on relevent over the last 18 months we have started to deploy certain elements of those core applications into both Azure and AWS hosted on rel and at first we were pretty cautious that we started with development environments and what we realized after those first successful deployments is that are the impact of those cloud migrations on our operating model was very small and that's because the tools that we use for monitoring for security for performance tuning didn't change even though we moved those core applications into Azure in AWS because of rel under the covers and getting to the point where we have that flexibility is a real enabler as an infrastructure team that allows us to just be in the yes business and really doesn't matter where we want to deploy different workload if either cloud provider or on-prem anywhere on the planet it allows us to move much more quickly and stay much more directed to our consumers and so having rel at the core of our strategy is a huge enabler for that flexibility and allowing us to operate in this hybrid model thanks very much [Applause] what a great example it's really nice to hear an IQ story of using sort of relish that foundation to enable their hybrid clout enable their infrastructure and there's a lot that's the story we spent over ten years making that possible for rel to be that foundation and we've learned a lot in that but let's circle back for a minute to the software vendors and what kicked off the day today with IBM IBM s one of the largest software portfolios on the planet but we learned through our journey on rel that you need thousands of vendors to be able to sport you across all of your different industries solve any challenge that you might have and you need those vendors aligned with your technology direction this is doubly important when the technology direction is changing like with containers we saw that two years ago bread had introduced our container certification program now this program was focused on allowing you to identify vendors that had those shared technology goals but identification by itself wasn't enough in this fast-paced world so last year we introduced trusted content we introduced our container health index publicly grading red hats images that form the foundation for those vendor images and that was great because those of you that are familiar with containers know that you're taking software from vendors you're combining that with software from companies like Red Hat and you are putting those into a single container and for you to run those in a mission-critical capacity you have to know that we can both stand by and support those deployments but even trusted content wasn't enough so this year I'm excited that we are extending once again to introduce trusted operations now last week we announced that cube con kubernetes conference the kubernetes operator SDK the goal of the kubernetes operators is to allow any software provider on kubernetes to encode how that software should run this is a critical part of a container ecosystem not just being able to find the vendors that you want to work with not just knowing that you can trust what's inside the container but knowing that you can efficiently run that software now the exciting part is because this is so closely aligned with the upstream technology that today we already have four partners that have functioning operators specifically Couchbase dynaTrace crunchy and black dot so right out of the gate you have security monitoring data store options available to you these partners are really leading the charge in terms of what it means to run their software on OpenShift but behind these four we have many more in fact this morning we announced over 60 partners that are committed to building operators they're taking their domain expertise and the software that they wrote that they know and extending that into how you are going to run that on containers in environments like OpenShift this really brings the power of being able to find the vendors being able to trust what's inside and know that you can run their software as efficiently as anyone else on the planet but instead of just telling you about this we actually want to show you this in action so why don't we bring back up the demo team to give you a little tour of what's possible with it guys thanks Matt so Matt talked about the concept of operators and when when I think about operators and what they do it's taking OpenShift based services and making them even smarter giving you insight into how they do things for example have we had an operator for the nodejs service that I was running earlier it would have detected the problem and fixed itself but when we look at it what really operators do when I look at it from an ecosystem perspective is for ISVs it's going to be a catalyst that's going to allow them to make their services as manageable and it's flexible and as you know maintainable as any public cloud service no matter where OpenShift is running and to help demonstrate this I've got my buddy Rob here Rob are we ready on the demo front we're ready awesome now I notice this screen looks really familiar to me but you know I think we want to give folks here a dev preview of a couple of things well we want to show you is the first substantial integration of the core OS tectonic technology with OpenShift and then the other thing is we are going to dive in a little bit more into operators and their usefulness so Rob yeah so what we're looking at here is the service catalog that you know and love and openshift and we've got a few new things in here we've actually integrated operators into the Service Catalog and I'm going to take this filter and give you a look at some of them that we have today so you can see we've got a list of operators exposed and this is the same way that your developers are already used to integrating with products they're right in your catalog and so now these are actually smarter services but how can we maybe look at that I mentioned that there's maybe a new view I'm used to seeing this as a developer but I hear we've got some really cool stuff if I'm the administrator of the console yeah so we've got a whole new side of the console for cluster administrators to get a look at under the infrastructure versus this dev focused view that we're looking at today today so let's go take a look at it so the first thing you see here is we've got a really rich set of monitoring and health status so we can see that we've got some alerts firing our control plane is up and we can even do capacity planning anything that you need to do to maintenance your cluster okay so it's it's not only for the the services in the cluster and doing things that you know I may be normally as a human operator would have to do but this this console view also gives me insight into the infrastructure itself right like maybe the nodes and maybe handling the security context is that true yes so these are new capabilities that we're bringing to open shift is the ability to do node management things like drain and unscheduled nodes to do day-to-day maintenance and then as well as having security constraints and things like role bindings for example and the exciting thing about this is this is a view that you've never been able to see before it's cross-cutting across namespaces so here we've got a number of admin bindings and we can see that they're connected to a number of namespaces and these would represent our engineering teams all the groups that are using the cluster and we've never had this view before this is a perfect way to audit your security you know it actually is is pretty exciting I mean I've been fortunate enough to be on the up and shift team since day one and I know that operations view is is something that we've you know strived for and so it's really exciting to see that we can offer that now but you know really this was a we want to get into what operators do and what they can do for us and so maybe you show us what the operator console looks like yeah so let's jump on over and see all the operators that we have installed on the cluster you can see that these mirror what we saw on the Service Catalog earlier now what we care about though is this Couchbase operator and we're gonna jump into the demo namespace as I said you can share a number of different teams on a cluster so it's gonna jump into this namespace okay cool so now what we want to show you guys when we think about operators you know we're gonna have a scenario here where there's going to be multiple replicas of a Couchbase service running in the cluster and then we're going to have a stateful set and what's interesting is those two things are not enough if I'm really trying to run this as a true service where it's highly available in persistent there's things that you know as a DBA that I'm normally going to have to do if there's some sort of node failure and so what we want to demonstrate to you is where operators combined with the power that was already within OpenShift are now coming together to keep this you know particular database service highly available and something that we can continue using so Rob what have you got there yeah so as you can see we've got our couch based demo cluster running here and we can see that it's up and running we've got three members we've got an off secret this is what's controlling access to a UI that we're gonna look at in a second but what really shows the power of the operator is looking at this view of the resources that it's managing you can see that we've got a service that's doing load balancing into the cluster and then like you said we've got our pods that are actually running the software itself okay so that's cool so maybe for everyone's benefit so we can show that this is happening live could we bring up the the Couchbase console please and keep up the openshift console both sides so what we see there we go so what we see on the on the right hand side is obviously the same console Rob was working in on the left-hand side as you can see by the the actual names of the pods that are there the the couch based services that are available and so Rob maybe um let's let's kill something that's always fun to do on stage yeah this is the power of the operator it's going to recover it so let's browse on over here and kill node number two so we're gonna forcefully kill this and kick off the recovery and I see right away that because of the integration that we have with operators the Couchbase console immediately picked up that something has changed in the environment now why is that important normally a human being would have to get that alert right and so with operators now we've taken that capability and we've realized that there has been a new event within the environment this is not something that you know kubernetes or open shipped by itself would be able to understand now I'm presuming we're gonna end up doing something else it's not just seeing that it failed and sure enough there we go remember when you have a stateful application rebalancing that data and making it available is just as important as ensuring that the disk is attached so I mean Rob thank you so much for you know driving this for us today and being here I mean you know not only Couchbase but as was mentioned by matt we also have you know crunchy dynaTrace and black duck I would encourage you all to go visit their booths out on the floor today and understand what they have available which are all you know here with a dev preview and then talk to the many other partners that we have that are also looking at operators so again rub thank you for joining us today Matt come on out okay this is gonna make for an exciting year of just what it means to consume container base content I think containers change how customers can get that I believe operators are gonna change how much they can trust running that content let's circle back to one more partner this next partner we have has changed the landscape of computing specifically with their work on hardware design work on core Linux itself you know in fact I think they've become so ubiquitous with computing that we often overlook the technological marvels that they've been able to overcome now for myself I studied computer engineering so in the late 90s I had the chance to study processor design I actually got to build one of my own processors now in my case it was the most trivial processor that you could imagine it was an 8-bit subtractor which means it can subtract two numbers 256 or smaller but in that process I learned the sheer complexity that goes into processor design things like wire placements that are so close that electrons can cut through the insulation in short and then doing those wire placements across three dimensions to multiple layers jamming in as many logic components as you possibly can and again in my case this was to make a processor that could subtract two numbers but once I was done with this the second part of the course was studying the Pentium processor now remember that moment forever because looking at what the Pentium processor was able to accomplish it was like looking at alien technology and the incredible thing is that Intel our next partner has been able to keep up that alien like pace of innovation twenty years later so we're excited have Doug Fisher here let's hear a little bit more from Intel for business wide open skies an open mind no matter the context the idea of being open almost only suggests the potential of infinite possibilities and that's exactly the power of open source whether it's expanding what's possible in business the science and technology or for the greater good which is why-- open source requires the involvement of a truly diverse community of contributors to scale and succeed creating infinite possibilities for technology and more importantly what we do with it [Music] you know what Intel one of our core values is risk-taking and I'm gonna go just a bit off script for a second and say I was just backstage and I saw a gentleman that looked a lot like Scott Guthrie who runs all of Microsoft's cloud enterprise efforts wearing a red shirt talking to Cormier I'm just saying I don't know maybe I need some more sleep but that's what I saw as we approach Intel's 50th anniversary these words spoken by our co-founder Robert Noyce are as relevant today as they were decades ago don't be encumbered by history this is about breaking boundaries in technology and then go off and do something wonderful is about innovation and driving innovation in our industry and Intel we're constantly looking to break boundaries to advance our technology in the cloud in enterprise space that is no different so I'm going to talk a bit about some of the boundaries we've been breaking and innovations we've been driving at Intel starting with our Intel Xeon platform Orion Xeon scalable platform we launched several months ago which was the biggest and mark the most advanced movement in this technology in over a decade we were able to drive critical performance capabilities unmatched agility and added necessary and sufficient security to that platform I couldn't be happier with the work we do with Red Hat and ensuring that those hero features that we drive into our platform they fully expose to all of you to drive that innovation to go off and do something wonderful well there's taking advantage of the performance features or agility features like our advanced vector extensions or avx-512 or Intel quick exist those technologies are fully embraced by Red Hat Enterprise Linux or whether it's security technologies like txt or trusted execution technology are fully incorporated and we look forward to working with Red Hat on their next release to ensure that our advancements continue to be exposed and their platform and all these workloads that are driving the need for us to break boundaries and our technology are driving more and more need for flexibility and computing and that's why we're excited about Intel's family of FPGAs to help deliver that additional flexibility for you to build those capabilities in your environment we have a broad set of FPGA capabilities from our power fish at Mac's product line all the way to our performance product line on the 6/10 strat exten we have a broad set of bets FPGAs what i've been talking to customers what's really exciting is to see the combination of using our Intel Xeon scalable platform in combination with FPGAs in addition to the acceleration development capabilities we've given to software developers combining all that together to deliver better and better solutions whether it's helping to accelerate data compression well there's pattern recognition or data encryption and decryption one of the things I saw in a data center recently was taking our Intel Xeon scalable platform utilizing the capabilities of FPGA to do data encryption between servers behind the firewall all the while using the FPGA to do that they preserve those precious CPU cycles to ensure they delivered the SLA to the customer yet provided more security for their data in the data center one of the edges in cyber security is innovation and route of trust starts at the hardware we recently renewed our commitment to security with our security first pledge has really three elements to our security first pledge first is customer first urgency we have now completed the release of the micro code updates for protection on our Intel platforms nine plus years since launch to protect against things like the side channel exploits transparent and timely communication we are going to communicate timely and openly on our Intel comm website whether it's about our patches performance or other relevant information and then ongoing security assurance we drive security into every one of our products we redesigned a portion of our processor to add these partition capability which is adding additional walls between applications and user level privileges to further secure that environment from bad actors I want to pause for a second and think everyone in this room involved in helping us work through our security first pledge this isn't something we do on our own it takes everyone in this room to help us do that the partnership and collaboration was next to none it's the most amazing thing I've seen since I've been in this industry so thank you we don't stop there we continue to advance our security capabilities cross-platform solutions we recently had a conference discussion at RSA where we talked about Intel Security Essentials where we deliver a framework of capabilities and the end that are in our silicon available for those to innovate our customers and the security ecosystem to innovate on a platform in a consistent way delivering that assurance that those capabilities will be on that platform we also talked about things like our security threat technology threat detection technology is something that we believe in and we launched that at RSA incorporates several elements one is ability to utilize our internal graphics to accelerate some of the memory scanning capabilities we call this an accelerated memory scanning it allows you to use the integrated graphics to scan memory again preserving those precious cycles on the core processor Microsoft adopted this and are now incorporated into their defender product and are shipping it today we also launched our threat SDK which allows partners like Cisco to utilize telemetry information to further secure their environments for cloud workloads so we'll continue to drive differential experiences into our platform for our ecosystem to innovate and deliver more and more capabilities one of the key aspects you have to protect is data by 2020 the projection is 44 zettabytes of data will be available 44 zettabytes of data by 2025 they project that will grow to a hundred and eighty s data bytes of data massive amount of data and what all you want to do is you want to drive value from that data drive and value from that data is absolutely critical and to do that you need to have that data closer and closer to your computation this is why we've been working Intel to break the boundaries in memory technology with our investment in 3d NAND we're reducing costs and driving up density in that form factor to ensure we get warm data closer to the computing we're also innovating on form factors we have here what we call our ruler form factor this ruler form factor is designed to drive as much dense as you can in a 1u rack we're going to continue to advance the capabilities to drive one petabyte of data at low power consumption into this ruler form factor SSD form factor so our innovation continues the biggest breakthrough and memory technology in the last 25 years in memory media technology was done by Intel we call this our 3d crosspoint technology and our 3d crosspoint technology is now going to be driven into SSDs as well as in a persistent memory form factor to be on the memory bus giving you the speed of memory characteristics of memory as well as the characteristics of storage given a new tier of memory for developers to take full advantage of and as you can see Red Hat is fully committed to integrating this capability into their platform to take full advantage of that new capability so I want to thank Paul and team for engaging with us to make sure that that's available for all of you to innovate on and so we're breaking boundaries and technology across a broad set of elements that we deliver that's what we're about we're going to continue to do that not be encumbered by the past your role is to go off and doing something wonderful with that technology all ecosystems are embracing this and driving it including open source technology open source is a hub of innovation it's been that way for many many years that innovation that's being driven an open source is starting to transform many many businesses it's driving business transformation we're seeing this coming to light in the transformation of 5g driving 5g into the networked environment is a transformational moment an open source is playing a pivotal role in that with OpenStack own out and opie NFV and other open source projects were contributing to and participating in are helping drive that transformation in 5g as you do software-defined networks on our barrier breaking technology we're also seeing this transformation rapidly occurring in the cloud enterprise cloud enterprise are growing rapidly and innovation continues our work with virtualization and KVM continues to be aggressive to adopt technologies to advance and deliver more capabilities in virtualization as we look at this with Red Hat we're now working on Cube vert to help move virtualized workloads onto these platforms so that we can now have them managed at an open platform environment and Cube vert provides that so between Intel and Red Hat and the community we're investing resources to make certain that comes to product as containers a critical feature in Linux becomes more and more prevalent across the industry the growth of container elements continues at a rapid rapid pace one of the things that we wanted to bring to that is the ability to provide isolation without impairing the flexibility the speed and the footprint of a container with our clear container efforts along with hyper run v we were able to combine that and create we call cotta containers we launched this at the end of last year cotta containers is designed to have that container element available and adding elements like isolation both of these events need to have an orchestration and management capability Red Hat's OpenShift provides that capability for these workloads whether containerized or cube vert capabilities with virtual environments Red Hat openshift is designed to take that commercial capability to market and we've been working with Red Hat for several years now to develop what we call our Intel select solution Intel select solutions our Intel technology optimized for downstream workloads as we see a growth in a workload will work with a partner to optimize a solution on Intel technology to deliver the best solution that could be deployed quickly our effort here is to accelerate the adoption of these type of workloads in the market working with Red Hat's so now we're going to be deploying an Intel select solution design and optimized around Red Hat OpenShift we expect the industry's start deploying this capability very rapidly I'm excited to announce today that Lenovo is committed to be the first platform company to deliver this solution to market the Intel select solution to market will be delivered by Lenovo now I talked about what we're doing in industry and how we're transforming businesses our technology is also utilized for greater good there's no better example of this than the worked by dr. Stephen Hawking it was a sad day on March 14th of this year when dr. Stephen Hawking passed away but not before Intel had a 20-year relationship with dr. Hawking driving breakthrough capabilities innovating with him driving those robust capabilities to the rest of the world one of our Intel engineers an Intel fellow which is the highest technical achievement you can reach at Intel got to spend 10 years with dr. Hawking looking at innovative things they could do together with our technology and his breakthrough innovative thinking so I thought it'd be great to bring up our Intel fellow Lema notch Minh to talk about her work with dr. Hawking and what she learned in that experience come on up Elina [Music] great to see you Thanks something going on about the breakthrough breaking boundaries and Intel technology talk about how you use that in your work with dr. Hawking absolutely so the most important part was to really make that technology contextually aware because for people with disability every single interaction takes a long time so whether it was adapting for example the language model of his work predictor to understand whether he's gonna talk to people or whether he's writing a book on black holes or to even understand what specific application he might be using and then making sure that we're surfacing only enough actions that were relevant to reduce that amount of interaction so the tricky part is really to make all of that contextual awareness happen without totally confusing the user because it's constantly changing underneath it so how is that your work involving any open source so you know the problem with assistive technology in general is that it needs to be tailored to the specific disability which really makes it very hard and very expensive because it can't utilize the economies of scale so basically with the system that we built what we wanted to do is really enable unleashing innovation in the world right so you could take that framework you could tailor to a specific sensor for example a brain computer interface or something like that where you could actually then support a different set of users so that makes open-source a perfect fit because you could actually build and tailor and we you spoke with dr. Hawking what was this view of open source is it relevant to him so yeah so Stephen was adamant from the beginning that he wanted a system to benefit the world and not just himself so he spent a lot of time with us to actually build this system and he was adamant from day one that he would only engage with us if we were commit to actually open sourcing the technology that's fantastic and you had the privilege of working with them in 10 years I know you have some amazing stories to share so thank you so much for being here thank you so much in order for us to scale and that's what we're about at Intel is really scaling our capabilities it takes this community it takes this community of diverse capabilities it takes two births thought diverse thought of dr. Hawking couldn't be more relevant but we also are proud at Intel about leading efforts of diverse thought like women and Linux women in big data other areas like that where Intel feels that that diversity of thinking and engagement is critical for our success so as we look at Intel not to be encumbered by the past but break boundaries to deliver the technology that you all will go off and do something wonderful with we're going to remain committed to that and I look forward to continue working with you thank you and have a great conference [Applause] thank God now we have one more customer story for you today when you think about customers challenges in the technology landscape it is hard to ignore the public cloud these days public cloud is introducing capabilities that are driving the fastest rate of innovation that we've ever seen in our industry and our next customer they actually had that same challenge they wanted to tap into that innovation but they were also making bets for the long term they wanted flexibility and providers and they had to integrate to the systems that they already have and they have done a phenomenal job in executing to this so please give a warm welcome to Kerry Pierce from Cathay Pacific Kerry come on thanks very much Matt hi everyone thank you for giving me the opportunity to share a little bit about our our cloud journey let me start by telling you a little bit about Cathay Pacific we're an international airline based in Hong Kong and we serve a passenger and a cargo network to over 200 destinations in 52 countries and territories in the last seventy years and years seventy years we've made substantial investments to develop Hong Kong as one of the world's leading transportation hubs we invest in what matters most to our customers to you focusing on our exemplary service and our great product and it's both on the ground and in the air we're also investing and expanding our network beyond our multiple frequencies to the financial districts such as Tokyo New York and London and we're connecting Asia and Hong Kong with key tech hubs like San Francisco where we have multiple flights daily we're also connecting Asia in Hong Kong to places like Tel Aviv and our upcoming destination of Dublin in fact 2018 is actually going to be one of our biggest years in terms of network expansion and capacity growth and we will be launching in September our longest flight from Hong Kong direct to Washington DC and that'll be using a state-of-the-art Airbus a350 1000 aircraft so that's a little bit about Cathay Pacific let me tell you about our journey through the cloud I'm not going to go into technical details there's far smarter people out in the audience who will be able to do that for you just focus a little bit about what we were trying to achieve and the people side of it that helped us get there we had a couple of years ago no doubt the same issues that many of you do I don't think we're unique we had a traditional on-premise non-standardized fragile infrastructure it didn't meet our infrastructure needs and it didn't meet our development needs it was costly to maintain it was costly to grow and it really inhibited innovation most importantly it slowed the delivery of value to our customers at the same time you had the hype of cloud over the last few years cloud this cloud that clouds going to fix the world we were really keen on making sure we didn't get wound up and that so we focused on what we needed we started bottom up with a strategy we knew we wanted to be clouded Gnostic we wanted to have active active on-premise data centers with a single network and fabric and we wanted public clouds that were trusted and acted as an extension of that environment not independently we wanted to avoid single points of failure and we wanted to reduce inter dependencies by having loosely coupled designs and finally we wanted to be scalable we wanted to be able to cater for sudden surges of demand in a nutshell we kind of just wanted to make everything easier and a management level we wanted to be a broker of services so not one size fits all because that doesn't work but also not one of everything we want to standardize but a pragmatic range of services that met our development and support needs and worked in harmony with our public cloud not against it so we started on a journey with red hat we implemented Red Hat cloud forms and ansible to manage our hybrid cloud we also met implemented Red Hat satellite to maintain a manager environment we built a Red Hat OpenStack on crimson vironment to give us an alternative and at the same time we migrated a number of customer applications to a production public cloud open shift environment but it wasn't all Red Hat you love heard today that the Red Hat fits within an overall ecosystem we looked at a number of third-party tools and services and looked at developing those into our core solution I think at last count we had tried and tested somewhere past eight different tools and at the moment we still have around 62 in our environment that help us through that journey but let me put the technical solution aside a little bit because it doesn't matter how good your technical solution is if you don't have the culture and the people to get it right as a group we needed to be aligned for delivery and we focused on three core behaviors we focused on accountability agility and collaboration now I was really lucky we've got a pretty fantastic team for whom that was actually pretty easy but but again don't underestimate the importance of getting the culture and the people right because all the technology in the world doesn't matter if you don't have that right I asked the team what did we do differently because in our situation we didn't go out and hire a bunch of new people we didn't go out and hire a bunch of consultants we had the staff that had been with us for 10 20 and in some cases 30 years so what did we do differently it was really simple we just empowered and supported our staff we knew they were the smart ones they were the ones that were dealing with a legacy environment and they had the passion to make the change so as a team we encouraged suggestions and contributions from our overall IT community from the bottom up we started small we proved the case we told the story and then we got by him and only did did we implement wider the benefits the benefit through our staff were a huge increase in staff satisfaction reduction and application and platform outage support incidents risk free and failsafe application releases work-life balance no more midnight deployments and our application and infrastructure people could really focus on delivering customer value not on firefighting and for our end customers the people that travel with us it was really really simple we could provide a stable service that allowed for faster releases which meant we could deliver value faster in terms of stats we migrated 16 production b2c applications to a public cloud OpenShift environment in 12 months we decreased provisioning time from weeks or occasionally months we were waiting for hardware two minutes and we had a hundred percent availability of our key customer facing systems but most importantly it was about people we'd built a culture a culture of innovation that was built on a foundation of collaboration agility and accountability and that permeated throughout the IT organization not those just those people that were involved in the project everyone with an IT could see what good looked like and to see what it worked what it looked like in terms of working together and that was a key foundation for us the future for us you will have heard today everything's changing so we're going to continue to develop our open hybrid cloud onboard more public cloud service providers continue to build more modern applications and leverage the emerging technology integrate and automate everything we possibly can and leverage more open source products with the great support from the open source community so there you have it that's our journey I think we succeeded by not being over awed and by starting with the basics the technology was key obviously it's a cool component but most importantly it was a way we approached our transition we had a clear strategy that was actually developed bottom-up by the people that were involved day to day and we empowered those people to deliver and that provided benefits to both our staff and to our customers so thank you for giving the opportunity to share and I hope you enjoy the rest of the summer [Applause] I got one thanks what a great story would a great customer story to close on and we have one more partner to come up and this is a partner that all of you know that's Microsoft Microsoft has gone through an amazing transformation they've we've built an incredibly meaningful partnership with them all the way from our open source collaboration to what we do in the business side we started with support for Red Hat Enterprise Linux on hyper-v and that was truly just the beginning today we're announcing one of the most exciting joint product offerings on the market today let's please give a warm welcome to Paul correr and Scott Scott Guthrie to tell us about it guys come on out you know Scot welcome welcome to the Red Hat summer thanks for coming really appreciate it great to be here you know many surprises a lot of people when we you know published a list of speakers and then you rock you were on it and you and I are on stage here it's really really important and exciting to us exciting new partnership we've worked together a long time from the hypervisor up to common support and now around hybrid hybrid cloud maybe from your perspective a little bit of of what led us here well you know I think the thing that's really led us here is customers and you know Microsoft we've been on kind of a transformation journey the last several years where you know we really try to put customers at the center of everything that we do and you know as part of that you quickly learned from customers in terms of I'm including everyone here just you know you've got a hybrid of state you know both in terms of what you run on premises where it has a lot of Red Hat software a lot of Microsoft software and then really is they take the journey to the cloud looking at a hybrid of state in terms of how do you run that now between on-premises and a public cloud provider and so I think the thing that both of us are recognized and certainly you know our focus here at Microsoft has been you know how do we really meet customers with where they're at and where they want to go and make them successful in that journey and you know it's been fantastic working with Paul and the Red Hat team over the last two years in particular we spend a lot of time together and you know really excited about the journey ahead so um maybe you can share a bit more about the announcement where we're about to make today yeah so it's it's it's a really exciting announcement it's and really kind of I think first of its kind in that we're delivering a Red Hat openshift on Azure service that we're jointly developing and jointly managing together so this is different than sort of traditional offering where it's just running inside VMs and it's sort of two vendors working this is really a jointly managed service that we're providing with full enterprise support with a full SLA where the you know single throat to choke if you will although it's collectively both are choke the throats in terms of making sure that it works well and it's really uniquely designed around this hybrid world and in that it supports will support both Windows and Linux containers and it role you know it's the same open ship that runs both in the public cloud on Azure and on-premises and you know it's something that we hear a lot from customers I know there's a lot of people here that have asked both of us for this and super excited to be able to talk about it today and we're gonna show off the first demo of it just a bit okay well I'm gonna ask you to elaborate a bit more about this how this fits into the bigger Microsoft picture and I'll get out of your way and so thanks again thank you for coming here we go thanks Paul so I thought I'd spend just a few minutes talking about wouldn't you know that some of the work that we're doing with Microsoft Asher and the overall Microsoft cloud I didn't go deeper in terms of the new offering that we're announcing today together with red hat and show demo of it actually in action in a few minutes you know the high level in terms of you know some of the work that we've been doing at Microsoft the last couple years you know it's really been around this this journey to the cloud that we see every organization going on today and specifically the Microsoft Azure we've been providing really a cloud platform that delivers the infrastructure the application and kind of the core computing needs that organizations have as they want to be able to take advantage of what the cloud has to offer and in terms of our focus with Azure you know we've really focused we deliver lots and lots of different services and features but we focused really in particular on kind of four key themes and we see these four key themes aligning very well with the journey Red Hat it's been on and it's partly why you know we think the partnership between the two companies makes so much sense and you know for us the thing that we've been really focused on has been with a or in terms of how do we deliver a really productive cloud meaning how do we enable you to take advantage of cutting-edge technology and how do we kind of accelerate the successful adoption of it whether it's around the integration of managed services that we provide both in terms of the application space in the data space the analytic and AI space but also in terms of just the end-to-end management and development tools and how all those services work together so that teams can basically adopt them and be super successful yeah we deeply believe in hybrid and believe that the world is going to be a multi cloud and a multi distributed world and how do we enable organizations to be able to take the existing investments that they already have and be able to easily integrate them in a public cloud and with a public cloud environment and get immediate ROI on day one without how to rip and replace tons of solutions you know we're moving very aggressively in the AI space and are looking to provide a rich set of AI services both finished AI models things like speech detection vision detection object motion etc that any developer even at non data scientists can integrate to make application smarter and then we provide a rich set of AI tooling that enables organizations to build custom models and be able to integrate them also as part of their applications and with their data and then we invest very very heavily on trust Trust is sort of at the core of a sure and we now have more compliant certifications than any other cloud provider we run in more countries than any other cloud provider and we really focus around unique promises around data residency data sovereignty and privacy that are really differentiated across the industry and terms of where Iser runs today we're in 50 regions around the world so our region for us is typically a cluster of multiple data centers that are grouped together and you can see we're pretty much on every continent with the exception of Antarctica today and the beauty is you're going to be able to take the Red Hat open shift service and run it on ashore in each of these different locations and really have a truly global footprint as you look to build and deploy solutions and you know we've seen kind of this focus on productivity hybrid intelligence and Trust really resonate in the market and about 90 percent of Fortune 500 companies today are deployed on Azure and you heard Nike talked a little bit earlier this afternoon about some of their journeys as they've moved to a dot public cloud this is a small logo of just a couple of the companies that are on ashore today and what I do is actually even before we dive into the open ship demo is actually just show a quick video you know one of the companies thing there are actually several people from that organization here today Deutsche Bank who have been working with both Microsoft and Red Hat for many years Microsoft on the other side Red Hat both on the rel side and then on the OpenShift side and it's just one of these customers that have helped bring the two companies together to deliver this managed openshift service on Azure and so I'm just going to play a quick video of some of the folks that Deutsche Bank talking about their experiences and what they're trying to get out of it so we could roll the video that'd be great technology is at the absolute heart of Deutsche Bank we've recognized that the cost of running our infrastructure was particularly high there was a enormous amount of under utilization we needed a platform which was open to polyglot architecture supporting any kind of application workload across the various business lines of the third we analyzed over 60 different vendor products and we ended up with Red Hat openshift I'm super excited Microsoft or supporting Linux so strongly to adopting a hybrid approach we chose as here because Microsoft was the ideal partner to work with on constructs around security compliance business continuity as you as in all the places geographically that we need to be we have applications now able to go from a proof of concept to production in three weeks that is already breaking records openshift gives us given entities and containers allows us to apply the same sets of processes automation across a wide range of our application landscape on any given day we run between seven and twelve thousand containers across three regions we start see huge levels of cost reduction because of the level of multi-tenancy that we can achieve through containers open ship gives us an abstraction layer which is allows us to move our applications between providers without having to reconfigure or recode those applications what's really exciting for me about this journey is the way they're both Red Hat and Microsoft have embraced not just what we're doing but what each other are doing and have worked together to build open shift as a first-class citizen with Microsoft [Applause] in terms of what we're announcing today is a new fully managed OpenShift service on Azure and it's really the first fully managed service provided end-to-end across any of the cloud providers and it's jointly engineer operated and supported by both Microsoft and Red Hat and that means again sort of one service one SLA and both companies standing for a link firmly behind it really again focusing around how do we make customers successful and as part of that really providing the enterprise-grade not just isolates but also support and integration testing so you can also take advantage of all your rel and linux-based containers and all of your Windows server based containers and how can you run them in a joint way with a common management stack taking the advantage of one service and get maximum density get maximum code reuse and be able to take advantage of a containerized world in a better way than ever before and make this customer focus is very much at the center of what both companies are really centered around and so what if I do be fun is rather than just talk about openshift as actually kind of show off a little bit of a journey in terms of what this move to take advantage of it looks like and so I'd like to invite Brendan and Chris onstage who are actually going to show off a live demo of openshift on Azure in action and really walk through how to provision the service and basically how to start taking advantage of it using the full open ship ecosystem so please welcome Brendan and Chris we're going to join us on stage for a demo thanks God thanks man it's been a good afternoon so you know what we want to get into right now first I'd like to think Brandon burns for joining us from Microsoft build it's a busy week for you I'm sure your own stage there a few times as well you know what I like most about what we just announced is not only the business and technical aspects but it's that operational aspect the uniqueness the expertise that RedHat has for running OpenShift combined with the expertise that Microsoft has within Azure and customers are going to get this joint offering if you will with you know Red Hat OpenShift on Microsoft Azure and so you know kind of with that again Brendan I really appreciate you being here maybe talk to the folks about what we're going to show yeah so we're going to take a look at what it looks like to deploy OpenShift on to Azure via the new OpenShift service and the real selling point the really great part of this is the the deep integration with a cloud native app API so the same tooling that you would use to create virtual machines to create disks trade databases is now the tooling that you're going to use to create an open chip cluster so to show you this first we're going to create a resource group here so we're going to create that resource group in East us using the AZ tool that's the the azure command-line tooling a resource group is sort of a folder on Azure that holds all of your stuff so that's gonna come back into the second I've created my resource group in East us and now we're gonna use that exact same tool calling into into Azure api's to provision an open shift cluster so here we go we have AZ open shift that's our new command line tool putting it into that resource group I'm gonna get into East us alright so it's gonna take a little bit of time to deploy that open shift cluster it's doing a bunch of work behind the scenes provisioning all kinds of resources as well as credentials to access a bunch of different as your API so are we actually able to see this to you yeah so we can cut over to in just a second we can cut over to that resource group in a reload so Brendan while relating the beauty of what you know the teams have been doing together already is the fact that now open shift is a first-class citizen as it were yeah absolutely within the agent so I presume not only can I do a deployment but I can do things like scale and check my credentials and pretty much everything that I could do with any other service with that that's exactly right so we can anything that you you were used to doing via the my computer has locked up there we go the demo gods are totally with me oh there we go oh no I hit reload yeah that was that was just evil timing on the house this is another use for operators as we talked about earlier today that's right my dashboard should be coming up do I do I dare click on something that's awesome that was totally it was there there we go good job so what's really interesting about this I've also heard that it deploys you know in as little as five to six minutes which is really good for customers they want to get up and running with it but all right there we go there it is who managed to make it see that shows that it's real right you see the sweat coming off of me there but there you can see the I feel it you can see the various resources that are being created in order to create this openshift cluster virtual machines disks all of the pieces provision for you automatically via that one single command line call now of course it takes a few minutes to to create the cluster so in order to show the other side of that integration the integration between openshift and Azure I'm going to cut over to an open shipped cluster that I already have created alright so here you can see my open shift cluster that's running on Microsoft Azure I'm gonna actually log in over here and the first sign you're gonna see of the integration is it's actually using my credentials my login and going through Active Directory and any corporate policies that I may have around smart cards two-factor off anything like that authenticate myself to that open chef cluster so I'll accept that it can access my and now we're gonna load up the OpenShift web console so now this looks familiar to me oh yeah so if anybody's used OpenShift out there this is the exact same console and what we're going to show though is how this console via the open service broker and the open service broker implementation for Azure integrates natively with OpenShift all right so we can go down here and we can actually see I want to deploy a database I'm gonna deploy Mongo as my key value store that I'm going to use but you know like as we talk about management and having a OpenShift cluster that's managed for you I don't really want to have to manage my database either so I'm actually going to use cosmos DB it's a native Azure service it's a multilingual database that offers me the ability to access my data in a variety of different formats including MongoDB fully managed replicated around the world a pretty incredible service so I'm going to go ahead and create that so now Brendan what's interesting I think to me is you know we talked about the operational aspects and clearly it's not you and I running the clusters but you do need that way to interface with it and so when customers are able to deploy this all of this is out of the box there's no additional contemporary like this is what you get when you create when you use that tool to create that open chef cluster this is what you get with all of that integration ok great step through here and go ahead don't have any IP ranges there we go all right and we create that binding all right and so now behind the scenes openshift is integrated with the azure api's with all of my credentials to go ahead and create that distributed database once it's done provisioning actually all of the credentials necessary to access the database are going to be automatically populated into kubernetes available for me inside of OpenShift via service discovery to access from my application without any further work so I think that really shows not only the power of integrating openshift with an azure based API but actually the power of integrating a Druze API is inside of OpenShift to make a truly seamless experience for managing and deploying your containers across a variety of different platforms yeah hey you know Brendan this is great I know you've got a flight to catch because I think you're back onstage in a few hours but you know really appreciate you joining us today absolutely I look forward to seeing what else we do yeah absolutely thank you so much thanks guys Matt you want to come back on up thanks a lot guys if you have never had the opportunity to do a live demo in front of 8,000 people it'll give you a new appreciation for standing up there and doing it and that was really good you know every time I get the chance just to take a step back and think about the technology that we have at our command today I'm in awe just the progress over the last 10 or 20 years is incredible on to think about what might come in the next 10 or 20 years really is unthinkable you even forget 10 years what might come in the next five years even the next two years but this can create a lot of uncertainty in the environment of what's going to be to come but I believe I am certain about one thing and that is if ever there was a time when any idea is achievable it is now just think about what you've seen today every aspect of open hybrid cloud you have the world's infrastructure at your fingertips and it's not stopping you've heard about this the innovation of open source how fast that's evolving and improving this capability you've heard this afternoon from an entire technology ecosystem that's ready to help you on this journey and you've heard from customer after customer that's already started their journey in the successes that they've had you're one of the neat parts about this afternoon you will aren't later this week you will actually get to put your hands on all of this technology together in our live audience demo you know this is what some it's all about for us it's a chance to bring together the technology experts that you can work with to help formulate how to pull off those ideas we have the chance to bring together technology experts our customers and our partners and really create an environment where everyone can experience the power of open source that same spark that I talked about when I was at IBM where I understood the but intial that open-source had for enterprise customers we want to create the environment where you can have your own spark you can have that same inspiration let's make this you know in tomorrow's keynote actually you will hear a story about how open-source is changing medicine as we know it and literally saving lives it is a great example of expanding the ideas it might be possible that we came into this event with so let's make this the best summit ever thank you very much for being here let's kick things off right head down to the Welcome Reception in the expo hall and please enjoy the summit thank you all so much [Music] [Music]