>> Welcome back to theCube's coverage of PagerDuty Summit 22. Lisa Martin with you here on the ground. I've got one of our alumni back with me. Sean Scott joins me, the Chief Product Officer at PagerDuty. It's great to have you here in person. >> Super great to be here in person. >> Isn't it nice? >> Quite a change, quite a change. >> It is a change. We were talking before we went live about it. That's that readjustment to actually being with another human, but it's a good readjustment to have >> Awesome readjustment. I've been traveling more and more in the past few weeks and just speaking the offices, seeing the people the energy we get is the smiles, it's amazing. So it's so much better than just sitting at your home and. >> Oh, I couldn't agree more. For me it's the energy and the CEO of DocuSign talked about that with Jennifer during her fireside chat this morning, but yes, finally, someone like me who doesn't like working from home but as one of the things that you talked about in your keynote this morning was the ways traditionally that we've been working are no longer working. Talk to me about the future of work. What does it look like from PagerDuty's lens? >> Sure. So there's a few things. If we just take a step back and think about, what your day looks like from all the different slacks, chats, emails, you have your dashboards, you have more slacks coming in, you have more emails coming in, more chat and so just when you start the day off, you think you know what you're doing and then it kind of blows up out of the gate and so what we're all about is really trying to revolutionize operations so how do you help make sense of all the chaos that's happening and how do you make it simpler so you can get back to doing the more meaningful work and leave the tedium to the machines and just automate. >> That would be critical. One of the things that such an interesting dynamic two years that we've had obviously here we are in San Francisco with virtual event this year but there's so many problems out there that customer landscape's dealing with the great resignation. The data deluge, there's just data coming in everywhere and we have this expectation when we're on the consumer side, that we're going to be that a business will know us and have enough context to make us that the next best offer that actually makes sense but now what we're seeing is like the great resignation and the data overload is really creating for many organizations, this operational complexity that's now a problem really amorphously across the organization. It's no longer something that the back office has to deal with or just the front office, it's really across. >> Yeah, that's right. So you think about just the customer's experience, their expectations are higher than ever. I think there's been a lot of great consumer products that have taught the world, what good looks like, and I came from a consumer background and we measured the customer experience in milliseconds and so customers talking about minutes or hours of outages, customers are thinking in milliseconds so that's the disconnect and so, you have to be focused at that level and have everybody in your organization focused, thinking about milliseconds of customer experience, not seconds, minutes, hours, if that's where you're at, then you're losing customers. And then you think about, you mentioned the great resignation. Well, what does that mean for a given team or organization? That means lost institutional knowledge. So if you have the experts and they leave now, who's the experts? And do you have the processes and the tools and the runbooks to make sure that nothing falls on the ground? Probably not. Most of the people that we talk to, they're trying to figure it out as they go and they're getting better but there's a lot of institutional knowledge that goes out the door when people leave. And so part of our solution is also around our runbook automation and our process automation and some of our announcements today really help address that problem to keep the business running, keep the operations running, keep everything kind of moving and the customers happy ultimately and keep your business going where it needs to go. >> That customer experience is critical for organizations in every industry these days because we don't to your point. We'll tolerate milliseconds, but that's about it. Talk to me about you did this great keynote this morning that I had a chance to watch and you talked about how PagerDuty is revolutionizing operations and I thought, I want you to be able to break that down for this audience who may not have heard that. What are those four tenants or revolutionizing operations that PagerDuty is delivering to ORGS? >> Sure, so it starts with the data. So you mentioned the data deluge that's happening to everybody, right? And so we actually do, we integrate with over 650 systems to bring all that data in, so if you have an API or webhook, you can actually integrate with PagerDuty and push this data into PagerDuty and so that's where it starts, all these integrations and it's everything from a develop perspective, your CI/CD pipelines, your code repositories, from IT we have those systems are instrumented as well, even marketing, more tech stacks we can actually instrument and pull data in. The next step is now we have all this data, how do we make sense of it? So, we think we have machine learning algorithms that really help you focus your attention and kind of point you to the really relevant work, part of that is also noise suppression. So, our algorithms can suppress noise about 98% of the noise can just be eliminated and that helps you really focus where you need to spend your time 'cause if you think about human time and attention, it's pretty expensive and it's probably one of your company's most precious resources is that human time and so you want the humans doing the really meaningful work. Next step is automation, which is okay. We want the humans doing the special work, so what's the TDM? What's the toil that we can get rid of and push that to the machines 'cause machines are really good at doing very easy, repetitive task and there's a lot of them that we do day in, day out. The next step is just orchestrating the work and putting, getting everybody in the organization on the same page and that's where this morning I talked about our customer service operations product into the customer service is on the front lines and they're often getting signals from actual customers that nobody else in the organization may not even be aware of it yet So, I was running a system before and all our metrics are good and you get a customer feedback saying, "This isn't working for me," and you go look at the metrics and your dashboards and all looks good and then you go back and talk to the customer some more and they're like, "No, it's still not working," and you go back to your data, you're back to your dashboards, back to your metrics and sure enough, we had an instrumentation issue but the customer was giving us that feedback and so customer service is really on the front lines and they're often the kind of the unsung heroes for your customers but they're actually really helping and make sure that everything, the right signals are coming to the dev team, to the owners that own it and even in the case when you think you have everything instrumented, you may be missing something and that's where they can really help but our customer service operations product really helps bring everybody on the same page and then as the development teams and the IT teams and the SRA has pushed information back to customer service, then they're equipped, empowered to go tell the customer, "Okay, we know about the issue. Thank you." We should have it up in the next 30 minutes or whatever it is, five minutes, hopefully it's faster than longer, but they can inform the customer so to help that customer experience as opposed to the customer saying, "Oh, I'm just going to go shop somewhere else," or "I'm going to go buy somewhere else or do something else." And the last part is really around, how do we really enable our customers with the best practices? So those million users, the 21,000 companies in organizations we're working with, we've learned a lot around what good looks like. And so we've really embedded that back into our product in terms of our service standards which is really helps SRES and developers set quality standards for how services should be implemented at their company and then they can actually monitor and track across all their teams, what's the quality of the services and this team against different teams in their organization and really raise the quality of the overall system. >> So for businesses and like I mentioned, DocuSign was on this morning, I know some great brand customers that you guys have. I've seen on the website, Peloton Slack, a couple that popped out to me. When you're able to work with a customer to help them revolutionize operations, what are some of the business impacts? 'Cause some of the things that jump out to me would be like reduction in churn, retention rate or some of those things that are really overall impactful to the revenue of a business. >> Absolutely. And so there's a couple different parts of it. One is, all the work what PagerDuty is known for is orchestrating the work for a service outage or a website outage and so that's actually easy to measure 'cause you can measure your revenue that's coming in or missed revenue and how much we've shortened that. So that's the, I guess that's our kind of the history and our legacy but now we've moved into a lot of the cost side as well. So, helping customers really understand from an outage perspective where to focus our time as opposed to just orchestrating the work. Well now, we can say, we think we have a new feature we launched last year called Probable Origin. So when you have an outage, we can actually narrow in where we think the outage and just give you a few clues of this looks anomalous, for example. So let's start here. So that still focus on the top line and then from an automation perspective, there's lots and lots of just toil and noise that people are dealing with on a day in, day out basis and then some of it's easy work, some of it's harder work. One of the ones I really like is our automated diagnostics. So, if you have an incident, one of the first things you have to do is you have to go gather telemetry of what's actually happening on the servers, to say, is the CPU look good? Does the memory look good? Does the disc look good? Does the network look good? And that's all perfect work for automation. And so we can run our automated diagnostics and have all that data pumped directly into the incident so when the responder engages, it's all right there waiting for them and they don't have to go do all that basic task of getting data, cutting and pasting into the incident or if you're using one of those old ticketing systems, cutting and pacing into a a tickety system, it's all right there waiting for you. And that's on average 15 minutes during an outage of time that's saved. And the nice thing about that is that can all be kicked off at time zero so you can actually call from our event orchestration product, you can call directly into automation actions right there when that event first comes in. So you think about, there's a warning for a CPU and instantly it kicks off this diagnostics and then within seconds or even minutes, it's in the incident waiting for you to take action. >> One of the things that you also shared this morning that I loved was one of the stats around customer sale point that they had 60 different alerts coming in and PagerDuty was able to reduce that to one alert. So, 60 X reduction in alerts, getting rid of a lot of noise allowing them to focus on really those probably key high escalations that are going to make the biggest impact to their customers and to their business. >> That's right. You think about, you have a high severity incident like they actually had a database failure and so, when you're in the heat of the moment and you start getting these alerts, you're trying to figure out, is that one incident? Is it 10 incidents? Is it a hundred incidents that I'm having to deal with? And you probably have a good feeling like there's, I know it's probably this thing but you're not quite sure and so, with our machine learning we're able to eliminate a lot of the noise and in this case it was, going from 60 alerts down to one, just to let you know, this is the actual incident, but then also to focus your attention on where we think may be the cause and you think about all the different teams that historically have been had to pull in for a large scale incident. We can quickly narrow into the root cause and just get the right people involved. So we don't have these conference bridges of a hundred people on which you hear about. When these large cottages happen that everyone's on a call across the entire company and it's not just the dev teams and IT teams, you have PR, you have legal, you have everybody's involved in these. And so the more that we can workshop their work and get smarter about using machine learning, some of these other technologies then the more efficient it is for our customers and ultimately the better it is for their customers. >> Right and hopefully, PR, HR, legal doesn't have to be some of those incident response leaders that right now we're seeing across the organization. >> Exactly. Exactly. >> So when you're talking with customers and some of the things that you announced, you mentioned automated actions, incident workflows, what are you hearing from the voice of the customer as the chief product officer and what influence did that have in terms of this year's vision for the PagerDuty Summit? >> Sure. We listen to our customers all the time. It's one of our leadership principles and really trying to hear their feedback and it was interesting. I got sent some of the chat threads during the keynote afterwards, and there's a lot of excitement about the products we announced. So the first one is incident workflows, and this is really, it's a no code workflow based on or a recent acquisition of a company called Catalytic and what it does is it's, you can think of as kind of our next generation of response plays so you can actually go in and and build a workflow using no code tooling to say, when this incident happens or this type of incident happens, here's what that process looks like and so back to your original comment around the great resignation that loss institutional knowledge, well now, you're building all this into your processes through your incident response. And so, I think the incident workflows, if you want to create a incident specific slack channel or an incident specific zoom bridge, or even just in status updates, all that is right there for you and you can use our out of the box orchestrations or you can define your own 'cause we have back to the, our customer list, we have some of the biggest companies in the world, as customers and we have a very opinionated product and so if you're new to the whole DevOps and full service ownership, we help you through that. But then, a lot of our companies are evolving along that continuum, the operational maturity model continuum. And at the other end, we have customers that say "This is great, but we want to extend it. We want to like call this person or send this or update this system here." And so that's where the incident workflows is really powerful and it lets our customers just tailor it to their processes and really extend it for them. >> And that's GA later this year? >> Later this year, yes, we'll start ING probably the next few months and then GA later this year. >> Got it. Last question, as we're almost out of time here, what are some of the things that as you talk to customers day in and day out, as you see you saw the chats from this morning's live keynote, the excitement, the trust that PagerDuty is building with its customers, its partners, et cetera, What excites you about the future? >> So it's really why I came to PagerDuty. I've been here about a year and a half now, but revolutionizing operations, that's a big statement and I think we need it. I think Jennifer said in her keynote today, work is broken and I think our data, we surveyed our customers earlier this year and 42% of the respondents were working more hours in 2021 compared to 2020. And I don't think anyone goes home and if I could only work more hours, I think there's some and if I could only do more of this like TDM, the TDM, more toils, if I could only do more of that, I think life would be so good. We don't hear that. We don't hear that a lot. We hear about there's a lot of noise. We have a massive attrition that every company does. That's the type of feedback that we get and so we're really, that's what gets me excited about, the tools that we're building that and especially when I think just seeing the chat even this morning about some of the announcements, it shows we've been listening and it shows the excitement in our customers when they're, lots of I'm going to use this tool, that tool, I can just use PagerDuty which is awesome. >> The momentum is clear and it's palpable and I love being a part of that. Thank you so much Sean for joining me on theCube this afternoon, talking about what's new, what's exciting and how you guys are fixing work that's broken that validated me thinking the work was broken so thank you. >> Happy to be here and thanks for having me. >> My pleasure. For Sean Scott. I'm Lisa Martin, you're watching theCube's coverage of PagerDuty Summit 22 on the ground from the San Francisco. (soft music)

>>And welcome back to the cubes coverage of alias reinvent 2021. I'm Jon furrier, your host of the cube we're onsite we're hybrid. It's a hybrid event. We've got Odile, Shara Dean vice president of north America solution engineering at Salesforce. We deal SIM thank you for coming on the cube >>You John, excited to be >>Here. So w you know, Salesforce obviously, um, being in Palo Alto in the bay area, they've got the Salesforce tower, great business cloud before cloud great innovation. A lot of growth has been very successful at SAS and platform. So you take that to the government, uh, an area public sector where public sector and other areas around this have been exploding with the pandemic with new use cases and just kind of a refactoring and replatforming of L all aspects of digital. It's been a big digital transformation surge, and rightfully so you guys are in the mix here. Um, talk about the Salesforce is positioned as you guys innovate and scale your platform and rethink this architecture with AWS in the public sector. >>Yeah. Thank you, John. So you're spot on Salesforce defines SAS as a delivery of services to customers, and that's really the precursor to where we are with cloud here. So let's talk about public sector and what that means. I'm very proud to work in and around public sector for many years. And I'll Salesforce, public sector group supports any number of use cases, different missions, anywhere from state and local, all the way through to federal use cases on, on a global scale. But what that means, and I mean, right back to your question is how do we deliver those in the cloud in a scalable, responsive way? You mentioned the pandemic and throughout the pandemic, we were instrumental in trying to deliver these services and getting states and localities towns, countries up and running to deliver the critical things that we all learned about in a hurry contact pricing. >>COVID testing all these ideas around vaccine management, what it takes to get vaccines to populations, but many of our customers, many of our governments just weren't well positioned to do that. So what they were relying on was a secure, scalable, flexible environment that allowed them to define their workflows or their business models in a very, very rapid pace as we were dealing with the surge and the constantly changing landscape of the pandemic. So from our perspective, we've spent years investing in public sector to make sure that we need the compliance requirements, whether that's FedRAMP or, or CMMC, or protected being Canada, how do we do that reliably quickly so that our government customers can rely on us for situations like the pandemic to be able to respond? >>Yeah, one of the things we've been doing a lot of reporting around is the idea that the pandemic has kind of forced, and it was a forcing function around digital transformation. Uh, so I have to ask you knowing the history of Salesforce and the greatness of the company that you guys have had over the years, uh, when you get into the public sector, I'm sure you get all kinds of questions. We don't have sales forces, and we don't have sales managers. Um, we don't need a CRM. Um, and we have industry regulations. We're not a commercial thing. How do you answer those? Because you guys have infrastructure, you are a hyperscale, uh, what's your take on that and how do you answer those direct questions when they come up? >>All great questions and yes, we get them all the time. Uh, so how do we answer them? Well, first and foremost, the idea of a CRM is around putting your customer at the center of your view of them. So that customer relationship management means you, you have a view into the services your customer needs and how they're engaging with you, digitally engagement, in-person engagement, et cetera. I would intend that that's no different for a government entity than it is for a consumer. Very sensitive government entity wants to treat their constituents around the services they need and getting that full 360 view of what, what are the services available to them? How do they access them, et cetera, actually fits really well into that CRM model, but it does take some explaining and reinvisioning it, but it plays really well into the digital transformation imperatives that these agencies have, because what you want to do in a digital transformation is also re-imagined all these old systems and legacy systems, how you're going to make them more accessible. >>But also to your point, how do you bring them to this level of expectation that our consumers have? I'm now accustomed to having mobile apps and on-demand, uh, applications and websites for ordering products for ordering needs, et cetera, for booking a restaurant reservation, I've developed the exact same requirements and expectations of my government services and our government customers are clearly aware of this. So they want to bring this capability to the fore and offer their constituents a better experience as well. When you asked about government regulations, this is absolutely critical to how we think about delivering that service, the value of the cloud. Isn't just, you can go get access to a service and not have to worry about that service. It's also, how do we unencumber agencies from these compliance requirements from audits, from privacy checks and needs in a constantly evolving landscape. There's always a legislative imperative to change something, add more constraints, more privacy requirements, compliance requirements, et cetera. So what we want to do is free our customers up from having to worry about that. That's what we undertake. We provide them that level of assurance, and they focus once again, on that higher value of the business flows, the mission, the constituency context, and how to make that constituent experience better. >>I have to ask you, I had a chance to sit down one-on-one with Adam. Slupski the new CEO of AWS recently prior to re-invent. And he said something to me. I want to get your reaction to, he said with scale, you can get visibility on some new use cases. So this applies to Salesforce. You guys are a hyperscaler, you have this new architecture named hyper force. What is this all about? And how does that tie into celebrities comment? Okay. >>Yeah. Uh, excellent question. And we'll talk a little about that history that brings us to two hype before. So just like many of our customers, we realize that having the ability to scale across the globe and be able to offer our services in different regions, different compliance requirements meant that our investments in first party data centers needed to be reconstructed a little bit. And that posed a bit of a rearchitecture for us as well. But that's what gave us the flexibility then to essentially decouple our architecture from the physical infrastructure layer, but it afforded us then the ability to deploy very quickly and very scaleably on AWS in regions that we previously weren't operating in. So it allows us to move along quicker, allows us to bring that flexibility and that scale to the customer where they are. And then we can meet once again, coming back to compliance and regulations. >>We can meet requirements around data residency and data privacy requirements in different regions that we were somewhat constrained in doing earlier. And that also then gives us the ability, I think, to what Adam might've been alluding to now that we're able to bring that service to the customer, they can say, well, actually here's another use case that I would like Salesforce to deliver on. And it gives us that flexibility. We do a lot in terms of expanding across use cases. And if I can point to the pandemic again, just as a great frame of reference that we're all thrust into. Initially, if you cast your mind back to may of last year, we were all worried about contact tracing, right? No side effects scenes, yet we didn't even have pelvic testing. Well, shortly thereafter, COVID testing became available and states were offering those well that from contact tracing to COVID testing is a massive shift. If you think about the use case for technology. So we enable our customers to move very quickly from contact tracing, to COVID, testing them to vaccine management. They're actually entirely different use cases, even though they all apply to solving for the pandemic where we had so many others, digital outreach, helping with loans and grants and management through the PPP programs, through unemployment programs, all different use cases that we helped our customers extend to, which you can't do that if you're not flexible enough to move quickly and scale effectively to support those. >>I think that value proposition and that notion of having that regional global support is going to really come into the whole data programmability trend. I call data as dev ops kind of vibe where data as code becomes more, more agile, right? You're going to see that. I think that's going to be, that's a big theme at a reinvent this year. So, so I have to ask you now, now we're sitting in this global scale, you've got geopolitics, you got public sector. How does Salesforce government cloud plus, and hyper force help your help governments and their partners because their ecosystems too, right? So it's not a commercial. Now it's looking a lot like a commercial lines between commercial and government looking the same. How do you guys help governments and their partners? >>So having been in this, this, uh, area for so long, I, I like to position this tonight. I use this actually as a good selling point, even in selling the value propositions for investment internally, I think of the government regulations and requirements around privacy compliance as a minimum barrier of entry. So I'll, uh, you mentioned our government cloud, plus that's really more in the U S and it's a FedRAMP, uh, tested at a federal and PI level. We've got privacy of lays. We've got our DOD out for, uh, PA in there we've got HIPAA and PCI compliance bank 10. Those are efforts that if a company or a government customer were to go run through individually, it's going to take them a lot of time, effort, and investment to support those. And you end up creating an operations business that just does that for 24 7. >>That's the only reason for them to exist is to manage those. But then we have the government adjacent industries that you're referring to. What about the parkers that service government, they have their own set of regulations. more recently CMMC coming out, et cetera. We provide all of those as a baseline for our government cloud plus. So that level of assurance is assumed by customers and consumers of the service. And again, they're worried about what type of beta and what type of business workflows they're gonna enable and not, can they meet the basic regulations to stand up the service? >>Yeah, I think that highly of the workflows piece is critical because workflows is the new integration layer, right? So these seeing a lot of that, and again, that's a big theme at a re-invent this year. I'll see the performance is key graviton to all the processor stuff and, and, you know, it's lambed and old serverless, but as you move up to the stack where there's actual agility and modern applications that need to be built, whatever they are, you need to have this programmable cloud scale, but the customization on workflows and machine learning and AI. So this is all beautiful for everyone to think about, but now they have to implement it. So how might your customers and prospects consider expanding their offerings with Salesforce in the cloud? Is there, is there a certain playbook that you see, is there a situational awareness that's needed? How would you advise your customers will want to consider expanding, uh, their portfolio in their, their apps and workflows with Salesforce? >>Yeah, that's a fantastic question. So, John, and I'm going to start with, again, going back a little bit to what is Salesforce and who are we as a company? So in as much as we started talking about Salesforce as the number one CRM platform was SAS, we've also acquired some companies and invested in a lot of different, uh, elements of businesses, uh, Tableau NeoSoft and velocity more recently, the slack acquisition, and they're all slightly outside of our platform in terms of capabilities and what we intend for those to deliver. So our customers have a lot more options in terms of what it means to partner with and invest with Salesforce. Uh, slack is a great example of where that becomes a communications mesh and infrastructure that allows them to integrate, uh, technologies, applications, workflows, et cetera. So you want to rethink almost what is Salesforce and what does it mean in your enterprise? >>And then coming back to, to the core of what we do, a lot of how we enable our customers is here's an environment. We enable these very quickly a customer's access to the environment right away. They can set up testing environments, sandboxes, start playing with workflows and really reimagine what that environment is going to look like for their internal users and their engagement with these applications. So yes, we have runbooks we have playbooks, but we've also got enablers in the form of applications. We have a huge application market, if you will, where customers can download different accelerators and try those. We've got a huge network of partners that have delivered rich value added applications. So in most cases, our customers are going to find someone's already created the use case or the application or the workflow they needed. And maybe it's a case of just announcing that a little bit or updating it a little bit, or creating the integration to an in-house system already. So it makes it very exciting, but also makes it a very quick start to solve a problem. >>Oh, Nielsen, you guys have a great opportunity with the cloud and cloud scale. Obviously, companies successful Salesforce is well-known, but as data and governance has to be more agile, more secure often, that sounds counter-intuitive, but this is the big deal that's happening right now, where you need the leverage, the scale you need to have it secure, which you'd think needs to be protective, but making it more permissive is agility. This is the core theme, your, your reaction to wrap up, >>Uh, all great points and yes, to be the data isn't useful if it's entirely locked up. So at Todd, you bring the user to the data they have access to, and that data to provide them value. But especially in a, we'll put a government lens on this. On the government side, the data is ultimately what our government entities are stewarding. So yes services, but that data is imperative. So our customers understand the value of that data and then also how to not just extract value from it, but how to shepherd and steward the security of that data very well. So for us, it's the ability to get that data to the right users, allow them to construct their business omission flow on that data. But the data has to persist has to add value, has to be available for analytics and so on >>Nielsen. Jardeen vice president of north America solutions engineering at Salesforce. Thanks for coming on the cube and, and sharing your story and congratulate a big opportunity ahead for you guys. Congratulations. >>Absolutely. John, thank you so much. Enjoy the rest of the week. Okay. >>It was coverage of eight of us reinvent 2021. Um, John for a, your host. Thanks for watching.

>> Narrator: From the CUBE Studios in Palo Alto, in Boston. Connecting with thought leaders all around the world, this is a CUBE Conversation. >> Hi, everybody. Welcome to the special Cube Conversation. With COVID-19 hitting, organizations really had to focus on business resiliency, and we've got two great guests here to talk about that topic. Bob Bender's the chief technology officer at Founders Federal Credit Union. And he's joined by Jim Shook, who is the director of cybersecurity and compliance practice at Dell Technologies. Gentlemen, thanks for coming on the CUBE, great to see you. >> Thanks, Dave, great to see you, thank you. So, Bob, let's start with you, give us a little bit of background on Founders and your role. >> Founders Federal Credit Union is a financial institution that has about 225,000 members, serving them in 30 different locations, located in the Carolinas. I serve as chief technology officer bringing in the latest technology and cyber resilient direction for the company. >> Great. And Jim, talk about your role. Is this a new role that was precipitated by COVID or was this something that Dell has had for a while? Certainly relevant. >> It's actually been around for a while, Dave. The organization invested in this space going back about five years, I founded the cyber security and compliance practice. So really, my role is most of the time in the field with our customers, helping them to understand and solve their issues around the cyber resilience and cyber recovery field that we're talking about. But I also, to do that properly, spend a lot of time with organizations that are interested in that space. So it could be with an advisory partner, could be the FBI, might be a regulator, a particular group like Sheltered Harbor that we've worked with frequently. So it's just really, as you point out, taken off first with ransomware a couple of years ago, and then with the recent challenges from work from home in COVID. So we're really helping out a lot of our customers right now. >> Bob, I've talked privately to a number of CIOs and CSOs and many have said to me that when COVID hit that their business continuance was really much too (voice cuts out) Now, you guys actually started your journey way back in 2017. I wonder if you could take us back a few years and what were the trends that you were seeing that precipitated you to go on this journey? >> Well, I think we actually saw the malware, the horizon there. And I'll take you back a little further 'cause I just love that story is, when we looked at the relationship of Dell EMC, we talked to the 1% of the 1%, who is protecting their environment, their data capital, the new critical asset in our environment. And Dell EMC was the top of the line every time. When we looked at the environment and what it required, to put our assets under protection, again, we turned to Dell EMC and said, where do we need to go here? You look at this Mecklenburg County, you look at the city of Atlanta, you look at Boeing and I hate to use the examples, but some very large companies, some really experienced companies were susceptible to this malware attacks that we just knew ourself it was going to change us. So the horizon was moving fast and we had to as well. >> Well, you were in a highly regulated industry as well. How did that factor into the move? Well, you're exactly right. We had on our budget, our capital budget horizon, to do an air gap solution. We were looking at that. So the regulatory requirements were requiring that, the auditors were in every day talking about that. And we just kept framing that in what we were going to do in that environment. We wanted to make sure as we did this purpose built data bunker, that we looked at everything, talk to the experts, whether that was federal state regulation. You mentioned Sheltered Harbor, there's GDPR. All these things are changing how are we going to be able to sustain a forward look as we stand this environment up. And we also stood up a cyber security operations center. So we felt very confident in our Runbooks, in our incident response, that you would think that we would be ready to execute. I'll share with you that we reached out every which way and a friend called me and was actually in a live ransomware event and asked if I wanted to come on to their site to help them through that incident. We had some expertise on our staff that they did not possess at that time. So going into that environment, spending 30 hours of the last 72 hours of an attack we came back changed. We came back changed and went to our board and our executives and said, "We thought we knew what we were doing." But when you see the need to change from one to 10 servers recovery to 300 in 72 hours, we just realized that we had to change our plan. We turned to the investment we had already made and what we had looked at for some time, and said, "Dell EMC, we're ready to look at that "PowerProtect Cyber Recovery solution. "How can you stand this up very quickly?" >> So, Jim, Bob was saying that he looked at the 1% of the 1%, so these guys are early adopters, but anything you can add to that discussion in terms of what you saw precipitate the activity, let's go pre-COVID, certainly ransomware was part of that. Was that the big catalyst that you saw? >> It really was. So when we started the practice, it was following up on the Sony Pictures attack, which only hit Sony in that. But it was unique in that it was trying to destroy an organization as opposed to just steal their data. So we had financial industry really leading the way, the regulators in the financial industry saying, "Gosh, these attacks could happen here "and they would be devastating." So they led the way. And as our practice continued, 2016 became the year of ransomware and became more prevalent, with the attackers getting more sophisticated and being able to monetize their efforts more completely with things like cryptocurrencies. And so as we come around and start talking to Bob, he still was well ahead of the game. People were talking about these issues, starting to grow concerned, but didn't really understand what to do. And Dave, I know we'll get to this a little bit later, but even today, there's quite a bit of disconnect, many times between the business, understanding the risks of the business and then the technology, which really is the business now, but making those pieces fit together and understanding where you need to improve to secure against these risks is a difficult process. >> Well, I think I'd love to come back to Bob and try to understand how you pitch this to the board, if you will, how you made the business case. To Jim's point, the adversaries are highly capable. It's a lucrative business. I always talk to my kids about ROI numerator and denominator. If you can raise the denominator, that's going to lower the value. And that's the business that you're in is making it less attractive for the bad guys. But how did you present this to the board? Was it a board level discussion? >> It was, exactly. We brought Dell EMC PowerProtect Cyber Recovery solution to them and said, not only you're experiencing and seeing in the news daily, these attacks in our regions, but we have actually gone out into an environment and watch that attack play out. Not only that is when we stepped away, and we ran through some tabletops with them and we stepped away. And we said, "Are you okay? "Do you know how it got in? "Are you prepared to protect now and detect that again?" Within 30 days, they were hit again by the same ransomware attacks and hackers. So I hate to say this, but I probably fast forwarded on the business case and in the environment, the horizon around me, players, they made my case for me. So I really appreciated that top down approach. The board invested, the executive invested, they understood what was at risk. They understood that you don't have weeks to recover in the financial institution. You're dealing with hundreds of thousand transactions per second so it made my case. We had studied, we had talked to the experts. We knew what we wanted. We went to Dell EMC and said, "I have six months and here's my spend." And that's from equipment hitting our CoLOS and our data centers, standing it up, standing up the Runbooks and it's fully executed. And I wanted an environment that was not only holistic. We built it out to cover all of our data and that I could stand up the data center within that environment. I didn't need another backup solution. I needed a cyber recovery environment, a lifestyle change, if you would say. It's got to be different than your BCP/DR. While it inherits some of those relationships, we fund it with employees separately. We treated the incident response separately, and it is really benefited. And I think we've really grown. And we continue to stress that to educate ourselves not only at the board level, but a bottom up approach as well with the employees. 'cause they're a part of that human firewall as well. >> I think you've seen this where a lot of organizations, they do a checkbox on backup or as I was saying before, DR. But then in this world of digital, when a problem hits, it's like, "Oh-oh, we're not ready." So I wonder Jim, if we can get into this solution that Bob has been talking about the Dell EMC PowerProtect Cyber Recovery solution, there's a mouthful there. You got the power branding going on. What is that all about? Talk to us about the tech that's behind this. >> It's something that we've developed over time and really added to in our capability. So at its core, PowerProtect Cyber Recovery is going to protect your most critical data and applications so that if there is a cyber attack, a ransomware or destructive attack, they're safe from that attack. And you can take that data and recover the most important components of the business. And to do that, we do a number of things, Dave. The solution itself takes care of all these things. But number one is we isolate the data so that you can't get there from here. If you're a bad actor, even an insider, you can't get to the data because of how we've architected. And so we'll use that to update the critical applications and data. Then we'll lock that data down. People will use terms like immutability or retention lock. So we'll lock it down in that isolated environment, and then we'll analyze it. So it's one thing to be able to protect the data with the solution, it's another, to be able to say that what I have here in my data vault, in my air gapped isolated environment is clean. It's good data. And if there was an attack, I can use that to recover. And then of course over time, we've built out all the capabilities. We've made it easier to deploy, easier to manage. We have very sophisticated services for organizations that need them. And then we can do a much lighter touch for organizations that have a lot of their built in capabilities. At its core, it's a recover capability so that if there was an attack that was unfortunately successful, you don't lose your business. You're not at the mercy of the criminals to pay the ransom. You have this data and you can recover it. >> So Bob, talk to us about your objectives going into this. It's more than a project. It really is a transformation of your resiliency infrastructure, I'll call it. What were your objectives going in? A lot of companies are reacting, and it's like, you don't have time to really think. So what are the objectives? How long did it take? Paint a picture of the project and what it looked like, some of the high level milestones that you were able to achieve. >> Well, I think several times Dell EMC was able to talk us off the edge, where it really got complicated. The Foundation Services is just one of your more difficult conversations, one of the top three, definitely, patch management, notification, and how you're going to rehydrate that data, keeping that window very small to reduce that risk almost completely as you move. I think other area this apply is that we really wanted to understand our data. And I think we're on a road to achieving that. It was important that if we were going to put it into the vault, it had a purpose. And if we weren't going to put it in a vault, let's see why would we choose to do that? Why would we have this data? Why would we have this laying around? Because that's a story of our members, 225 stories. So their ability to move into financial security, that story is now ours to protect. Not only do we want to serve you in the services and the industry and make sure you achieve what you're trying to, but now we have that story about you that we have to protect just as passionately. And we had that. I think that was two of the biggest things. I think the third is that we wanted to make sure we could be successful moving forward. And I'll share with you that in the history of the credit union, we achieved one of the biggest projects here, in the last two years. That umbrella of the Cyber Recovery solution protection was immediate. We plugged in a significant project of our data capital and it's automatically covered. So I take that out of the vendor of responsibility, which is very difficult to validate, to hold accountable sometimes. And it comes back under our control into this purpose built data security and cyber resilient, business strategy. That's a business strategy for us is to maintain that presence. So everything new, we feel that we're sized, there's not going to be a rip and replace, a huge architectural change because we did have this as an objective at the very beginning. >> Tim, when you go into a project like this, what do you tell customers in terms of things that they really should be focused on to have a successful outcome? >> I'm going to say first that not everybody has a Bob Bender. So we have a lot of these conversations where we have to really start from the beginning and work through it with our customers. If you approach this the right way, it's really about the business. So what are the key processes for your business? It can be different from a bank than from a hospital than from a school point. So what are the key things that you do? And then what's the tech that supports that and underlies those processes? That's what we want to get into the vault. So we'll have those conversations early on. I think we have to help a lot of organizations through the risks too. So understand the risk landscape, why doing one or two little things aren't really going to protect you from the full spectrum of attackers. And then the third piece really is, where do we start? How do we get moving on this process? How do we get victory so that the board can understand and the business can understand, and we can continue to progress along the way? So it's always a bit of a journey, but getting that first step and getting some understanding there on the threat landscape, along with why we're doing this is very important. >> So, Bob, what about any speed bumps that you encountered? What were some of those? No project is ever perfect. What'd you run into? How'd you deal with it? >> Well, I would say the Foundation Services were major part of our time. So it really helped for Dell EMC to come and explain to us and look at that perimeter and how our data is brought into that and size that for us and make sure it's sustainable. So that is definitely, could be a speed bump that we had to overcome. But today, because of those lifts, those efforts invested the Runbooks, the increase in new products, new data as our business organically grows is a non-event. It's very plug and play and that's what we wanted from the start. Again, you go back to that conversation at 1% of the 1%, it's saying, who protects you? We followed that. We stayed with the partner we trusted, the horizon holistically has come back and paid for itself again and again. So speed bumps, we're just enjoying that we were early adapters. I don't want to throw anybody out there, but you look about two weeks ago, there was a major announcement about an attack that was successful. They got them with ransomware and the company paid the ransom. But it wasn't for the ransomware, it was for the data they stole so that they would delete it. That's again, why we wanted this environment is we needed time to react in the case that these malwares are growing much faster than we're capable of understanding how they're attacking. Now it's one, two punch, where's it going to be? Where is it going to end? We're not going to likely be patient zero, but we're also not going to have to be up at night worrying that there's a new strain out there. We have a little time now that we have this secure environment that we know has that air gap solution that was built with the regulatory consideration, with the legal considerations, with the data capital, with the review of malware and such. You can go back in time and say, "Scan to see if I have a problem. So again, the partnership is while we focus on our business, they're focusing on the strategy for the future. And that's what we need. We can't be in both places at once. >> How long did the project take from the point of which you agreed, signed the contract to where you felt like you were getting value out of the solution? >> Six months. >> Really? >> We were adamant. I'd put it off for a year and a half, that's two budget cycles basically is what it felt. And then I had to come back and ask for that money back because we felt so passionate that our data, our critical data didn't need to be at that risk any longer. So it was a very tight timeline. And again, product on prem within six months. And it was a lot of things going on there. So I just wasn't idle during that time. I was having a conversation with Dell EMC about our relationship and our contracts. Let's build that cyber resilience into the contract. Now we've got this, PowerProtect Cyber Recovery environment, let's build it here where you also agree to bring on extra hardware or product if I need that. Let's talk about me being on a technology advisory panel So I can tell you where the pricing of the regulations are going, so you can start to build that in. Let's talk about the executive board reporting of your products and how that can enable us. We're not just talking about cyber and protecting your data. We're talking about back then 60% of your keep the lights on IT person will spend with auditors, talking about how we were failing. This product helped us get ahead of that to now where we're data analytic. We're just analysts that can come back to the business table and say, "We can stand that up very quickly." Not only because of the hardware and the platform solution we have, but it is now covered with a cyber resilience of the the cyber security recovery platform. >> I want to ask you about analytics. Do you feel as though you've been able to go from what is generally viewed as a reactive mode into something that is more anticipatory or proactive using analytics? >> Well, I definitely do. We pull analytics daily and sometimes hourly to make sure we're achieving our KPIs. And looking at the KRIs, we do risk assessments from the industry to make sure if our controls layer of defenses are there, that they will still work what we stood up three years ago. So I definitely think we've gone from an ad hoc rip and replace approach to transformation into a more of a threat hunting type of approach. So our cyber security operation center, for us, is very advanced and is always looking for opportunities not only to improve, to do self-assessments, but we're very active. We're monetizing that with a CUSO arm of the credit union to go out and help others where we're successful, others that may not have that staff. It's very rewarding for us. And I hate to say it sometimes it's at their expense of being in-evolved in the event of a ransomware attack or a malware event. We learned so much the gaps we have, that we could take this back, create Runbooks and make the industry stronger against these types of attacks. >> Well, so Jim, you said earlier, not every company has a Bob Bender. How common is it that you're able to see customers go from that reactive mode into one that is proactive? Is that rare or is it increasingly common? It can't be a 100%, but what are you seeing as trends? >> It's more common now. You think of, again, back to Bob, that's three plus years ago, and he's been a tireless supporter and tireless worker in his industry and in his community, in the cyber area. And efforts like those of Bob's have helped so many other organizations I think, understand the risks and take further action. I think too, Bob talks about some of the challenges with getting started in that three year timeframe, PowerProtect Cyber Recovery has become more productized, our practice is more mature. We have more people, more help. We're still doing things out there that nobody else is touching. And so we've made it easier for organizations that have an interest in this area, to deploy and deploy quickly and to get quick value from their projects. So I think between that some of the ease of use, and then also there's more understanding, I think, of what the bad actors can do and those threats. This isn't about somebody maybe having an outage for a couple of hours. This is about the very existence of a business being threatened. That if you're attacked, you might not come back from it. And there've been some significant example that you might lose hundreds of millions of dollars. So as that awareness has grown, more and more people have come on board and been able to leverage learnings from people like Bob who started much earlier. >> Well, I can see the CFO saying, "Okay, I get it. "I have no choice where we're going to be attacked. "We know that, I got to buy the insurance. You got me." But I can see the CFO saying, "Is there any way we can "get additional value out of this? "Can we use it to improve our processes and cut our costs? "Can we monetize this in some way?" Bob, what's the reality there? Are you able to find other sources of value beyond just an insurance policy? >> Definitely, Dave you're exactly right. We're able to go out there and take these Runbooks and really start to educate what cyber resilience means and what air gap means, what are you required to do, and then what is your responsibility to do it. When you take these exercises that are offered and you go through them, and then you change that perspective and go through a live event with other folks that see that after 60 hours of folks being up straight, it really changes your view to understand that there's no finish line here. We're always going to be trying to improve the product and why not pick somebody that you're comfortable with and you trust. And I think that's the biggest win we have from this is that was a Dell EMC partnership with us. It is very comfortable fit. We moved from backup and recovery into cyber resilience and cybersecurity as a business strategy with that partner, with our partner Dell, and it hasn't failed us. It's a very comforting. We're talking about quality of life for the employee. You hear that, keep the lights on. And they've really turned into professionals to really understand what security means differently today and what that quality of data is. Reports, aren't just reports, they're data capital. The new currency today of the value we bring. So how are we going to use that? How are we going to monetize that? It's changing. And then I hate to jump ahead, but we had our perimeters at 1% of our workforce remote and all of a sudden COVID-19 takes on a different challenge. We thought we were doing really good and next, we had to move 50% of our employees out in five days. And because of that Dell EMC, holistic approach, we were protected every step of the way. We didn't lose any time saying, we bought the wrong control, the wrong hardware, the wrong software. It was a very comfortable approach. The Runbooks held us, our security posture stayed solid. It's been a very rewarding. >> Well, Bob, that was my next question, actually is because you've started the journey. >> Sorry. >> No, no, it's okay. Because you started the journey early, were you able to respond to COVID in a more fast sell manner? it sounds like you just went right in. But there's nuance there, because you've got now 50% or more of the workforce working at home, you got endpoint security to worry about. You got identity access management, and it sounds like you were, "No problem. "We've got this covered." Am I getting that right? >> You're exactly right, Dave. We test our endpoints daily. We make sure that we understand what residue of data is where. And when we saw that employee shift to a safe environment, our most consideration at that time, we felt very comfortable that the controls we had in place, again, Dell and their business partners who we are going to hold true and be solid. And we test those metrics daily. I get reports back telling me, what's missing in patch management, what's missing in a backup. I'll go back to keeping BCP and cyber security separate. In the vault, we take approach of recovery and systems daily. And now that goes from maybe a 2% testing rate almost to 100% annually. So again, to your point, COVID was a real setback. We just executed the same Runbooks we had been maturing all along. So it was very comfortable for employees and it was very comfortable for our IT structure. We did not feel any service delays or outages because of that. In a day, when you have to produce that data, secure that data, every minute of every day of every year, it's very comforting to know it's going to happen. You don't push that button and nothing happens. It's executed as planned. >> Jim, did you see a huge spike in demand for your services as a result of COVID and how did you handle it? You guys got a zillion customers, how did you respond and make sure that you were taking care of everybody? >> We really did see a big spike, Dave. I think there were a couple of things going on. As Bob points out, the security posture changes very quickly when you're sending people to work from home or people remotely, you've expanded or obliterated your parameter, you're not ready for it. And so security becomes even more important and more top of mind. So with PowerProtect Cyber Recovery, we can go in and we can protect those most critical applications. So organizations are really looking at their full security posture. What can we do better to detect and protect against these threats? And that's really important. For us, we're focusing on what happens when those fail? And with that extension and people going home, and then the threat actors getting even more active, the possibilities of those failures become more possible and the risks are just in front of everybody. So I think it was a combination of all of those things. Many, many customers came to us very quickly and said, "Tell us more about what you're doing here. "How does it fit into our infrastructure? "What does it protect us against? "How quickly can we deploy?" And so there has been a huge uptake in interest. And we're fortunate in that, as you pointed out early on, Dave, we invested early here. I'm five years into the practice. We've got a lot of people, very mature, very sophisticated in this area, a lot of passion among our team. And we can go take care of all those customers. >> Bob, if you had a mulligan, thinking about this project, what would you do differently if you had a chance to do it over? >> I think I would start earlier. I think that was probably the biggest thing I regret in that realizing you need to understand that you may not have the time you think you do. And luckily, we came to our senses, we executed and I got to say it was with common sense, comfortable products that we already understood. We didn't have to learn a whole new game plan. I don't worry about that. I don't worry about the sizing of the product 'cause we did it, I feel correctly going in and it fits us as we move forward. And we're growing at an increased rate that we may not expect. It's plug and play. Again, I would just say, stay involved, get involved, know that what we know today about malware and these attacks are only going to get more complicated. And that's where I need to spend my time, my group become experts there. Why I really cherish the Dell EMC relationship is from the very beginning, they've always been very passionate on delivering products that recover and protect and now are cyber resilient. I don't have to challenge that, you pay for what you get for. And I just got to say, I don't think there's much other than I would have started earlier. So start today, don't put it off. >> So you said earlier though, you're never done, you never are, in this industry. So what's your roadmap look like? Where do you want to go from here with this capability? >> I definitely want to keep educating my staff, keep training them, keep working with Dell. Again, I tell you they're such forward thinking as a company. They saved me that investment. So if you're looking at part of the investment, it's got to be, are you with a partner that's forward thinking? So we definitely want to mature this, challenge it, keep challenging, keep working with Dell and their products to deliver more. Again, we go to the federal and state regulatory requirements. You go to the Sheltered Harbor, the ACET testing from the NCUA regulators, just software asset management. You can keep on going down the line. This product, I hate to say it, it's like the iPhone. You think about how many products the iPhone has now made not relevant. I don't even own a flashlight, I don't think. This is what the Dell product line brings to me is that I can trust they're going to keep me relevant so I can stay at the business table and design products that help our members today. >> Jim, how about from Dell's perspective, the roadmap, without giving away any confidential information, where do you want to take this? We talk about air gaps. I remember watching that documentary Zero Days and hearing them say, "We got through an air gap. "No problem." So analytics obviously plays a role in this machine intelligence, machine learning, AI. Where does Dell want to take this capability? Where do you see that going? >> We've got some things in mind and then we're always going to listen to our customers and see where the regulations are going to. And thus far, we've been ahead of those with the help of people like Bob. I think where we have a huge advantage, Dave is with PowerProtect Cyber Recovery. It's a product. So we've got people who are dedicated to this full time. We have a maturity in the organization, in the field to deliver it and to service it. And having something as a product like that really enables us to have roadmaps and support and things that customers need to really make this effective for them. So as we look out on the product, and thanks for your reminder, I don't want to risk saying anything here I'm going to get in trouble for. We look at things in three paths. One is we want to increase the ability for our customers to consume the product. So they want it in different forms. They might want it in appliances, in the Cloud, virtual, all of those things are things that we've developed and continue to develop. They want more capabilities. So they want the product to do more things. They want it to be more secure, and keeping up. As you mentioned, machine learning with the analytics is a big key for us. Even more mundane things like operational information makes it easier to keep the vault secure and understand what's going on there without having to get into it all the time. So those are really valuable. And then our third point, really, we can't do everything. And so we have great partners, whether they're doing delivery, offering cyber recovery as a service or providing secure capabilities, like our relationship with Unisys. They have a stealth product that is a zero knowledge, zero trust product that helps us to secure some of the connections to the vault. We'll keep iterating on all of those things and being innovative in this space, working with the regulators, doing things. Bob's mentioned a couple of times, Sheltered Harbor. We've been working with them for two years to have our product endorsed to their specification. Something that nobody else is even touching. So we'll continue along all those paths, but really following our customer's lead in addition to maybe going some places that they haven't thought about before. >> It's great guys. I have to fear that when you talk to SecOps pros, you ask them what their biggest challenge is, and they'll say lack of talent, lack of skills. And so this is a great example, Jim, you're mentioning it, you've productized this. This is a great example of a technology company translating, IT labor costs into R&D. And removing those so customers can spend time running their business. Bob and Jim, thanks so much for coming on the CUBE. Great story. Really appreciate your time. >> Thank you, Dave. >> Thank you, Dave. >> Thanks, Bob. >> All right. And thank you everybody for watching. This is Dave Vellante for the CUBE. We'll see you next time. (instrumental music)

>> Narrator: From theCUBE studios in Palo Alto in Boston, it's theCUBE! Covering empowering the autonomous enterprise. Brought to you by ORACLE Consulting. >> Back to theCUBE everybody, this is Dave Vellante. We've been covering the transformation of ORACLE Consulting, and really it's rebirth, and I'm here with Chris Fox, who's the Group Vice President for Enterprise Cloud Architects and Chief Technologist for the North America Tech Cloud at ORACLE. Chris, thanks so much for coming on theCUBE. >> Thanks Dave, glad to be here. >> So, I love this title. I mean, years ago, there was no such thing as a cloud architect. Certainly there were chief technologists, but so, you are really, those are your peeps, is that right? >> That's right, that's right. That's really my team and I, that's all we do. So, our focus is really helping our customers take this journey from when they were on-premise to really transforming with cloud, and when we think about cloud, really, for us, it's a combination. It's our hybrid cloud, which happens to be on-premise, and then, of course, the true public cloud, like most people are familiar with. So, very exciting journey and, frankly, I've seen just a lot of success for our customers. You know, Dave, what I think we're seeing at ORACLE though, because we're so connected with SaaS, and then we're also connected with the traditional applications that have run the business for years, the legacy applications that have been, you know, servicing us for 20 years, and then the cloud needed developers. So, what my team and I are constantly focused on now is things like digital transformation and really wiring up all three of these across. So, if we think of, like, a customer outcome like I want to have a package delivered to me from a retailer, that actual process flow could touch a brand new cloud-native site from eCommerce, it could touch, essentially, maybe a traditional application that used to be on-prem that's now on the cloud, and then it might even use a new SaaS application, maybe, for maybe a permit process or delivery vehicle and scheduling. So, what my team does, we actually connect all three. So, what I always mention to my team and all of our customers, we have to be able to service all three of those constituents and really think about process flows. So, I take the cloud-native developer, we help them become efficient. We take the person who's been running that traditional application and we help them become more efficient, and then we have the SaaS applications, which are now rolling out new features on a quarterly basis and it's a whole new delivery model, but the real key is connecting all three of these into a business process flow that makes the customer's life much more efficient. People always say, you know, Chris, we want to get out of the data center, we're going zero data center, and I always say, well, how are you going to handle that back office stuff? Right? The stuff that's really big, it's cranky, doesn't handle just, you know, instances dying or things going away too easily. It needs predictable performance, it needs scale, it absolutely needs security, and ultimately, you know, a lot of these applications truly have relied on an ORACLE database. The ORACLE database has its own specific characteristics that it needs to run really well. So, we actually looked at the cloud and we said, let's take the first generation clouds, which are doing great, but let's add the features that specifically, a lot of times, the ORACLE workload needed in order to run very well and in a cost effective manner. So, that's what we mean when we say last mover advantage. We said, let's take the best of the clouds that are out there today, let's look at the workloads that, frankly, ORACLE runs and has been running for years, what our customers needed, and then let's build those features right into this next version of the cloud which can service the enterprise. So, our goal, honestly, which is interesting, is even that first discussion we had about cloud-native and legacy applications and also the new SaaS applications, we built a cloud that handles all three use cases at scale, resiliently, in a very secure manner, and I don't know of any other cloud that's handling those three use cases all in, we'll call it the same tendency for us at ORACLE. >> My question is why was it important for ORACLE, and is it important for ORACLE and its customers, to participate in IaaS and PaaS and SaaS? Why not just the last two layers of that? What does that give you from a strategic advantage standpoint and what does that do for your customer? >> Yeah, great question. So, the number one reason why we needed to have all three was that we have so many customers who, today, are in a data center. They're running a lot of our workloads on-premise and they absolutely are trying to find a better way to deliver lower-cost services to their customers and so we couldn't just say, let's just, everyone needs to just become net new, everyone just needs to ditch the old and go just to brand-new alone. Too hard, too expensive, at times. So we said, you know, let's give us customers the ultimate amount of choice. So, let's even go back again to that developer conversation in SaaS. If you didn't have IaaS, we couldn't help customers achieve a zero data center strategy with their traditional application, we'll call it PeopleSoft or JD Edwards or E-Business Suite or even, there's some massive applications that are running on the ORACLE cloud right now that are custom applications built on the ORACLE database. What they want is they said, give me the lowest cost but yet predictable performance IaaS. I'll run my apps tier on this. Number two, give me a platform service for database, 'cause frankly, I don't really want to run your database, like, with all the menial effort. I want someone to automate patching, scale up and down, and all these types of features like the cloud should have given us. And then number three, I do want SaaS over time. So, we spend a lot of time with our customers really saying, how do I take this traditional application, run it on IaaS and PaaS, and then number two, let's modernize it at scale. Maybe I want to start peeling off functionality and running them as cloud-native services right alongside, right? That's something, again, that we're doing at scale and other people are having a hard time running these traditional workloads on-prem in the cloud. The second part is they say, you know, I've got this legacy traditional ERP. It's been servicing me well, or maybe a supply chain system. Ultimately I want to get out of this. How do I get to SaaS? And we say, okay, here's the way to do this. First, bring it to the cloud, run it on IaaS and PaaS, and then selectively, I call it cloud slicing, take a piece of functionality and put it into SaaS. We're helping customers move to the cloud at scale. We're helping 'em do it at their rate, with whatever level of change they want, and when they are ready for SaaS, we're ready for them. >> And how does autonomous fit into this whole architecture? Thank you, by the way, for that description. I mean, it's nuanced but it's important. I'm sure you're having this conversation with a lot of cloud architects and chief technologists. They want to know this stuff, and they want to know how it works. And then, obviously, we'll talk about what the business impact is, but talk about autonomous and where that fit. >> So, the autonomous database, what we've done is really taken a look at all the runtime operations of an ORACLE database, so tuning, patching, securing, all these different features, and what we've done is taken the best of the ORACLE database, the best of something called Exadata, right, which we run on the cloud, which really helps a lot of our customers, and then we've wrapped it with a set of automation and security tools to help it really manage itself, tune itself, patch itself, scale up and down independent between computant storage. So, why that's important though is that it really, our goal is to help people run the ORACLE database as they have for years but with far less effort, and then even not only far less effort, hopefully, you know, a machine plus man, kind of the equation we always talk about is man plus machine is greater than man alone. So, being assisted by artificial intelligence and machine learning to perform those database operations, we should provide a better service to our customers with far less cost. Our hope and goal is that people have been running ORACLE databases. How can we help them do it with far less effort, and maybe spend more time on what the data can do for the organization, right? Improve customer experience, etc. Versus maybe, like, how do I spin up (breaks up). >> So, let's talk about the business impact. So, you go into customers, you talk to the cloud architects, the chief technologists, you pass that test. Now you got to deliver the business impact. Where does ORACLE Consulting fit with regard to that? And maybe you could talk about where you guys want to take this thing. >> Yeah, absolutely. I mean, the cloud is great set of technologies, but where ORACLE Consulting is really helping us deliver is in the outcome. One of the things, I think, that's been fantastic working with the ORACLE Consulting team is that, you know, cloud is new. For a lot of customers who've been running these environments for a number of years, there's always some fear and a little bit of trepidation saying, how do I learn this new cloud? I mean, the workloads we're talking about, Dave, are like tier zero, tier one, tier two and, you know, all the way up to DEV and TEST and DR. ORACLE Consulting does really couple of things in particular. Number one, they start with the end in mind, and number two that they start to do, is they really help implement these systems and there's a lot of different assurances that we have that we're going to get it done on time and better be under budget, 'cause ultimately, again, that's something that's really paramount for us. And then the third part of it, a lot of times it's runbooks, right? We actually don't want to just live in our customers' environments. We want to help them understand how to run this new system, so in training and change management, a lot of times ORACLE Consulting is helping with runbooks. We usually will, after doing it the first time, we'll sit back and let the customer do it the next few times and essentially help them through the process, and our goal at that point is to leave. Only if the customer wants us to, but ultimately our goal is to implement it, get it to go live on time, and then help the customer learn this journey to the cloud. And without them, frankly, I think these systems are sometimes too complex and difficult to do on your own maybe the first time, especially 'cause like I say, they're closing the books. They might be running your entire supply chain. They run your entire HR system or whatever they might be. Too important to leave to chance. So, they really help us with helping the customer become live and become very confident and skilled 'cause they can do it themselves. >> Well Chris, we've covered the gamut. Loved the conversation. We'll have to leave it right there, but thanks so much for coming on theCUBE and sharing your insights. Great stuff. >> Absolutely, thanks Dave, and thanks for having me on. >> All right, you're welcome, and thank you for watching everybody. This is Dave Vellante for theCUBE. We are covering the ORACLE of North America Consulting transformation and its rebirth in this digital event. Keep it right there, we'll be right back.

>> Narrator: From theCUBE studios in Palo Alto in Boston, it's theCUBE! Covering empowering the autonomous enterprise. Brought to you by ORACLE Consulting. >> Back to theCUBE everybody, this is Dave Vellante. We've been covering the transformation of ORACLE Consulting, and really it's rebirth, and I'm here with Chris Fox, who's the Group Vice President for Enterprise Cloud Architects and Chief Technologist for the North America Tech Cloud at ORACLE. Chris, thanks so much for coming on theCUBE. >> Thanks Dave, glad to be here. >> So, I love this title. I mean, years ago, there was no such thing as a cloud architect. Certainly there were chief technologists, but so, you are really, those are your peeps, is that right? >> That's right, that's right. That's really my team and I, that's all we do. So, our focus is really helping our customers take this journey from when they were on-premise to really transforming with cloud, and when we think about cloud, really, for us, it's a combination. It's our hybrid cloud, which happens to be on-premise, and then, of course, the true public cloud, like most people are familiar with. So, very exciting journey and, frankly, I've seen just a lot of success for our customers. You know, Dave, what I think we're seeing at ORACLE though, because we're so connected with SaaS, and then we're also connected with the traditional applications that have run the business for years, the legacy applications that have been, you know, servicing us for 20 years, and then the cloud needed developers. So, what my team and I are constantly focused on now is things like digital transformation and really wiring up all three of these across. So, if we think of, like, a customer outcome like I want to have a package delivered to me from a retailer, that actual process flow could touch a brand new cloud-native site from eCommerce, it could touch, essentially, maybe a traditional application that used to be on-prem that's now on the cloud, and then it might even use a new SaaS application, maybe, for maybe a permit process or delivery vehicle and scheduling. So, what my team does, we actually connect all three. So, what I always mention to my team and all of our customers, we have to be able to service all three of those constituents and really think about process flows. So, I take the cloud-native developer, we help them become efficient. We take the person who's been running that traditional application and we help them become more efficient, and then we have the SaaS applications, which are now rolling out new features on a quarterly basis and it's a whole new delivery model, but the real key is connecting all three of these into a business process flow that makes the customer's life much more efficient. People always say, you know, Chris, we want to get out of the data center, we're going zero data center, and I always say, well, how are you going to handle that back office stuff? Right? The stuff that's really big, it's cranky, doesn't handle just, you know, instances dying or things going away too easily. It needs predictable performance, it needs scale, it absolutely needs security, and ultimately, you know, a lot of these applications truly have relied on an ORACLE database. The ORACLE database has its own specific characteristics that it needs to run really well. So, we actually looked at the cloud and we said, let's take the first generation clouds, which are doing great, but let's add the features that specifically, a lot of times, the ORACLE workload needed in order to run very well and in a cost effective manner. So, that's what we mean when we say last mover advantage. We said, let's take the best of the clouds that are out there today, let's look at the workloads that, frankly, ORACLE runs and has been running for years, what our customers needed, and then let's build those features right into this next version of the cloud which can service the enterprise. So, our goal, honestly, which is interesting, is even that first discussion we had about cloud-native and legacy applications and also the new SaaS applications, we built a cloud that handles all three use cases at scale, resiliently, in a very secure manner, and I don't know of any other cloud that's handling those three use cases all in, we'll call it the same tendency for us at ORACLE. >> My question is why was it important for ORACLE, and is it important for ORACLE and its customers, to participate in IaaS and PaaS and SaaS? Why not just the last two layers of that? What does that give you from a strategic advantage standpoint and what does that do for your customer? >> Yeah, great question. So, the number one reason why we needed to have all three was that we have so many customers who, today, are in a data center. They're running a lot of our workloads on-premise and they absolutely are trying to find a better way to deliver lower-cost services to their customers and so we couldn't just say, let's just, everyone needs to just become net new, everyone just needs to ditch the old and go just to brand-new alone. Too hard, too expensive, at times. So we said, you know, let's give us customers the ultimate amount of choice. So, let's even go back again to that developer conversation in SaaS. If you didn't have IaaS, we couldn't help customers achieve a zero data center strategy with their traditional application, we'll call it PeopleSoft or JD Edwards or E-Business Suite or even, there's some massive applications that are running on the ORACLE cloud right now that are custom applications built on the ORACLE database. What they want is they said, give me the lowest cost but yet predictable performance IaaS. I'll run my apps tier on this. Number two, give me a platform service for database, 'cause frankly, I don't really want to run your database, like, with all the menial effort. I want someone to automate patching, scale up and down, and all these types of features like the cloud should have given us. And then number three, I do want SaaS over time. So, we spend a lot of time with our customers really saying, how do I take this traditional application, run it on IaaS and PaaS, and then number two, let's modernize it at scale. Maybe I want to start peeling off functionality and running them as cloud-native services right alongside, right? That's something, again, that we're doing at scale and other people are having a hard time running these traditional workloads on-prem in the cloud. The second part is they say, you know, I've got this legacy traditional ERP. It's been servicing me well, or maybe a supply chain system. Ultimately I want to get out of this. How do I get to SaaS? And we say, okay, here's the way to do this. First, bring it to the cloud, run it on IaaS and PaaS, and then selectively, I call it cloud slicing, take a piece of functionality and put it into SaaS. We're helping customers move to the cloud at scale. We're helping 'em do it at their rate, with whatever level of change they want, and when they are ready for SaaS, we're ready for them. >> And how does autonomous fit into this whole architecture? Thank you, by the way, for that description. I mean, it's nuanced but it's important. I'm sure you're having this conversation with a lot of cloud architects and chief technologists. They want to know this stuff, and they want to know how it works. And then, obviously, we'll talk about what the business impact is, but talk about autonomous and where that fit. >> So, the autonomous database, what we've done is really taken a look at all the runtime operations of an ORACLE database, so tuning, patching, securing, all these different features, and what we've done is taken the best of the ORACLE database, the best of something called Exadata, right, which we run on the cloud, which really helps a lot of our customers, and then we've wrapped it with a set of automation and security tools to help it really manage itself, tune itself, patch itself, scale up and down independent between computant storage. So, why that's important though is that it really, our goal is to help people run the ORACLE database as they have for years but with far less effort, and then even not only far less effort, hopefully, you know, a machine plus man, kind of the equation we always talk about is man plus machine is greater than man alone. So, being assisted by artificial intelligence and machine learning to perform those database operations, we should provide a better service to our customers with far less cost. Our hope and goal is that people have been running ORACLE databases. How can we help them do it with far less effort, and maybe spend more time on what the data can do for the organization, right? Improve customer experience, etc. Versus maybe, like, how do I spin up (breaks up). >> So, let's talk about the business impact. So, you go into customers, you talk to the cloud architects, the chief technologists, you pass that test. Now you got to deliver the business impact. Where does ORACLE Consulting fit with regard to that? And maybe you could talk about where you guys want to take this thing. >> Yeah, absolutely. I mean, the cloud is great set of technologies, but where ORACLE Consulting is really helping us deliver is in the outcome. One of the things, I think, that's been fantastic working with the ORACLE Consulting team is that, you know, cloud is new. For a lot of customers who've been running these environments for a number of years, there's always some fear and a little bit of trepidation saying, how do I learn this new cloud? I mean, the workloads we're talking about, Dave, are like tier zero, tier one, tier two and, you know, all the way up to DEV and TEST and DR. ORACLE Consulting does really couple of things in particular. Number one, they start with the end in mind, and number two that they start to do, is they really help implement these systems and there's a lot of different assurances that we have that we're going to get it done on time and better be under budget, 'cause ultimately, again, that's something that's really paramount for us. And then the third part of it, a lot of times it's runbooks, right? We actually don't want to just live in our customers' environments. We want to help them understand how to run this new system, so in training and change management, a lot of times ORACLE Consulting is helping with runbooks. We usually will, after doing it the first time, we'll sit back and let the customer do it the next few times and essentially help them through the process, and our goal at that point is to leave. Only if the customer wants us to, but ultimately our goal is to implement it, get it to go live on time, and then help the customer learn this journey to the cloud. And without them, frankly, I think these systems are sometimes too complex and difficult to do on your own maybe the first time, especially 'cause like I say, they're closing the books. They might be running your entire supply chain. They run your entire HR system or whatever they might be. Too important to leave to chance. So, they really help us with helping the customer become live and become very confident and skilled 'cause they can do it themselves. >> Well Chris, we've covered the gamut. Loved the conversation. We'll have to leave it right there, but thanks so much for coming on theCUBE and sharing your insights. Great stuff. >> Absolutely, thanks Dave, and thanks for having me on. >> All right, you're welcome, and thank you for watching everybody. This is Dave Vellante for theCUBE. We are covering the ORACLE of North America Consulting transformation and its rebirth in this digital event. Keep it right there, we'll be right back.