Cloud Crunch
Cloud Crunch

Episode · 2 years ago

S1E03: Re:Invent follow-up a month or so after

ABOUT THIS EPISODE

We recap AWS re:Invent 2019, giving you our top 5 takeaways, including AWS Compute Optimizer, Amazon EC2's support for Active Directory Authentication using Windows Accounts gMSA, how AWS Security Hub got smarter, EC2 Image Builder, and Amazon Outposts.

Involved solve evolved. Welcome to cloud crunch, the podcast for any large enterprise planning on moving to or is in the midst of moving to, the cloud, hosted by the cloud computing experts from Second Watch, Jeff Aiden, Co founder and Executive Vice President of marketing and Business Development, Ian will be chief architect cloud solutions, and Skip Berry, executive director of cloud enablement. And now here are your hosts of cloud crunch. Hey, good afternoon listeners. Jeff aide here. I'm joined by to the smartest guys I know, Skip Bury, it Ian. Will it be? We're bringing you a cloud crutch again and listeners, we appreciate for listening in and, as we kicked off the last two shows, we're looking forward to get in more in depth over the next couple of episodes and starting this week off with a reinvent update. It's been a few months since reinvent and you know, walking around Seattle every day kind of feels like reinvent with so many Amazonians they just keep hiring. But what we want to do in the show with in a skip is take a look back at what we thought was some of the five big takeaways from reinvent and what are customers asking about today? Either that might change that or what are customers seeking to do? So why do we start off in with you and let's take a look at one of the highlights that you saw coming out of reinvent and today what you see customers asking for. But I think the biggest highlight that we continue to see. It's an ongoing trend as security related. Security is, as they say, everybody's job and it's getting easier to subdegree. There's a lot of tools that are going to give a more visibility and I think it was expected. I think it was just really good and what we did see continuation of security hub. May See some of the...

...other tools out there. I'm sure we'll get into but it's just what everybody needs, everybody is concerned about and it's just continuing to grow. Well, you know, in you know last year we kind of talked about the history. Right, securities not new or not a new concern, and it let alone cloud computing, right, but a lot of users have kind of got over that of the year. So so with what was released security related, how does that make your job easier or customer more secure? I think first because now there's such a breadth of services related to security. It could be a little bit confusing, but ultimately these tools, when you put them all together, are giving you not only the security controls that you need for a good cloud deployment, but it's also giving the visibility that customers need to know where they are and it will also create the evidence need it for what when they do audits and for compliance and those types of things. SKIP. What are your thoughts? Yeah, I think it's seguays into one of the biggest announcements about, you know, the access management, access analyzer. That's a need for the customers. We've been a couple of our principal consultants have been doing this manually by scripting about being able to generate, you know, findings across customers accounts and policies. And when have they so now, with that announcement that reinvent, this is a huge win for customers and clients that we have to leverage that service that's been announced. So and so you know, reinvent was December there. So how soon after that were you and your team implementing access analyzer? Yeah, one, in one case, I'll say immediately, in a POC environment where we're trying it out as we go through. Is a big migration at one of our clients. So we're testing it and that and that realm in a sandbox area. And then I'll say just of this last week on, you know, we got pulled into a situation. I don't want to elaborate more, but but in stree environment where we're looking at this to help mitigate a situation where it could potentially be a little bit,...

...we'll say, over zealous access to a stree bucket. So so you immediately saw a demand and or work with a large client on a POC and and other customers are asking about that. It's right. Yeah, yeah, it. Just think about it. I guess if we take a step back and with all the conversations that we've had, well in the podcast and outside the podcast, the complexity these days of looking at anyone's footprint, whether it be in a you know, in a single cloud platform or just multi cloud, this is a huge game changer. It helps people bring things in in quick analyze, you know, kind of using, I think they're doing nml here as well, to look at things and prove where they're exposed. So it's a really neat feature. All right, we got two of the five in. What's the next one that you were excited about, or maybe work that excited about, but you're seeing customers immediately. One of leverage, but I think you know, the continuation of machine learning and Aire is definitely something that people are very interested in. I think we're starting to see a trend now where customers realize that they have enormous amounts of data. It's sideload, but how are they going to actually make it valuable? And the tools are getting a lot easier to help catalog, discover, analyze and those types of things. So I think the continuation of you know, and we have deep composer here as well, which I just find fascinating to me. I don't have a business use for it, but it's pretty fun. And then I was also very excited to see the continuation of the deep racer league, which gives a lot of people kind of hands on understanding of how models work and we'll get the skill sets up on on the machine learning side. So you brought up an interacting point. You know, for some reason we didn't enter a D racer. Are you in skip, going to take that on this year and have a cloud crunch racer. Yes, yes, we are absolutely been faling, but the challenge you're gonna have jackets and everything look out for, is that the summits and at reinvent. I'm seeing a theme start to...

...develop here. Guys, Hey, and one of the thing just circle back with what you said. You know, Al Am I right, big topics of conversations, but at the end of the day, I mean, check me on this. Isn't the problem still getting all the data in one spot? It truly is, because, as we talked about before, data is highly silod and enterprises and you need to get it all into one area, and it doesn't matter about the format and a lot of cases, but at least getting it. They're getting a cataloged and that will help the data scientists and another's really begin to unlock the value of it and do the analysis to determine where they can use this to maybe a forecasting sentiment or whatever else they they want to do. Right and skip, your team is done a number of day lakes and you know we're seeing an increase volume on that side right to help solve for those problems. Yeah, yeah, I think it's a good segue to it. So maybe someday in the future. Have you know, our practice date engineering had come on and about that as well. But in general, to that point, it's about getting the people focused on the outcome of what they want to do. You know, again, actionable data, right, what you want to do to leverage the data that you can collect as opposed to just building. So what you know, from an aws perspective, with the announcements, they're really what what this has helped us do is, you know, basically preform what is needed to actually go from an infrastructure perspective to get to that outcome. Right. So again, it's not so much about building this labyrinth monstrosity, it's about getting to the end game of how we're going to get there and leverage the data that you have at your fingertips. Great, we'll skip, you know, bring us with the fourth one from reinventor or as of today, that that you're seeing customers have demand for. Yeah, I think the image builder is a big step forward which has helped a lot of clients and again, just a reference some real time stuff where we are in the throes of a couple of big migration with a few customers of us. This is helped enhance, will say, our...

...mean time to deliver images and again take out some, I'll say, some unnecessary work in the waste of just building images. So so really it's been easier and faster to basically build and maintain and impact of the security aspect of it. So this is simplified a lot of things. So the ECTO image builder has been a huge boon so far with two big clients through two big migration efforts that were going under way. Yeah, that one seemed like a no brainer. But but let's break it down a little bit, both for, you know, the later adopters that are new to the cloud, or even some of the more advanced ones that have been using, you know, like Hashy Corp, you know, Code Builder, Code Pipeline. What's different? Just give me the basic level. What's different about this for them? It's a good question, I guess. For it's about a repeatable pattern best practices brought in, you know, being again, you know, just just not leaving anything, I'll say, up to unnecessary choice. It's almost a fine for you on what you need to put in. So really get from your handcrafted images all the way through, like a recipe, if you will, that that basically makes it, you know, solid right, leaves less exposure or things that perhaps you thought about afterthought and had to go back and retouch it or what have you. So really it's about basically polishing the stone. Yeah, it takes out some of that human air on security configurations, you know, operation tooling right and patching for the customer. Yeah, there was a there was a report back, I you know, again back this last fall or even late summer, about, you know, ninety eight percent of infrastructure is code, is insecure. I think with macabe that published the report, we can find that and actually quote that. I would have you. But this really again, this is one of those advancements there that help narrows down that, that Explosu yeah, we'll try to find that and put that in the show notes as well as make it available for our listeners in we got one more. What do you got for us? Well, you know, going full circle, going to the cloud and now coming back on...

...prem out post seem to have a lot of traction, a lot of excitement around it and it's a fascinating world when you can augment your cloud with on Prem equipment, which is fantastic because it gives you one platform and one system to work with, so all the automation and those types of things are there. ADDS a lot of value for two particular segments that we've seen a lot of traction on. That would be manufacturing, when equipment needs to be close to the compute and latency is a big issue. Also, there are a lot of customers out there, enterprises that have enormous amounts of data and that data is what makes them valuable. They want to keep that close to themselves and not necessarily move that into the cloud because it could be for security reasons, it could be for cost, data transport, latency and those types of things. So I think those two segments are where we're finding it very interesting. Doesn't really start without post to get to the cloud. You know, it's something that kind of comes secondarily to it. Yeah, it's interesting. Was a two years ago, three years ago, we have to check on it. When what snowball came out, kind of the the prelude to what we're seeing today without post. Yeah, absolutely. Yeah, there was a little bit of a compute available there, but now you're starting to see all the services and being sized appropriately for whatever you need to do, and it's nice. It appears as though it's just another availability zone and the console or when you're going to do some automation. Back to what we talked about in the last podcast about just data domain and you know where data lives and what have you. This help solve some of those problems. And back to bring a full circle even to like data lakes and where you have data that you want to report on. You can't put it in the public cloud, but you need it to be, you know, in a particular jurisdiction or have special rules. This is another avenue for clients to actually leverage and build basically a data lake with outposts that have, you fully managed service and extends, obviously, the awus infrastructure. So really cool there to pull all that together. And and customers are interested in this coming out of reinvent still today.

Yeah, big, I'll say, you know, Eyes Wide Open. Everybody's really excited about how this evolves and rolls out and we are a premier partner to actually go and deliver this. Yeah, we are one of the launch partners right skip. And and what's unique about this is for your team that's delivering the pro services, they can still sit on a plane where they can be in an office, they can be next to the customer, they can be anywhere and still launch services off this, because Amazon will rack it, stack it and prepackage it right to the customers doorstep right, exactly. Right. Yes, so it takes all the hassle out of it. Yeah, yeah, it's really neat, you know. And they're, I'll say, from a from an aws perspective, and you know they're really tight on that. Right. So you know where we've seen other things that look like appliances before in our long tenured career, here and then there exception, this exception that you aws is really driving this from a making sure that we look at this from what it what it is and what it isn't right, and that saves us a lot of I'll say, questionable or what have you. What the customer wants this is to come in and basically be an essence, a local zone, if you will, as they quoted at and this is just great. We can, as you said, Jeff, we can work on it from anywhere. So, and I, and you know correct me this, you can also launch vm work cloud on aws, on this service as well, so you can stays extend your vm environment into outpost. That's correct. There are two outpost variants and one being VMC and the other one being basically ect with all the normal Amazon services. Interesting. Interesting. All Right, those are five highlights. Is there anything we missed that was exciting coming out or anything that you know is peaked customers interest coming out of reinvent, three months post reinvent, that you want to add to the show as a bonus for our listeners? I was going to ask you when he thought, you know, when we talked about security just in general, what about Amazon detective? What do you think? Yeah, I think that machine learning aspect...

...of what's going on there is really going to take security the next level. You know, we've been very reliant on humans and logs and very system of heuristics in order to detect security problems. I think machines can do it much faster and better and detect new new patterns that did not exist before. So I think this is going to be a very, very solid attempt at getting there in a more secured environment. Yes, so, if you roll all the way through like from security hub, all the way down through I am, you know, access analyzer, and then all the way through Amazon detective, it's a great, solid showing of announcements from the security perspective of ware Ws. Today is today, you know. Yeah, I think the fear or confusion that comes to places that you may have done a fantastic job deploying a foundational architecture that's very secured, but you're going to have to go back and revisit these new launches as well to see how they fit into the whole picture for a good security posture, and it could be a little bit overwhelming. But I think that most of the tools are pretty simple at the end of the day when you get them going. A lot of cases there's a free period where you can try before you buy. So I think that's that's the best approach behind it. Hey, guys, let's not gloss over. You know what you guys said about security and kind of what we talked about on the last show. It's getting less expensive to use the cloud and it's getting more secure and almost full proofing some of the human aspects, or even coding aspects with some of these cloud native tools. Is that accurate? Yeah, I think it's approaching that. You know, they're humans are probably the biggest problem that we have a security at the end of the day, they're the ones that are going to do the misconfigurations and go outside the guidelines. So that's what we have to be concerned about. But the tools are getting better. I mean there's tools now that they've launched that look at source code to make sure that there it's in much better shape than it was before, and so it goes through the whole life cycle of software development, infrastructure deployment...

...in those types of things. We just still have to watch the human element make sure that we set up the access controls, these privilege don't go away and those types of things. Yeah, I might comment there would be, you know, better every day, right. I know, Jeff, you and I joked about this earlier this week, but that's great saying and it is. It truly is in the clouds better every day as opposed to on Prem just by nature of inherent design, of being away from humans being physically able to touch hardware configuration, those kind of things. And obviously, if we look at the software side of things, are the soft side of things. The more automation we get in here, as we mentioned about at the security advancements that we made with the with the announcements from aws and then likewise across everything. You know, the MLAD AI aspect, what have you. Yeah, it's just going to continue to be hardened every day. So, yeah, it doesn't solve all the problems of humans, right, but it's getting a step in that direction. And the thing I noticed our first reinvent was maybe five thousand people and I think there was over sixty five thou people attending this year. The Labor Market for experts and cloud computing is still limited and that's why company's partner with companies like Second Watch. But those educational events, the summits reinvent great opportunity for people to advance their learning and knowledge. Well, guys, I think we came away with probably six or seven good takeaways for listeners and pretty much the recap of the show is it's about data and security, right, and those are the things that customers are focused on. And next week we're going to talk about some of the five biggest lessons we've learned over a decade. Thanks skipping in. Always a pleasure talking to me. I always learned something from each one of you. Thanks, Jeff. Looking forward to it. Yeah, thank you, Jeff. You've been listening to cloud crunch with Jeff aiden, Ian Willoughby and skip Berry. For...

...more information, check out the block second watchcom company block, or reach out to Second Watch on twitter.

In-Stream Audio Search

NEW

Search across all episodes within this podcast

Episodes (33)