The Cloud Pod | Weekly AI & Cloud News on AWS, Azure & GCP

On The Cloud Pod this week, the team talks tactics for infiltrating the new Google Cloud center in Ohio. Plus: AWS goes sci-fi with the new Graviton3 processors, the new GKE cost estimator calculates the value of your soul, and Microsoft builds the metaverse. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights AWS fires up the Graviton3 processors for some big energy savings. Google develops the new GKE cost estimator for people who aren’t curious about cost. Microsoft Build comes out of nowhere to deliver awesome, scary AI-driven tools with much mention of metaverse (yuck). Top Quotes “This feature isn&#8217;t developed for you because you&#8217;re curious about the cost. This is developed specifically for the people who are not curious about the cost. It&#8217;s a big red number. When they&#8217;re doing the deployment, it’s like, oh, I should probably not do that.” “I cannot wait for the robot overlords to completely school me at code. This is gonna be hilarious… and frightening.” General News: HashiCorp Extends Its Reach Ryan is slightly embarrassed by how much he’s excited about the new HCL Extension for Visual Studio Code 0.1 announcement. AWS: Abiding by the Laws of Graviton3 Storage company NetApp continues to buck industry trends with Backup and FSx support for ONTAP. Don’t forget to check out the TCP Talks interview with Anthony Lye, Executive VP and General Manager of NetApp. New AWS-designed Graviton3 Processors power Amazon EC2 C7g Instances, now generally available. Control Tower now supports concurrent operations for preventive guardrails. Awesome if you’re just starting, tougher if you’ve been at it for a while. If you’ve been waiting for Kendra to give you something you actually cared about in dev, here you go: Jira connector enables document search on Jira repository. Great news: Incident Manager expands support for runbook automation. We love announcements like these. Ryan now has even less excuse for not trying Resilience Hub, after it adds support for Terraform, Amazon ECS and more. Once again, AWS admits that multicloud is a real thing, with <a href="https://aws.amazon.com/blogs/aws/new-for-aws-datasync-move-data-between-aws-and-google-cloud-storage-or-aws-and-mic

On The Cloud Pod this week, the team struggles with scheduling to get everyone in the same room for just one week. Plus, Microsoft increases pay for talent retention while changing licensing for European Cloud Providers, Google Cloud introduces AlloyDB for PostgreSQL, and AWS announces EC2 support for NitroTPM. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Big changes are afoot with Microsoft on both pay and European licensing fronts. A very busy Google finds time to release AlloyDB for PostgreSQL. NitroTPM gets Amazon EC2 support. Top Quotes “I hope that it&#8217;s the exact opposite of TK and Google Cloud — that they’re really focused on the values and the culture and providing meaningful work. Especially during the last year in the pandemic, a lot of people have realized there&#8217;s a lot of different priorities; that money is good — it doesn&#8217;t buy happiness, but it buys a lot of things that can make me happy — but it&#8217;s getting that fulfillment, and enrichment is also super important. Not just a slog.” “The problem is they&#8217;re not building power plants fast enough to support all of the power demand they have in this country. So there&#8217;s a possibility that these cloud providers may get pushback on building data centers in the region, which can have a huge detrimental impact. So keep an eye on that.” AWS: Some Dynamite Announcements AWS teams up with IBM in a SaaS-based partnership. Interesting that it’s IBM, but money talks, and there’s no better time to do it. EC2 now supports NitroTPM and UEFI Secure Boot, which is an interesting pivot for the security-minded. Open source supply chain security gets a nice big $10 million investment from AWS. If you need the functionality, you’ve got some nice EKS Anywhere curated software packages to choose from, which are now in public preview. CloudWatch improves the console experience, which no one really wants. There’s a lot more Amazon can be doing. GCP: Busy Little Bees AlloyDB for PostgreSQL promises freedom from expensive legacy databases. Here’s to hoping it works. <a href="https://www.businessinsider.com/google-cloud-ceo-thomas-kurian-strategy-alienates-

On The Cloud Pod this week, Peter’s been suspended without pay for two weeks for not filing his vacation requests in triplicate. Plus it’s earnings season once again, there’s a major Google and SWIFT collaboration afoot, and MSK Serverless is now generally available, making Kafka management fairly hassle-free. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Earnings season is upon us once again, with billions earned and lost. Who are the winners? MSK Serverless is now generally available as a boon for Kafka management. Google and SWIFT uproot the financial world in announcing a huge cloud-based collaboration. Top Quotes “It&#8217;s hard to call a 32% increase for Azure earnings a slowdown, but it is definitely slower than what they saw in 2021 and the boom of the pandemic. But the overall trend is everyone&#8217;s gonna keep adopting cloud hyperscalers to host their infrastructure.” “The important thing about this is that it&#8217;s signaling a change in compliance controls; all these financial organizations with very traditionally physical hardware in Iraq in the data center [had] no way to move to the cloud. So whether it&#8217;s through advocacy or proof of process, being able to virtualize all these things is going to be huge and will open up a massive market for new customers.” General News: Earnings Are In, and It’s Looking&#8230; Good? Imagine earning $116.4 billion and then still losing money. But fear not after such a rough quarter, Amazon: AWS revenue is here to save the day at 37%. Meanwhile, Google revenue increased slightly below expectations, and GCP is still losing money — but $43 million less than last year. Finally, Microsoft has Azure to thank for its 32% growth. AWS: A Truly Kafkaesque Affair MSK Serverless is now generally available, offering a reduction in the overhead of managing Kafka. Amazon EC2 instances get some storage-optimizing icy processing power. (You just know there&#8217;s still a whole team of DBAs that doesn&#8217;t think this is good enough.) Last on the AWS front: There are new management features for EC2 key pairs. We’re ecstatic! GCP: Last Chance to Register for the Google Cloud Security Summit GCP offers some CISO perspectives on security updates, as well as a reminder to register for the upcoming summit. No-code solutions provide some nightmare fuel, as <a href="https://cloud.google.com/blog/products/sap-google-cloud/sap-btp-on-google-cloud-announces-5

On The Cloud Pod this week, the team discusses wholesome local Oakland toast for breakfast. Plus: Hybrid infrastructure is unsustainable, the AWS Proton template library expands, and Amazon angers the team by describing Step Functions as “low-code.” A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Against the trend of popular opinion, it turns out that hybrid infrastructure is a bad idea in the long term, with a few significant drawbacks. The AWS Proton template library just got bigger, so now people can find something else to complain about. Amazon annoyingly describes Step Functions as low-code, which is definitely not true. Top Quotes “Proton was only developed as an answer for, how should we deploy onto Amazon? It&#8217;s setting yourself up just so someone can armchair-quarterback and poke holes in it. Now they&#8217;re saying, well, how would you do this? [Answer:] You have the templates. And then they&#8217;re gonna be like, the templates are cool, except it doesn&#8217;t meet my pretty edge case, so they&#8217;ll complain about that. We&#8217;ll see templates for the templates next.” “I just love the assumption that you could low-code a solution with Step Functions, just because I&#8217;ve created many a step function and state machine flow. And all it is is coding and then figuring out why the code isn&#8217;t doing what I want — because I&#8217;m not passing things correctly between the different functions. The ability for someone who can&#8217;t write code to be able to to accomplish anything is a little far fetched.” General News: Don’t Plan on Hybrid for Long&#8230; In the cloud court of public opinion, dissent is infrequent. Yet here’s Michael Bathon of Rimini Street claiming that hybrid is actually bad in the long-term. AWS: What Is Low-Code, Anyway? The AWS Proton template library expands — as does people’s list of things to complain about. Amazon very irritatingly calls Step Functions low-code, with new workflow observability features. Can the annoying customer with the single use case please stand up? Amazon RDS for PostgreSQL now supports a lot more read replicas. Driven by the business side, perhaps? GCP: Something’s Got To Give With BigQuery Cloud TPU VMs are now generally available, with faster speeds and lower costs for training. BigQuery BI Engine now supports more tools and custom applications. All we heard is that the analysts want to learn BigQuery, so they made it work for them. It’s one thing to provide a good service and another thing to develop an open source tool that <a href="https://cloud.google.com/blog/products/infrastructure-modernization/cis-compliance-support-

On The Cloud Pod this week, the team rediscovers who Ryan is after an eternity (a secret agent). Plus AWS Fargate now delivers faster scaling of applications; new features for Oracle Support Rewards; and Google Cloud Optimization AI: Cloud Fleet Routing API from GCP. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Witness the magic of AWS Fargate scaling of applications — harder, faster, better, stronger. Ooooh! Unveiling brand new shiny features for Oracle Support Rewards. Better planning with more routes: GCP unleashes Optimization AI, API for Cloud Fleet Routing (CFR). Top Quotes “Because of that Fargate-specific limitation, [with] the first three services you&#8217;re concurrently updating, you&#8217;ll actually get a much faster rate through ECS test launches, but that fourth service will be slower. At that point, if the math works out where you&#8217;re better off hosting it on EC2 … it&#8217;s a lot more complex. I&#8217;ve worked with a lot of teams on trying to get ECS services to scale faster, and usually I look at them a little skeptically — do you really need this fast?” “In terms of looking at lists of interview questions from Google algorithm questions and the traveling salesman problem and optimizing journeys through multiple locations, multiple cities, everything else, it&#8217;s a really hard problem. It only gets exponentially more difficult. And then the more efficient you are with that, the more it costs the environment, the more it costs in time or it costs money. So yeah, it&#8217;s actually a worthy problem to solve.” General News: Microsoft Feels the Heat We’re feeling the pain of Microsoft’s licensing, as its tactics to win the cloud battle lead to new antitrust scrutiny. AWS: A Very Fargate Indeed NetApp’s ONTAP, so line up your glasses for a very fine update indeed. Check out the podcast where we interviewed their very own Anthony Lye. #ShamelessPodcastSalesmanship AWS Fargate now delivers faster scaling of applications, and you can see it in action with ECS. Understand token buckets and how AWS uses them, and if you need a hero, Vlad Ioenscu is here. Microsoft Active Directory geeks rejoice: a favored topic of the masses with configurable synchronization launched via Single Sign-On. The Log4j saga simply won’t die: Apache hotpatch issues get <a href="https://aws.amazon.com/

On The Cloud Pod this week, the team establishes that Justin may be immune to COVID. Plus all the latest from the AWS Summit, Azure Red Button team up on DDOS defense, and engines are revving in the great VMware showdown. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights The AWS San Francisco Summit kicks off with a ton of new generally available stuff, but not-so-impressive attendance (looking at you, COVID). Microsoft and Red Button buddy up on DDOS defense testing initiative. AWS, Google and Oracle rev their engines for the VMware top spot. Top Quotes “Really shows you the power of partnership … There’s finally some easy button for testing these things. Because you always dream: Maybe I could create my own DDoS situation, which seemingly I do occasionally by accident, but intentionally would be nice this time.” “I don&#8217;t necessarily trust their math, but assuming that it’s reasonably correct, it seems like a good market for Oracle to go after if you&#8217;re gonna try to compete with those three platforms — I don&#8217;t see a ton of people moving straight to the cloud on VMware. But that&#8217;s a pretty compelling argument and potentially a way of getting VMware customers to the cloud quicker: let&#8217;s just do it now if we don&#8217;t have to get off of VMware.” General News: Great Expectations Gartner anticipates big growth (20.4%) in public cloud spending for 2022! AWS: Everything Generally Available Finally, you can use IAM to control access to a resource based on the account, OU or organization that contains the resource — just how it used to be, and makes a whole lot more sense. You might be excited for the confusingly named Amazon CloudWatch for Ray — if you can work out what it is (we couldn’t). Something to do with machine learning? One for the data scientists: Announcing the Amazon SageMaker Serverless Inference, which should prove a boon for infrastructure management. Now the guru can tell you your code sucks, too: Introducing the power of operational issue automatic detection in Lambda Functions with Amazon DevOps Guru for Serverless. IoT TwinMaker is now generally available, and while your host doesn’t understand, luckily Ryan is on hand to talk about its uses. AWS Amplify Studio is also now <a href="https://press.aboutamazon.com/news-releases/news-release-details/aws-announces

In this TCP Talks episode, Justin Brodley and Jonathan Baker talk with Anthony Lye, Executive Vice President and General Manager of NetApp’s Public Cloud Services Business Unit. An industry veteran for over 25 years, Anthony has been at the forefront of cloud innovation for over half this time. Anthony shares his insight on the importance of embracing disruption in the tech industry. He discusses how NetApp seized the right opportunities, got lucky, and came to dominate the Cloud space — even while younger app developers may have no idea what it was. &#8220;They don&#8217;t comprehend — nor should they — the complexities of infrastructure,” Anthony explains. “And I really love the fact that we&#8217;ve been able to democratize ONTAP, because it&#8217;s cool, but you’ve got to be really smart to get the best out of it. And so we just decided we would be the smart ones.” What’s really behind innovation in tech? “The context is where you are. And people like to think that the world operates through evolution. And sometimes it&#8217;s revolution –- sometimes, you have to do something radically different.” Anthony also discusses cloud computing trends, the importance of customer focus, what NetApp does differently, and the multi-cloud. Featured Guest Name: Anthony Lye What he does: Anthony is Executive Vice President and General Manager of the Public Cloud Services business for NetApp Key quote: “You’ve got to put the customer in the middle of your business. And you’ve got to go where they want you to go. If you don&#8217;t, your hold may last a while, but it won&#8217;t last. And I still can&#8217;t believe that what we did we got away with, and we&#8217;ve gotten so much time to build so aggressively. It&#8217;s great.” Where to find him: LinkedIn Key Takeaways There are two halves of the cloud space: the IT half and the app half. IT people see huge opportunities in extending data centers. App people want to and can build and run their own stacks, and Anthony took advantage of this. “They don&#8217;t have to wait for the IT people,” Anthony says. “And I wanted to build something for them — I didn&#8217;t want to just hang out on the IT side. I went and asked a whole bunch of application people: what do you need?” NetApp spies huge business growth potential on the horizon with recurring revenues. “Recurring revenues are the best kinds of revenues you can get,” Anthony clarifies. But people don’t always consider this. “Because they&#8217;re different, they sort of ignore them — they don&#8217;t like them. And before they know it, they&#8217;re years behind and caught. And passed as if they&#8217;re standing still.” The customer is and always should be focused on as front and center of any business. For NetApp, the software and implementation are the same, but the unique integrations are what makes the service stand out. With SaaS, it’s now the second “S” — the service — that matters most. “The rule of SaaS is the other Henry Ford thing: you can have it in any color you want, as long as it&#8217;s black,” Anthony says. “We&#8217;re going to run it for you as a service, and you&#8217;re going to love it”, NetApp tells customers, increasing developer productivity and providing a much higher release cadence. Resources Here&#8217;s what was mentioned in the episode ARM: the most widely used family of instruction set architectures with over 200 billion ARM chips produced. CloudCheckr: an end-to-end cloud management platform with cost, security, resource and service functionality. <li

On The Cloud Pod this week and with half the team gone fishin’, Justin and Peter hash it out short and sweet. Plus Google Cloud SQL Insights, Atlassian suffers an outage, and AWS finally offers accessible Lambda Function URLs. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Atlassian suffers an outage, sparking fears of data loss. AWS offers some very welcome accessibility for Lambda Functions. Google announces Cloud SQL Insights for MySQL. Top Quotes “When Lambda first came out, before I even used it, this is how I thought it would work … then it didn&#8217;t. So it&#8217;s cool that it&#8217;s now available. I&#8217;m surprised it wasn&#8217;t the default — the starting point — before getting more complex, like API gateways.” “It&#8217;s almost required: These tools are so important when it&#8217;s a managed service and you can&#8217;t get under the covers yourself. So it&#8217;s cool, for sure. Especially when you get into how these things work with your cloud and how they interact with each other, it becomes even more important.” General News: Atlassian Made a DevOops While only 0.25% of their customer base was affected, Atlassian’s outage is not a good look. The company continues to be haunted by it, with data loss fears. Sungard is doomed. A Chapter 11 bankruptcy filing confines them to history’s unmarked grave of discarded cloud victims. AWS: Lambda Finally Does What It Was Always Meant To Accessible Lambda Function URLs are now yours — something that would’ve been nice when it first came out. Security Hub launches five controls and one new integration partner, in a move that seems to open the door to start using it for all sorts of non-security checks. Amazon ECS now allows you to run commands in a Windows container running on AWS Fargate. Peter doesn’t want to do this at all, but maybe someone does. Something you always thought would have been there but didn’t know actually existed: Amazon RDS for SQL Server now supports SQL Server Agent job replication. Ooooooh: PrivateLink, Transit Gateway and Client VPN services all get a data transfer price reduction — a good first step! In case you’re looking (Peter’s not), there are two new Amazon EC2 bare metal instances.<

Google Biglake takes the feature of the week with the ability to federate data from multiple data lakes. On The Cloud Pod this week, the team discusses the most expensive way to run a VM (Oracle wins). Plus some exciting developments, an AWS OpenSearch 1.2 update with several new features, and Azure’s having a party, so bring your own IP addresses (BYOIP). A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights The Cloud Pod goes fishing on Google BigLake with a new tackle box and a whole lot of data. AWS opens up the market with its OpenSearch 1.2 update boasting several new features and which could attract more customers. Azure implements a fancy new bring your own IP addresses (BYOIP) policy. Top Quotes “Are they saving BigOcean for the next layer of unification above when we need to aggregate multiple BigLakes?” “It is good to be able to do it, and I still pity the poor companies who need to migrate IP addresses and anchor their IPs to a provider in order to get their DVR functionality. So this now makes that possible, however bad a pattern that is in the cloud.” General News: Decisions, Decisions VentureBeat discusses how to choose the right AWS region for your business, but they seem to be missing a few considerations (sovereignty, anyone?). Also, picking a region isn’t a great idea for a business (like an e-commerce site) that needs to be multiregional to survive if things go sideways. AWS: Opening up the Search Nice and Wide Amazon EKS now supports Kubernetes 1.22 — maybe AWS bribed the Kubernetes governance board because they were tired of trying to keep up with Kubernetes’ quarterly patch releases. Good news for console users who no longer have to click through five separate pages of configurations, with the new and improved Amazon EC2 console launch experience. Cue applause track: AWS Organizations now provides central AWS account closure. We’ve been waiting for this for years. Amazon EC2 now performs automatic recovery of instances by default — a no-brainer, really. Killing the need for all those expensive backup software solutions, AWS Backup now allows you to restore virtual disks from protected copies of your VMware virtual machines. You can use it for decades. Could there be a more expensive way to run a VM than VMware Cloud on AWS Outposts? Yes, as it happens: Oracle. But this is a not-so-distant second place. Not ideal, but there should be a workaround, as <a href="https://aws.amazon.com/about-aws/whats-new/2022/03/amazon-machine-images-public-visibility-two-y

On The Cloud Pod this week, Ryan is in the doghouse and he’s been suspended (with full pay). Plus, we’re comfortably numb with AWS Cloud NGFW, GCP suspends hosts for big savings, and Azure is once again shutting the Front Door on us. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights AWS Cloud NGFW cost calculations leaves us comfortably numb. GCP boasts big savings by temporarily suspending unneeded hosts. Azure is once again shutting the Front Door with a new, modern cloud service. Top Quotes “I&#8217;m ready to make my [AWS] re:Invent next year&#8217;s first prediction, which will be an AmazonBasics version of that for 1/10th of the cost.” “I’m very curious to actually see the comparison … in cost because, assuming performance is relatively similar, cost is what this always comes down to.” AWS: Pay Less, More Often! Helping you bleed cash by the hour instead of writing one big annual check, AWS presents the new Cloud NGFW. Ouch. Knock yourself out with up to 10 GB ephemeral storage supported with AWS Lambda. It’s cheap (at $0.0000000309 for every GB-second), but they’re not giving it to you — they’re selling it to you. We’re slightly concerned about the general availability of AWS Proton support for Terraform Open Source and its effects on potential future innovation. Amazon hops on Google’s gamification bandwagon with Amazon GameSparks now in preview. GCP: GCP Equalizes With a Quiet Week Nice job, Google: a feature with an edge over other cloud providers that offers big savings by temporarily suspending unneeded Compute Engine VMs. Awesome! Azure: It All Comes Down to Costs Azure shutting the front door on us once again with the now generally available modern cloud CDN service, Azure Front Door. This probably gives them a competitive advantage over AWS for at least a week or two. In a surprising turn of events, Microsoft announces its intent to establish an India datacenter region in Hyderabad. As that’s where most of their employees are, how was there not one there already? It’s like UPnP for cloud, so do not use lightly: Azure Load Balancer now allows you to manage port forwarding for a backend pool. We seriously recommend discussing this with your security team in advance. TCP Lightning Round Peter finally levels up, making the scores: Justin (4), Ryan (1), Jonathan (1), Peter (1). Other Headlines Mentioned: <li style="font-weight:

On The Cloud Pod this week, it’s a brave new world for Ryan, who learns all kinds of things. Plus the Okta breach leads to customer outrage over not telling them for months, AWS announces its new Billing Conductor, and Google expands Contact Center AI for a reimagined customer experience. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Okta is in big trouble with furious customers after it fails to disclose a security breach… for months. AWS announces the brand new and very welcome AWS Billing Conductor to much fanfare and great rejoicing. Google expands end-to-end with Contact Center AI for a touted “reimagining” of the customer experience. Top Quotes “The breach is bad enough, but then the handling of the communications of it is really what seals the deal and where you really do all the damage. It&#8217;s one thing if someone attacks you and gets in through something unintended … that&#8217;s not going to shake my confidence in using a company. But someone who&#8217;s hiding it, someone who&#8217;s clearly dancing around it, makes me think that they&#8217;re not well organized.” “Google is notoriously bad for customer support … and it&#8217;s very difficult to be a satisfied customer of Google when you have to deal with their support channels. So anything they can do for anybody to make the customer experience less frustrating is good. Let&#8217;s hope that this doesn&#8217;t just turn into another agent, please situation where all you want to do is break out of the system and just speak to a real person who can apply some logic.” General News: Okta Breach Shenanigans Change your credentials immediately. Customers are raging at Okta, which manages 100 million logins but failed to disclose a security breach for months. Just who is running things over there? AWS: Money Money Money Donald Trump’s golf courses are going to be very unhappy to learn that AWS is investing $2.3 billion in UK data centers over the next two years, taking advantage of the Moray West Wind Farm off the coast of Scotland — creating 1000 jobs and injecting £500,000 into the Scottish economy. Billing and accounting departments across the land rejoice as AWS announces its very welcome and much improved AWS Billing Conductor. Sharing is caring: AWS Lambda console now supports the option to share test events between developers. GCP: ReAImagining Customer Experiences “Agent, please.” Let’s hope Google’s Contact Center AI expa

On The Cloud Pod this week, the team discusses Peter’s concept of fun. Plus digital adventures with AWS Cloud Quest game, much-wanted Google price increases, and a labyrinthine run-through of the details of Azure Health Data Services. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights AWS gamifies cloud training with the release of Cloud Quest, along with two new initiatives in a bid to build foundational cloud skills for younger people. Google announces price changes while framing it as “choice”: Some services will decrease in price while others will increase. Microsoft launches Azure Health Data Services, the details of which turn out to be super fun trying to get your head around. Top Quotes “If you&#8217;ve ever wanted the job of living in a 3D world where a construction worker runs up to you and tells you that the server running in this weather app is failing and helping them figure this out, this game is for you. And you can earn gems and build and it feels very much like Roblox…. I give it an A for effort and an F for execution.” “One of the arguments that people have made against the cloud forever is that once you&#8217;re locked in, they&#8217;re gonna jack the rates up, and then you&#8217;re screwed because you&#8217;re stuck there. It&#8217;s that exact thing. This is now giving credence to those naysayers who traditionally will say that&#8217;s not really true. … Now we have an exact use-case: Google did it. So what’s to stop Azure and AWS from doing it?” AWS: Slay the Dragon and Rescue the Cloud New bigger and badder EC2 X2idn and X2iedn Instances for you to throw your money away on are now here — supporting memory-intensive workloads with higher network bandwidth. If you’re excited about Pi Day, Jeff Barr helps celebrate with a bragging blog post on the number of objects Amazon S3 now boasts (with some fun galaxial anecdotes to boot). A feature we can finally appreciate: Amazon ECS Update Service API now supports updating Elastic Load Balancers, Service Registries, Tag Propagation, and ECS Managed Tags. And moving onto an AWS feature we don&#8217;t care about, Amazon ECS now supports on-premises workload orchestration on Windows OS. More Windows support arrives, this time for containerd runtime on EKS starting with Kubernetes 1.21. We don’t know about you, but we’re starting to get releases mixed up here. Don&#8217;t get fooled by the marketing folks: There’s still work for the dev team to do with the general availability of AWS AppConfig Feature Flags. We’re not sure who wants to use this, but Amazon RDS for PostgreSQL <a href="https://aws.amazon.com/about-aws/whats-new/2022/0

On The Cloud Pod this week, the team reminisces about dealing with awful database technologies, which Ryan luckily managed to avoid. Plus all things cybersecurity as Linux gets hit with a huge security emergency, Google acquires Mandiant for $5.4 billion, and Orca Security catches a major Azure cross-tenant vulnerability. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Linux is on the backfoot as it’s hit by the most severe vulnerability in years. Google has acquired the cybersecurity giant Mandiant for a cool $5.4 billion. Orca Security catches a huge Azure cross-tenant vulnerability. Top Quotes ”But is Mandiant now going to be suddenly finding the vulnerabilities and publishing the vulnerabilities that they&#8217;re finding in Azure and AWS, and happen to maybe not mention the ones externally that are happening in GCP? They&#8217;re no longer an independent third party.” “Even with these things happening, you&#8217;re still safer running in the cloud. Even though there are outages, you&#8217;re still more highly available in the cloud. I hate to see these things in the news.” General News: Linux Is Feeling the Pain Knative is now officially a CNCF incubating project — any competitors in the market? As Linux is bitten by its most high-severity vulnerability in years, we take back everything we said about Windows vs Linux security. AWS: Solving Very Cloudy Problems Faster failover is the name of the game with AWS this week: its RDS for MySQL &amp; PostgreSQL Multi-AZ deployment option comes with improved write performance. Jonathan is also very, very excited about their JDBC driver for MySQL. AWS customers can now request their CyberGRX report for due diligence on third-party suppliers. But who watches the watchmen? Ryan’s always suffered from slow performance, but now he can now get specific about how his bad code is affecting it, thanks to Amazon DevOps Guru’s extended support for Lambda with CodeGuru Profiler integration. GCP: Getting Out the Wallet Google pays $5.4 billion in hush money to Mandiant in a move that’s sure to massively boost their credibility in the cybersecurity arms race. Mandiant’s biggest customer? GCP itself. You can now leverage OpenTelemetry to democratize Cloud Spanner observability — which of course they want everyone using. Azure: Take Shelter From the

On The Cloud Pod this week, the team heads down a Cisco business model rabbithole. Plus cloud status pages struggle with reality, AWS is tracking carbon footprints, and Microsoft sees serious security business growth with Defender. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Cloud status pages aren’t reflecting reported issues, in what appears to be a cover-up by error-shy cloud providers. AWS introduces a new carbon footprint dashboard to help customers track their sustainability for cleaner, greener living. Following on the heels of AWS and Azure, Microsoft Defender now provides security on Google Cloud, and is also available for Azure Cosmos DB. Top Quotes “Understanding the thresholds would be nice, but it&#8217;s difficult, because if you have an instance up and running just fine, but you can&#8217;t launch a new instance, is EC2 down? Is the control plane being down the same as the service itself being down? The ability to launch a new instance would be fairly instrumental to using the service. There&#8217;re lots of very fine distinctions made between whether something&#8217;s working or not. I think a little more transparency is needed. But I don&#8217;t think they&#8217;re trying to mislead anybody.” “They&#8217;re so strong in other areas, I think it&#8217;s a mistake to try to compete everywhere with the two other companies that are roughly [their] size. Do the thing you&#8217;re really good at and just keep doing it better.” General News: Move Along, Everything’s Fine Here It seems like cloud providers are on a customer gaslighting mission, with cloud status pages not reflecting reported issues. AWS: Continuing Its Tradition of Silly Names In a badly timed announcement, AWS shows off its new unified Health Dashboard. It does make sense to keep it in one place, though. Amazon S3 showcases important, super valuable new additional checksum algorithms. If it’s computationally expensive, push it back onto the client. Amazon EC2 Auto Scaling Warm Pools has two new hibernation and scale-in features — a great solution for penny-pinchers who invested in Windows. The new AWS CloudSaga tool allows for security event simulation and testing. A great first step in what should prove to be cheaper than bringing in a whole team to do it. How many IPv6 workloads are you running? Now you can connect them to IPv4 Services. Six months too late for Jonathan, AWS’ new Customer Carbon Footprint Tool allows customers to track sustainability, helping to reach those clean and green goals. <li

On The Cloud Pod this week, order in the court! Plus tackling those notorious latency issues with AWS Local Zones, things get quick and rusty with AWS s2n-quic, and GCP flexes with Dataplex data mesh. A big thanks to this week’s sponsor, Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights AWS takes on network latency issues — its customers’ #1 complaint — with AWS Local Zones. AWS is getting quick and rusty this week with s2n-quic, its new open-source protocol for Rust implementation. GCP announces Dataplex in Google Cloud is now generally available, enabling the creation of the data mesh view. Top Quotes “We must be hitting some huge brick walls in web performance that are really hurting certain application workloads that require low latency, because if you look at both these announcements back-to-back, they&#8217;re really trying to improve performance.” “This is definitely a hard problem for companies to solve. Data is not going to be uniform, and you&#8217;re going to have many different sources of it, and you want it to all play nice together so it&#8217;s usable across a larger view than it used to be. I like these types of solutions, where they&#8217;re applying governance and a way of doing things that&#8217;s not just everyone reinventing these wheels — which is what we&#8217;ve been doing up until now.” General News: Order in the Court! Judge Ryan Presides Best Buy selects AWS as its strategic cloud provider, but Peter and Ryan argue that it may not be all that exclusive. VentureBeat reveals that Optimizely is partnering with Google Cloud. Justin thinks the reason the company chose GCP over AWS comes down to wanting to feel special. AWS: Goodbye Network Latency? With AWS’ announcement of the global expansion of AWS Local Zones, will its customers’ number one complaint (network latency) be finally addressed? No doubt a good move forward. AWS is also getting quick and rusty this week with the introduction of s2n-quic, the new open-source QUIC protocol for Rust implementation. For encryption nerds, this is it. The general availability of AWS Backup for Amazon S3 is sure to be a great enablement — not to mention a massive cost saving for those using the age-old solution of full data replication between buckets. Amazon comes to the rescue with auto-adjusting budgets — something to add to budgets, not a tool to replace them. Super valuable nonetheless! GCP: The Great Dataplex Data Mesh Flex You can now build a data mesh on Google Cloud with Dataplex — very f

On The Cloud Pod this week, Jonathan’s got his detective hat on. Plus Akamai steps up to CloudFare with Linode acquisition, AWS’ CloudFormation Hooks lift us up, and EPYC instances are now available. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Akamai notes CloudFare’s aggressive pivot to edge computing and acquires AWS competitor Linode for $900m. AWS announces the general availability of AWS CloudFormation Hooks, which should prove very useful. Amazon provides EPYC-powered instances, with up to 15% improvement in price-performance. Top Quotes “When AWS announces general availability of an instance, I have never been unable to launch that instance to test it. … I can&#8217;t say the same thing for workloads on GCP.” “If you ever take a laptop that has no security patches on it and you put it on a network … it&#8217;ll be hacked within minutes. It&#8217;s crazy how bad it is, actually. This is what we always talk about: it’s when you get hacked, not if you get hacked. Because if you have vulnerabilities, there&#8217;s always a chance. It&#8217;s just a matter of time before someone figures it out.” General News: Akamai Steps Up Its Game Capitalizing on existing relationships, F5 unveils its new cloud platform with a huge advantage in security — but it might be a tough sell. Akamai acquires AWS competitor Linode for $900m. Clearly Akamai saw what CloudFare was doing and thought I gotta get me some of that. AWS: Getting Its CloudFormation Hooks In AWS announces the general availability of its CloudFormation Hooks. Very nice. We wish we’d had Amazon CodeGuru Reviewer’s new security features back in December — now it’s February and no one cares about Log4j anymore. A nice freebie comes in the form of improved performance for Amazon Elastic File System (EFS). Epic new EC2 c6a instances are powered by EPYC processors, providing up to 15% price performance improvements next to c5a instances. And there was much rejoicing. Protect your login page against credential stuffing attacks with AWS WAF Fraud Control. We don’t completely hate the new Billing console home page experience. Actually, it’s pretty good. Ryan thinks AWS’ <a href="https://aws.amazon.com/about-aws/whats-new/2022/02/aws-migration-hub-refa

On The Cloud Pod this week, Ryan grapples with life in the confusion matrix. Plus money money money with Q4 2021 earnings announcements, shiny new digital badges from AWS, and Google Serverless Spark lights the way on data processing and data science jobs. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Q4 2021 earnings: Amazon and Microsoft are killing it with impressive cloud revenues (the only part we care about), and Google is losing money but its cloud is still growing. Nothing much from AWS (again) as performance reviews continue over there; but there are some new digital badges to show off your AWS cloud storage knowledge. Serverless Spark is now available on Google Cloud to simplify data processing and data science jobs, allowing more focus on code and logic, and less on managing clusters and infrastructure. Top Quotes “There&#8217;s the rub: it&#8217;s in the details as usual. You do need to operate as a business and achieve that transformation together. No matter what, any kind of migration is going to have an impact on product delivery and feature roadmap, which will have an impact on the ability to sell. So it really does take everyone marching to the same tune in order to get that done, or it just causes infighting.” “The safest move is always to take a small [proof of concept], push that, and do your cloud landing zone with that… But then you&#8217;re left — at a certain point — with the thing that makes you the most amount of money [not fitting] your plans… It&#8217;s a huge risk: a lot of businesses get stuck trying to modernize. How do you justify the interruption to the revenue streams and the lack of feature delivery while you&#8217;re doing that transformation to the thing that pays all the bills?” General News: Q4 2021 Earnings Are In and It’s Looking Good Some serious cloud revenue growth reports from AWS, Microsoft, and Alphabet with growth at 40% or higher, despite Amazon losses. And if you ever want to own Google stock, now’s your chance. Meanwhile, VentureBeat reports on best practice for strategically maximizing the ROI of cloud migrations, although one or two of those metrics are questionable. AWS: Performance Reviews Keep Things Quiet Now you can demonstrate your cloud storage knowledge and skills with brand new shiny digital badges! Very pretty — and good to stick on the resumé. 52 AWS cloud services declare adherence to the CISPE Data Protection Code of Conduct in compliance with the GDPR. Trick

On The Cloud Pod this week, we’re back to a full house (at least for one episode.) Plus, introducing AWS open-source Cloud Map, GCP announces new Bigtable autoscale feature, and Oracle gives us a retro tour of a data center. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights In a move that shows it supports open source when convenient, AWS introduces new Cloud Map capabilities, and U-turns on proposed charges after 30 days. The new console still sucks, by the way. GCP introduces the very welcome Bigtable autoscaling feature, with new optimizing and manageability features and improvements. Oracle comes bearing over a hundred gifts from its blog, and gives us a look inside a data center. Top Quotes “I&#8217;m starting to wonder what&#8217;s going on over at AWS. We’ve talked about the Orca issues, the security rollout … And now we have this: We&#8217;re turning on things in your account that are going to cost you money. I saw the earnings… they look pretty good, so I&#8217;m not entirely sure why they&#8217;re turning on features that cost money — with no notice — and putting the onus on me to turn this stuff off.” “So isn&#8217;t that really just a rehashing of the same problem that most IT professionals have been doing for the last 20 years? On the other hand, I don&#8217;t want to manage my own legacy Oracle footprint, so the fact that they&#8217;re going to take that, move it to the cloud, and then run it for me — I&#8217;m all for that.” General News: Zero Trust ‘Hijacked’ by Network Security Firms 0&#x20e3; Zscaler CEO Jay Chaudhry gets us wise to network security firm marketing tactics, highlighting that practicing zero trust and investing in network security are incompatible with each other. AWS: Not Amazon’s Best Month… In a ridiculous move that completely violates the trust of its customers, AWS attempts to charge after a 30-day trial when no one is paying attention — but everyone noticed. First Orca, now this. Watch out you don’t make your CFO cry with the launch of the very nice but very expensive new Amazon X2iezn instances. AWS shows its open-source credentials — but only because it’s convenient — with the rollout of the new AWS Cloud Map MCS Controller for K8s. GCP: Coming for Crypto Cloud Bigtable’s new autoscaling feature promises cost optimization and improved manageabili

On The Cloud Pod this week, Jonathan is still AWOL. Also Amazon is on GuardDuty with credential exfiltration, Google Cloud Deploy is generally available, and Azure is suffering from more serious DDoS attacks. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. This week’s highlights Amazon’s been on GuardDuty with enhanced detection of EC2 instance credential exfiltration. Google Cloud Deploy (GCD) is now generally available, making continuous delivery on Google Kubernetes Engine (GKE) easier. Azure reports that it spent the last half of 2021 dealing with distributed denial-of-service (DDoS) attacks that are increasing in both severity and frequency. Top Quotes “The biggest risk to cloud infrastructure is that you’re one secret access key away from a big booboo.” “Last November, [Azure] had just mitigated a pretty large attack — at the time the largest in history, at least from ones that have been reported to the world. … Things have gotten worse in Q3 and Q4 — not only the levels [of attacks], but the complexity has gotten worse.” AWS: Beefing Up GuardDuty The threat detection service Amazon GuardDuty — which monitors your accounts for malicious activity and unauthorized behavior — is pretty great already. In the aftermath of the Superglue issue, however, AWS is ramping things up with enhanced detection of EC2 instance credential exfiltration. AWS Security Hub has been integrating with AWS Health and with AWS Trusted Advisor (TA). Does this mean everything annoying gets reflagged? Thanks, TA! In a move that makes a lot of sense, Amazon Elastic Container Service (ECS) now supports ECS Exec and Amazon Linux 2 for workloads running on-premises with Amazon ECS Anywhere. No more yum and Red Hat-based Fedora deployment sounds great, although it would be nice to have a few more implementation details ahead of rolling it out. Replication is now possible for Amazon Elastic File System (EFS), but watch out for those pesky inter-region transfer fees — which do rack up — before enabling this. GCP: Google Cloud Deploy Makes Your Life Easier Google Cloud Deploy (GCD) is now generally available, making it easier to do continuous delivery to GKE. We’ve also done the math on this and it seems to be cheaper than Ryan: GCD customers get their first active delivery pipeline per account free, and pay a $15/month management fee for each additional pipeline. Whereas Ryan is, frankly, expensive. Azure: Azure Under Attack and It’s Getting Worse In an announcement that isn’t really an announcement, you can <a href="https://azure.microsof

On The Cloud Pod this week, the team decides 2022 is already a long, cursed year — bring on 2023. Plus nuggets of wisdom from Gartner, Orca discovers breaksformation and Glue vulnerabilities, and 10 questions to help boards (and others) maximize cloud opportunities. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights Gartner reveals six cloud trends for 2022: Take what you need for your organization and throw away the rest. Orca Security discovers vulnerabilities in AWS’ CloudFormation, and — more seriously — Glue. GCP releases 10 questions to help boards safely maximize cloud opportunities — which can also give you the opportunity to bag that promotion. Top Quotes “Look at the rate of growth of cloud over the past few years. The rate of training new people could not possibly keep up. … [Organizations] want to hire someone who&#8217;s got 20 years’ experience in something that&#8217;s only been around for five years. I can see it being a real problem in terms of quality of output.” “Because Orca published a blog post, we know about this — would AWS have disclosed it to us? If there are other people out there doing research against AWS and they&#8217;re not publishing these things, there could be other things that we don&#8217;t know about, that are not being addressed. Transparency is important.” General News: Get Out the Crystal Balls SiliconANGLE published a guest blog from Gartner’s Paul Delory on his six predictions for what is coming to the cloud in 2022. VentureBeat has five considerations for saving more and wasting less on cloud services. We didn’t learn much, but everyone’s mileage varies. AWS: CloudFormation’s Breaking Apart and the Glue Doesn’t Stick Orca Security Research Team’s been hunting in AWS waters, and found a vulnerability in CloudFormation. AWS responded that on further inspection, there was no threat to customers or resources. There’s something more troublesome afoot, though: The Orca team also discovered a vulnerability with Glue. AWS Principal Engineer Anthony Virtuoso thanked Orca for its findings: but a coordinated effort between AWS and Orca might have avoided all of this. AWS releases its new console which, overall, looks a lot like the old one with new lipstick — it still doesn’t appear to deliver. GCP: 10 Questions and Some Fire in the Works GCP helpfully published a

On The Cloud Pod this week, Peter finally gets to share his top announcements of 2021. Plus, Google increases security with Siemplify, Azure updates Defender, and AWS comes into the new year with a lot of changes. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning, and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud, and Azure. This week’s highlights AWS confirms that applications can now be deployed on Amazon EKS using the IPv6 address space. Google looks to boost its security operations by acquiring SOAR provider Siemplify. Azure spent December updating Defender: was it worth it? Top Quotes “All the cloud providers are embracing containerization and the technologies that allow containerized workloads to work well on their platform. But the side effect is that they also run equally well on everybody else&#8217;s platform.” “[As Vice President of Google Cloud Phil Venables wrote in a blog post,] ‘The race by deep-pocketed cloud providers to create and implement leading secure technologies is the tip of the spear of innovation.’ Which is interesting, because I think this is an area where Google&#8217;s really crushed it, and I think Amazon has failed. Not failed, but not invested as much as they should have.” General News: Google Acquires Siemplify Google acquired Siemplify, a security orchestration, automation and response (SOAR) provider. The hope appears to be that it will help security teams using GCP better manage their threat responses. AWS: Plenty of Non-Outage News IPv6 applications are now deployable through Amazon’s Elastic Kubernetes Service (EKS). This prevents IP exhaustion, minimizes latency, and simplifies routing configurations. On the downside, IPv6 can’t be added retroactively, and this EKS add-on only supports Linux — a dealbreaker for the team. The AWS compute optimizer has been enhanced to allow users to specify both x86 and ARM as their preferred architecture for their EC2 instance type recommendations. This is a big blow to other tools that perform the same operations. AWS announced the general availability of the EC2 Hpc6a Instance. It’s built for HPC workloads to leverage AMD EPYC 3rd-generation processors. This release expands AWS’ portfolio of HPC compute options. Plus, according to Justin, the instance name reminds him of the song “abcdefu” by GAYLE. According to a recent job posting, AWS plans to completely re-imagine how its network is managed. It allegedly has two secret projects that could mitigate the risk of cloud outages — like the one that impacted the company in December of 2021. GCP: Phil Venables on the Keyboard Phil Venables, the venerable Google VP and Chief Information Security Officer, <a href="https://cloud.goog

EDITORIAL NOTE: Your Cloud Pod hosts are on vacation until early January!! Enjoy our 2021 wrapup and look ahead to 2022 and we&#8217;ll be back in your Podcast feed mid January! Justin, Jonathan, and Ryan are minus Peter in this episode as they review the year in cloud computing. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning, and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud, and Azure. This week’s highlights It’s the last podcast of 2021. The next one premieres in the third week of January. Log4j came back with a vengeance during the holiday season. The team looks back at its 2021 predictions and forecast for 2022. Log4jackass Using AWS security services to protect against, detect, and respond to the log4j vulnerability is still an issue. Suggestions to upgrade to version 2.16 for Apache log4j security issue for EKS, ECS, and Fargate customers wasn’t enough. Customers are asked to upgrade to 2.17. By the end of 2021, it will probably be 2.22 just to get into the spirit. Did The Team’s 2021 Predictions Come True? The hosts reviewed their 2021 predictions to see if they came true. Johnathan’s prediction about bracket computing and other quantum technology didn’t come true to break TLS. It’s still a long way off but there are now more classes in quantum programming to prepare for the cutover. Jonathan takes half a point on his merit. Peter believed The biggest blocker to cloud adoption would be costs, with individuals spending too much on poor cloud migrations. Justin believes he’s way off on this prediction. Though cost is a big consideration it’s definitely not the blocker. However, Jonathan believes more controls are needed to prevent overspending. Justin’s prediction on the verticalization of the cloud in fintech, health, retail, etc. came true. Ryan says it makes a lot of sense for industries to go this route instead of building everything out. Ryan said work from home (WFH) would be a permanent trend, further breaking traditional security. Justin agreed on the first part but not the second on security issues. Though plenty of workers still log in through their companies’ VPNs, there is a big move to implement zero-trust security. Favorite Announcements Of 2021 The hosts reviewed their favorite announcements of 2021. Justin is happy that Amazon released its Redshift Serverless program to compete with Snowflake Jonathan’s most favorite announcement was the introduction of OpenSearch. Especially how it went from notification to general release in a short period. Justin is impressed at the community working to improve OpenSearch. He hears more about this product now than elasticsearch. <li style="font-weight: 400;" aria-l

On The Cloud Pod this week, Oracle finally has some news to share. Plus Log4j is ruining everyone’s lives, AWS suffers a massive outage post re:Invent, and Google CAT releases its first threat report. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights A critical vulnerability in Apache Log4j wrought havoc over the weekend. Cloud platforms and developers alike are racing to fix the bug, which gives hackers an opportunity to take control of systems remotely. On the heels of re:Invent, AWS suffered a major outage last Tuesday in its US-EAST-1 region, which had staggering repercussions across the cloud. Google Cybersecurity Action Team (CAT) releases its first Threat Horizons report, revealing its top three concerns threatening cloud users today. Top Quotes “It’s amazing how much of our infrastructure and applications live on these open source contributions of one or two people, and how critical they are to the entire ecosystem. And when they break or they&#8217;re vulnerable, it becomes a huge issue for us very quickly.” “Think about what Microsoft did: They started signing device drivers and signing applications that run in Windows, and everyone thought Oh, they’re just exerting control, what a terrible idea. They&#8217;re just trying to corner the market. And now, of course, 15 years later, binding authorization is probably the most critical next step in securing the cloud.” General News: The Log4j Vulnerability is COVID for Tech In light of the critical Apache Log4j 2.0 vulnerability that gives attackers the ability to to execute arbitrary code on other systems, AWS has released a hotpatch for the logging platform. The aim is to help developers mitigate risk as they work to update their systems to 2.15 or newer. VentureBeat reminds us that while the Log4j debacle is bad, at least organizations now have tools and processes in place to respond quickly to zero-day bugs. GCP has released a set of recommendations for those who are investigating and responding to the Log4j 2.0 vulnerability. To help customers detect whether their systems have been compromised by the Log4j bug, Google has updated its IDS signature to automatically scan for any Log4j exploit attempts. Google creates a new Web Application Firewall (WAF) rule to detect and block Log4j exploit attempts by attackers. AWS: What Better Way to Follow Up re:Invent Than With a Giant Outage? On the Tuesday after re:Invent, <a href="https://www.g

On The Cloud Pod this week, the team finds out whose re:Invent 2021 crystal ball was most accurate. Also Graviton3 is announced, and Adam Selipsky gives his first re:Invent keynote. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights Amazon’s re:Invent 2021 featured a ton of new updates, including AWS CloudWatch Evidently, AWS Private 5G, and a new AWS Sustainability Pillar. Justin’s prediction pick — Graviton 3 — was announced on Day Two of re:Invent, along with serverless options for data analytics, and a free machine learning (ML) database for existing AWS customers. Amazon CEO Adam Selipsky missed the mark at his re:Invent debut, announcing fewer new releases than expected to a low-energy crowd. Top Quotes “This is Adam’s [Selipsky] first keynote as CEO of AWS… I do feel it was a missed opportunity. Number one, he didn&#8217;t drive out a ton of announcements, which everyone expected. There was a miss across the entire audience — people were expecting something they didn&#8217;t get. And then number two, OK, maybe you&#8217;re not the best public speaker: maybe you should go with a different model.” “In the keynote, the message was really clear: They&#8217;re trying to democratize access to machine learning, they&#8217;re trying to give this access to more than just the elite data scientists and programmers. And that made me think that if you expand that out to no-code in general, that’s a really powerful thing” AWS: re:Invent 2021 feat. a Mechanical Cat Amazon highlights its top announcements of AWS re:Invent 2021 and gives details of new releases and updates across the platform. Pre:Invent: Because Every Good re:Invent needs a Warmup In support of its mission to educate 29 million people by 2025, AWS expands access to its free cloud skills training to empower learners to pursue careers in technology. AWS Elastic Disaster Recovery is now generally available to provide fast, reliable recovery of on-premises and cloud-based applications for its enterprise customers. This scalable solution enables customers to use AWS as an elastic recovery site rather than relying on an on-premise disaster recovery infrastructure. AWS Control Tower users can now created nested organizational units within the platform. Huzzah! AWS Audit Manager users can now simplify their audit preparations with the new dashboard

The Cloud Pod: Oh the Places You’ll Go at re:Invent 2021 — Episode 144 On The Cloud Pod this week, as a birthday present to Ryan, the team didn&#8217;t discuss his advanced age, and focused instead on their AWS re:Invent predictions. Also, the Google Cybersecurity Action Team launches a product, and Microsoft announces a new VM series in Azure. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS releases new G5 instances, which feature up to eight NVIDIA A10G Tensor Core GPUs. That’s super, super fast. Google’s Cybersecurity Action Team adds Risk and Compliance as Code (rCaC) Solution. Microsoft announces the NDm A100 v4 Series, and claims another spot on the TOP500 supercomputers list. Top Quotes “[AWS Resilience Hub] is already building on top of the FIS, which is interesting, but at some level I just want you to execute Lambda functions that validate things for me, and then tell me that I&#8217;m resilient because I validated it with Lambda.” “Anything that empowers more dynamic and interactive web development I&#8217;m all for.” Amazon Web Services: Give Us Your Car AWS is releasing new G5 instances, which feature up to eight NVIDIA A10G Tensor Core GPUs. For the cost of a small car every month, you too can get up to 40% better value on inferencing and graphics-intensive operations. AWS is releasing the Resilience Hub, a service designed to help you define, track and manage the resilience of your applications. Unified Search in the AWS Management Console now sources results from blogs, knowledge articles, events and tutorials. Buyer beware with this one: It will pull outdated information that is still available on AWS, and you could end up with a giant albatross that costs you a fortune. Amazon ECS is improving ECS Capacity Providers to deliver faster cluster auto scaling. When you&#8217;re using a capacity provider, it&#8217;s painfully slow to get the underlying hosting infrastructure to scale fast enough, so we’re presuming AWS has addressed this in the back end. Manage access centrally for JumpCloud users with AWS Single Sign-On. We’re super happy to see this: Take notes, Azure AD. Amazon ECS adds container instance health information. This is nice to see and will help improve your application resiliency. AWS re:Inve

On The Cloud Pod this week, the pod squad is down to the OG three while Ryan is away. Also AWS announces serverless pipelines, GCP releases Spot Pods, and Azure introduces Chaos Studio. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS releases Serverless Application Model (SAM) pipelines to save development teams time. These pipelines streamline CI/CD configurations for AWS applications. In the spirit of savings, new GCP Spot Pods help GKE Autopilot users run fault-tolerant workloads while spending less money. Hooray! Azure Chaos Studio helps development teams wreak controlled havoc with a managed experimentation service, allowing them to safely build, break and optimize their apps with reckless abandon. Top Quotes “I think for some people when they&#8217;re looking at, OK, we&#8217;re gonna make this commitment to a different architecture, at that point in time, they&#8217;ve looked at serverless versus containerized apps, and most companies went the containerized apps route, but that might change in the next wave.” “Python 3.10 looks really interesting. It&#8217;s got a bunch of new features … around data handling specifically, which is really what people have been using Python for for years: bioinformatics and data science. But it has really neat features around matching different schemas of data and things like that.” AWS: Finally, a Pipeline We Can Get Behind AWS releases Serverless Application Model (SAM) pipelines, a new feature of the AWS SAM CLI, to help users simplify CI/CD configurations for AWS serverless applications. The new feature will help development teams minimize the amount of time spent creating pipelines, while also ensuring safe deployments. With AWS Fault Injection Simulator, users can now create and run FIS experiments that check the state of Amazon CloudWatch alarms and run SSM automations. We hope the only fault injections you have are in your EC2 instances, not in your Thanksgiving turkey. AWS customers running Windows containers rejoice: New Amazon ECS Exec allows you to execute commands or get information directly from your Windows container shell. Magic! Amazon is doubling down on Canada. AWS announced plans to open a second Canadian region, in Calgary, bringing the company’s total region count to nine. The Calgary region is set to open in late 2023 or early 2024, and AWS has committed to using renewable energy to help build it out. </li

On The Cloud Pod this week, the team wishes for time-traveling data. Also, GCP announces Data Lakehouse, Azure hosts Ignite 2021, and Microsoft is out for the metaverse. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights GCP releases its data lakehouse, a new architecture that offers low-cost storage in an open format. The real question is, can we book it on Airbnb? Microsoft kicks off Azure Ignite 2021, announcing new capabilities for its hybrid, multicloud and edge computing platforms. Microsoft also unveils plans for its own metaverse, including upgrades to Teams, Dynamic 365 Connected Spaces and more. Top Quotes “I&#8217;m a big fan of IDE for coding and that integrated environment to reduce context shifting, but when you&#8217;re talking about access to data, Jupyter is something that&#8217;s hosted, that you can protect and grant access to, versus an IDE like RStudio. It becomes a much trickier scenario to maintain any kind of data sovereignty, or protect that in any way, just because, by its true nature, you have to open it up.” “Between the Facebook Metaverse and Microsoft, who&#8217;s going to win the race? Everyone wants to build “Ready Player One.” And Facebook owns Oculus and they have all my data, then they can get my brain as well: They can just monetize the crap out of my profile. And then Microsoft has their augmented reality things… . But I think the power of the Azure cloud actually gives them the advantage versus Facebook, in my opinion. “ General News: ‘Tis Earnings Season ​​ Microsoft was the first to announce its quarterly revenue, boasting a $45 billion increase. This jump of 22% beats Wall Street expectations, and includes Microsoft Azure, LinkedIn commercial revenue, Office 365, and Xbox. Google also posted impressive results, rounding out the quarter at $18.9 billion, up a whopping 68% from one year ago. Much of this success came from Google Ads and GCP, where revenue was up 45% or about $5 billion. Due to ongoing supply chain issues and labor shortages, Amazon missed the mark on its earnings forecast, posting a profit of $3.2 billion, a 49% decrease from last year. AWS, however, outperformed (as usual), with a 39% rise in revenue to $16.1 billion. AWS: The Official Cloud Storage Provider of MI6 <a href="https://press.aboutamazon.com/news-releases/news

In this TCP Talks episode, Justin Brodley and Jonathan Baker talk with Jonathan Heiliger, co-founder and partner at Vertex Ventures: an early-stage venture capital firm backing innovative technology entrepreneurs. Earlier in his career, at just 19, Jonathan co-founded web hosting provider GlobalCenter and served as CTO. He went on to hold engineering roles at Walmart and Danger, Inc., the latter of which was acquired by Microsoft. He was also Vice President of Infrastructure and Operations at Facebook (now Meta), and a general partner at North Bridge Ventures. The latter firm’s portfolio included Quora, Periscope, and Lytro (which has been acquired by Google.) At Vertex Ventures, Jonathan has helped cutting-edge companies like LaunchDarkly and OpsLevel revolutionize the tech space with continuous delivery and IT service management solutions. Jonathan shares his insights into the shifting market of IT services and explains why decentralizing infrastructure management can help digitally native companies operate at a faster pace. According to Jonathan, the question of IT service infrastructure isn’t being adequately addressed. Without properly defining service ownership, businesses looking to scale run the risk of siloing critical knowledge, and losing track of services networks. Jonathan also discusses his own experiences running infrastructure at Facebook (oops, Meta), the merits of both centralized and decentralized IT services management, and how he and his partners at Vertex Ventures approach new investments. Featured Guest Name: Jonathan Heiliger What he does: Jonathan is a co-founder and partner at Vertex Ventures, an early stage venture capital firm that backs B2B software entrepreneurs. He held his first CTO role at 19, and has previously worked for Walmart; Danger, Inc.; Facebook (soon to be known as Meta); and North Bridge Ventures. Key quote: “We need systems to help us build bridges from the world of paper-based and in-memory to scaling to tens and then hundreds of microservices. It’s that pain point of tracking all the info about apps and their services, dependencies, ownership and versions that I think is this big problem lurking below the surface.” Where to find him: LinkedIn | Twitter Key Takeaways As companies rely on an increasing number of IT services, Jonathan says that it’s imperative that technology leaders establish ownership of IT service management, and meticulously track their software and vendor partners. According to Jonathan, this kind of IT management is still done in a fairly rudimentary way, even for larger companies. “Every engineering team — even the most well run engineering orgs — the majority of them use Excel spreadsheets to track who owns what service, and even what services may talk to one another,” he says. He sees this as a big problem that’s going to catch up with companies one day. When considering whether a centralized or decentralized IT management service infrastructure is best for you, Jonathan suggests doing a deep dive on your business objectives. For example, digitally native businesses, which rely on a vast network of microservices, might work better with a decentralized infrastructure. Non-digitally native brands, on the other hand, might benefit from a centralized system to ensure continuity in the technology. Avoiding vendor lock-in — i.e. becoming too dependent on a single service provider — is critical in keeping your business flexible and agile, but it can

On The Cloud Pod this week, half the team misses Rob and Ben. Also, AWS Gaudi Accelerators speed up deep learning, GCP announces that its Tau VMs are an independently verified delight, and Azure gets the chance to be Number One for once (with industrial IoT platforms.) A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS is using Gaudi Accelerators to speed up deep learning models — for nearly $10,000 a month. Google announces that Tau T2D VMs are now available in preview, and takes the opportunity to report that Phoronix has identified these Tau instances as the best price-performing ones yet. Azure bags the Number One spot in the Gartner Magic Quadrant category of Industrial IoT Platforms. We’re wondering how much schmoozing Microsoft had to do to pull this off. Top Quotes “I guess [AWS Gaudi Accelerators] solve the problem of lack of availability of NVIDIA CPUs. It&#8217;s almost impossible to buy a decent graphics card, and I&#8217;m sure the cloud providers are suffering horrendously with not being able to scale their machine-learning instances the way they wanted to, because of the chip shortage.” “We&#8217;ve said it for a long time now that with Google coming to the market when they did, it was very easy to take all the major gripes of AWS and Azure and improve on them. And they banged it out of the park. So kudos to them, because it is a much better user experience than [what you get with] the other two cloud providers.” General News: HashiCorp Increases Access to its Service Mesh HashiCorp introduces its new Consul API Gateway to help route traffic to applications running on the Hashicorp Consul Service Mesh. This seems like an early release, given its fairly basic capabilities. AWS: Rolling Out Gaudi Accelerators — Not Architecture AWS announces AWS Panorama, which is an appliance and SDK that allows users to process video data at the edge of their locations. AWS Panorama was first introduced at the last re:Invent, and is now generally available. Amazon joins Microsoft, Google, IBM, Honeywell and more in the race to build a quantum computer, partnering with Caltech to open a new center in Pasadena. 4&#x20e3; To save Peter some time in the lightning round, we combined four Amazon DocumentDB updates into one announcement: Users can now enjoy additional support for access control; support for $literal, $map and $$ROOT; capabili

In this TCP Talks episode, Justin Brodley and Jonathan Baker talk with Josh Stella, co-founder and CEO of Fugue, a cloud security company that helps businesses run faster on the cloud without breaking any rules. Josh shares insights from Fugue’s State of Cloud Security 2021 Report, and highlights key themes, including preventative security measures, automation, and engineering-first compliance. According to the report, within the next two years, all but 1% of security breaches will be caused by misconfiguration of cloud resources. Josh and his team at Fugue aim to minimize these mistakes by simplifying cloud security through a systems-based approach. One way to streamline security, Josh notes, is to take advantage of automation. With cloud environments becoming increasingly complex, relying on pure knowledge will soon be untenable. Josh urges business leaders to embrace automation to reduce the risk of human error in their security systems. Josh also discusses how businesses can declutter security tech stacks, the “land grab” happening in the cloud, and trends he predicts will shape the future of cloud compliance. Featured Guest Name: Josh Stella What he does: Josh is the co-founder and CEO at Fugue, a cloud security company on a mission to help businesses move faster by ensuring safe cloud environments. He has over a decade of experience in the cloud security space, including positions at Amazon Web Services and in national security. Key quote: “If Fugue as a software vendor and as domain experts in cloud security can&#8217;t make your job a lot easier through tooling, then we&#8217;re not doing our job.” Where to find him: LinkedIn | Twitter | YouTube Key Takeaways While compiling the State of Cloud Security 2021 Report, Josh and his team at Fugue interviewed over 300 organizations. They found that as cloud environments have grown and become more complex, organizations are seeing more instances of misconfigurations. According to the report, 49% of respondents experienced over 50 misconfigurations per day. Another interesting detail: For the first time since Fugue started compiling its annual report, Identity and Access Management (IAM) was the number one concern regarding misconfigurations. Josh argues that automation is the next step in making cloud environments more secure. Fugue aims to make security automation easy by providing pre-built rules and templates to automatically check code and monitor deployments. Looking forward, Josh is optimistic that automation will become a key piece in enterprise cloud security. “The thing I would like to see a change in is the attitude that security problems are because people are screwing up … [I would like to see people] thinking about how to actually solve these problems, which is through computer science and automation,” he says. One way to enable automation is to put engineering departments in charge of compliance, as opposed to traditional security teams. According to the State of Cloud Security 2021 Report, more than 66% of businesses are delegating security policy to engineering teams — a trend Josh hopes to see continue. He says that today, engineering and DevOps teams work so fast security teams struggle to keep pace. Businesses that haven’t moved responsibility for security over to these teams are more likely to experience those potentially dangerous misconfigurations. Resources Here&#8217;s what was mentioned in the ep

On The Cloud Pod this week, the team’s collective brain power got a boost from guest hosts Rob Martin of the FinOps Foundation and Ben Garrison of JumpCloud. Also, AWS releases Data Exchange, Google automates Cloud DLP, and Azure Synapse Analytics is available for pre-purchase. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS announces Data Exchange for Amazon Redshift, which will allow users access to and management of third-party data. Watch out, Snowflake. Google is making its Cloud Data Loss Protection (DLP) automatic so users no longer have to worry about manually monitoring their data. Azure has made Azure Synapse Analytics available for pre-purchase for customers looking to manage their analytics workloads. Top Quotes “There&#8217;s always that line: If you build a module that is very effective for users across the board, regardless of what they&#8217;re doing, at some point it just becomes a resource. It’s pretty tough to build complex modules that everybody&#8217;s going to use as-is, and not want to end up making their own.” “I do not envy security people in this current climate. The proliferation of cloud computing, edge computing, has really had to get a lot of creative minds working together to try and secure data outside your four walls of sanctity. … And so it&#8217;s good to see big companies starting to chime in and address that, because I think it&#8217;s just going to continue to keep growing.” General News: Hashicorp + AWS = A Match Made in Heaven At .conf21, Splunk announces a new workload-based pricing model for its smaller customers that will help drive retention. Clearly Splunk has been listening to TCP complaining about its insanely expensive model. HashiCorp releases the public beta of HCP Packer, which allows teams to track and automate build updates across their packer and terraform workflows. AWS and HashiCorp are partnering to make developers’ lives easier with new terraform modules for AWS, as well as an API path that will enable users to quickly deploy AWS resources while keeping modules lightweight and composable. Justin is stoked for this! AWS: AWS Data Exchange is Coming for Snowflake AWS releases its Security at the Edge: Core Principles whitepaper to help business and technology leaders ensure their cloud network security extends to workloads running on the edge. The paper points out three strategic areas to address: AWS Services at the edge location, AWS security best practices, and additional edge services. AWS Glue Crawlers now support Amazon S3 event not

On The Cloud Pod this week, Jonathan reveals his love for “Twilight.” Plus GCP kicks off Google Cloud Next and announces Google Distributed Cloud, and Azure admits to a major DDoS attack. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights After a few awkward keynotes, Google Cloud Next kicks off days one and two, highlighting new features and announcing Google’s $10 billion investment in cybersecurity advancements. At Google Cloud Next, GCP announced the Google Distributed Cloud: A network of hardware and software to help organizations improve cloud strategies. After tooting its horn for reduced DDoS attacks in 2021, Azure reveals details about the largest DDoS attack in its history. This 2.4 terabits/second attack was launched in late August against an Azure customer in Europe. Top Quotes “It is kind of crazy, because [Google Distributed Cloud] is an open source project that&#8217;s basically how to run Google Cloud in your own data center. It&#8217;s probably a smart risk, because I do believe workloads will just eventually end up on Google Cloud.” “The tools have the functionality built in, but unless you&#8217;re offering that as a service to your end users … and thinking about the holistic management of the settings, the deployment and the full lifecycle of those things, it&#8217;s the difference between enabling your business to be secure and just shooting it in the foot.” AWS: Keeping Quiet This Week for Google Cloud Next Amazon Fraud Detector can now store event datasets and use this historical data to boost performance for ML models — all at a 56% reduction in price. AWS Console Mobile Application has (finally) added ECS, which will allow users to view and manage a select set of resources to support incident responses from their devices. Clearly someone at AWS listens to TCP and has heard Justin’s many complaints about this. CDK8s (say that five times fast) is now generally available and supports the Go programming language. Using CDK8s, you can define your K8 applications and apply K8 YAML to any cluster. Tired of accidentally deleting your backup with your cloud formation stack? The newly released AWS Backup Vault Lock solves this problem by using safeguards to ensure users store their backups using a Write-Once-Read-Many (WORM) model. GCP: Thank U Google Cloud Next Ahead of Google Cloud Next, <a href="https://cloud.google.com/blog/products/application-development/node-python-and-javarepos-are-generally

On The Cloud Pod this week, the team is running at half-duplex without Peter and Ryan. Plus Cloudflare R2 is here, Facebook died for a day, and AWS releases Cloud Control Plane. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights Cloudflare’s new R2 service is making waves in the cloud object storage space, offering incentives like no egress fees and lower rates than its competitors. Influencers, boomers and bored teenagers collectively screamed on October 4th as Facebook and its associated apps experienced an unprecedented six-hour outage. AWS Cloud Control Plane offers developers an easier way to manage their third-party and AWS services with a new set of common APIs. Top Quotes “The bigger impact is actually WhatsApp, because for a large portion of the world, Whatsapp is the primary method of communication. If you go … to different countries overseas … everyone&#8217;s on WhatsApp. Everybody. So to not have that communication is a huge loss. And you have to wonder, does Facebook need to think about diversifying their backend in some way? Should all of their DNS be inside Facebook?” “[AWS Cloud Control API] is probably going to be a requirement for any new services that launch in AWS … which means that we will no longer be waiting weeks or months for new services to be available in CloudFormation.” General News: The day that Facebook died (for six hours) Cloudflare is getting into the cloud object storage market with its new, competitively-priced R2 Service. Unlike other storage services, Cloudflare is nixing the dreaded egress cost, and will charge 10% less than AWS, its largest competitor. Facebook is having a rough week. On October 4th — the day before a former employee testified to Congress about the social media giant’s negative impacts — Facebook accidentally unpublished itself and its affiliated apps for around six hours. A seemingly routine update caused issues with its BGP routes: Read the company’s account of events here. AWS: On a mission to control the cloud In a rush to release before the next AWS summit, Amazon Managed Service for Prometheus is now generally available. With Prometheus, users can easily monitor their containerized apps at scale, and new features like alert manager and ruler let users integrate SNS with various destinations. <a href="https://aws.amazon.com/blogs/aws/announcing-a

On The Cloud Pod this week, Justin may be out but the cloud stops for no one. Also, AWS announces a New Zealand region, GCP releases GKE Backup, and Azure Functions 4.0 is now in public preview. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights Grab your togs and sunnies! AWS is opening a New Zealand region to serve Asia Pacific. The move is expected to create more than 1,000 jobs in the next 15 years. GCP users can now protect their GKE workloads with GKE Backup, which helps automate recovery tasks and shows reporting for compliance and audit purposes. Azure Functions 4.0 has arrived — in public preview, that is. It’s expected to be generally available by November 2021, just in time for the .NET 6.0 release. Top Quotes “Microsoft Excel is still the most powerful tool for making business decisions. And [Amazon QuickSight] is the same thing: It&#8217;s a way to visualize the raw data you have. Being able to ask a service a question in normal words is gonna be super powerful.” “It’s funny because for at least the last 18 months, this has been my daily life: Thinking hard about how software makes it from environment to environment and into production. And no matter where you&#8217;re hosting this workload — what cloud provider, what technology — there are trials and tribulations and hurdles that have to be overcome … So I’d like to see more of these bespoke deployment technologies that are really focused on doing one thing really well, rather than doing all things.” AWS: AWS says ‘Kia Ora’ to its Newest Region: New Zealand With the newly available Amazon QuickSight, business users can use natural language (read: normal words) to quickly create interactive BI dashboards and receive accurate insights and data visualizations. Look out, Kiwis and hobbits: Amazon is set to open new data centers in New Zealand by 2024, adding the AWS Asia Pacific (Auckland) Region to its 81 existing availability zones. It’s estimated that the new region will create 1,000 jobs in the next 15 years, but we believe it will have an even bigger impact. Tracing support is now generally available in AWS Distro for OpenTelemetry. Users can now send telemetry data to various AWS applications as well as partner destinations. Telemetry, dear Watson. AWS releases AQ UA (Advanced Query Accelerator) for Amazon Redshift RA3.xlplus nodes. This new distributed and hardware-accelerated cache enables Redshift to run up to 10X faster than AWS competitors by boosting certain query types. Magic! AWS users can now easily select, detect and manage sensitive data with Amazon Macie. Using machine learning and pattern matching, users can create custom alerts based on the specific data governance and privacy needs of their organizations. You can now (finally) replicate individual repositories to other regions and accounts with Amazon ECR — instead of all images in the registry. Christmas has come early this year for Amazon EC2 users. Windows Server 2022 AMIs are now officially available on AWS, meaning you can now enjoy the latest Windows features. GCP: Making Stateless Stateful with GKE Backup Google expands its cloud storage capabilities, allowing users to choose from a larger selection of regions for their data replication, rather than the previous dual-region buckets. Google releases GKE Backup to help users protect, manage and restore stateful application data — or basically make your containers VMs. Google announces the release of Google Cloud Deploy, which allows users to define delivery pipelines and targets for each release, making continuous delivery to GKE faster and more reliable. Azure: Welcome to the Azure Peep Show 4&#x20e3; Azure Functions 4.0 is now in public preview and is expected to be released in November 2021 to coincide with the planned release of .NET 6.0. (How are we only on version 6?) Functions 4.0 will also support the following versions: Node.js 14; Python 3.7 and 3.8; Java 8 and 11; PowerShell 7.0; and Custom Handler Java apps users can soon view richer data from their functions applications — i.e. requests, logs, metrics — with Azure Monitor’s application insights integration with Azure Functions on Linux. Currently in public preview, the integration will feature monitoring for the application insights Java 3.x agent. A twofer! Azure Database for MySQL and PostgreSQL Pipeline Support are now in public preview. Users will be able to fully automate testing and delivery in multiple services, and craft DB update commands against the database. Just make sure you have a tested rollback process first. Also in public preview is the Azure Resource Health For Azure Database

On The Cloud Pod this week, the whole team definitely isn’t completely exhausted. Meanwhile, Amazon releases MSK Connect, Google offers the Google Cloud Digital Leader certification, and DORA&#8217;s 2021 State of DevOps report has arrived. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights Users of AWS’s fully managed Apache Kafka service can now use MSK Connect to easily set up and deploy Kafka Connect clusters. GCP releases the new Google Cloud Digital Leader training and certificate program, which trains users on all things Google in just four classes. Google Cloud’s DevOps Research and Assessment (DORA) team publishes the 2021 State of DevOps, identifying key trends. Top Quotes “From a least-privileged perspective, it&#8217;d be better to have a purpose-built tool that does one thing really well — what you need it to do — versus building out this huge AWS CLI you have to install on every server and expose attack vectors if it has the wrong permissions.” “Digital transformation is such a broad thing for so many industries … and giving them this cloud knowledge helps them drive outcomes from a technical perspective, and map the business need to the technical need … It&#8217;s helpful for [business users] to get a little bit of language, but also for the technical person to actually learn how to translate technical ideas into business ideas that have value.” General News: F5 Absorbs Threat Stack F5 sets its sights on Threat Stack, paying $68 million to add this Boston-based cloud monitoring company to its growing list of cloud and security software acquisitions. This recent buy brings F5’s investment in cloud monitoring capabilities to over $2 billion. AWS: MSK Connect – the New Easy Button for Managed Kafka Service users AWS is eliminating undifferentiated heavy lifting for users of its fully managed Apache Kafka service, by introducing MSK Connect, which allows users to configure and deploy a connector using Kafka Connect with a few clicks. Amazon Redshift users can now use RSQL, a fully-featured command-line client, to interact with their clusters and databases. Working as a complement to the PostgreSQL psql command line tool, RSQL is available for Linux, Windows, and macOS X. GCP: Anointing Future Digital Leaders Google introduces the new Cloud Storage trigger in Eventarc, which eliminates the need for audit logs and supports bucket filtering. Now you can do what you’ve always done in Eventarc, only better. Google has answered its customers’ prayers

On The Cloud Pod this week, AWS releases OpenSearch and EKS Anywhere, Google Cloud is now available in the Toronto region, and Microsoft deals with two critical security issues. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS releases OpenSearch (previously Elasticsearch) and makes EKS Anywhere generally available — to those who run VMware. Google Cloud opens a Toronto region, expanding its core Google portfolio into three new zones. How aboot that? Security issues continue to plague Microsoft, with critical vulnerabilities exposed in both its ACI and OMI features. Hopefully new hire, Charlie Bell, can help them out. Top Quotes “I hope that the reason [AWS is] integrating with VMware only is because they&#8217;re deeply integrating with that platform and they can spin up new VMs, deploy new infrastructure, and provide the scaling you need to make EKS Anywhere work the way it works in the cloud.” “Everything now is driven by the cloud in a big way, where you pay by the drip. So now I need to make the drip as efficient as possible. And if I can give you dedicated silicon to do that, that&#8217;s the best thing for me. And so it&#8217;s quite interesting.” General News: Jump On It The Cloud Pod sponsor, JumpCloud, raises $159 million in its Series F round, bringing its total funding to $350 million. Remote working has catalyzed growth for this cloud directory service, now valued at $2.56 billion. Take that, AD. Amazon Web Services: New Features, Who Dis? Amazon Elasticsearch is now OpenSearch. In addition to the new name, AWS has also added a host of new features like advanced security, SQL query syntax, updated reporting capabilities, and more. Overall, we are super happy with this first release! Amazon EKS Anywhere is now generally available… as long as you use it on top of VMware. EKS (almost) Anywhere helps users manage any Kubernetes cluster, and offers automation tooling for cluster lifecycle support. This comes two weeks late for Justin, who included it in his predictions draft. Bummer. Livestreamers rejoice! AWS is launching EC2 T1 instances for live multi-stream video transcoding, which will provide resolution up to 4K Ultra HD. Using GPUs for graphics processing — what an idea! Google Cloud Platform: Google Welcomes Toronto to the Family In addition to giving users dedicated CPUs, GCP is now offering CPU allocation controls which will allow

On The Cloud Pod this week, the team wishes there was something else on tap, not just NetApp. Also, AWS Storage Day has come and gone again, and Azure is springing into the enterprise cloud. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights The third annual AWS Storage Day brought a few presents, including new features for files and transfers. One announcement was the general availability of Amazon FSx for NetApp ONTAP. Hell has frozen over, and you can now get Netapp Filers on top of AWS. Azure announces the launch of Spring Cloud Enterprise, a managed service for Spring optimized for enterprise developers. Top Quotes “I assume this is all built natively on top of AWS, and they are managing the service for you on EC2. If that&#8217;s the case, I believe this is the first of this type that AWS has offered. We&#8217;ve talked about Google partnering with people to operate appliances on your own VPCs, same as Azure. So this is probably the first of many partner integrations.” “I don&#8217;t know if it&#8217;s [Amazon S3 Multi-Region Access Points] they wanted, but I think at these prices, they definitely didn&#8217;t want it. If the price was more attractive or if it was simpler to process and calculate — more predictable — I think people would potentially be excited about this.” General News: Whisk It DigitalOcean acquired three-year-old startup Nimbella, which develops multi-cloud serverless software. It’s an interesting alternative to, say, building its own serverless stack with OpenWhisk. Amazon Web Services: Hell Has Frozen Over Here’s what happened at AWS Storage Day 2021. We recommend you check out the recordings, because it actually wasn’t a snooze fest. AWS announces general availability of Amazon FSx for NetApp ONTAP. If you want to import data into a data lake, this would be one way to do it. AWS announces Amazon EFS Intelligent-Tiering to optimize costs for workloads with changing access patterns.This gives you some flexibility that you didn&#8217;t

On The Cloud Pod this week, AWS releases new features including Managed Grafana, GCP Serverless solves the cold start problem, and Wiz hacks into CosmosDB. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS shows no sign of slowing down after the Summit, making Managed Grafana generally available and releasing new features for VPC, CloudFormation, and CloudWatch. Google introduces new capabilities to minimize cold starts, giving serverless customers the option of using — gasp! — servers. Wiz finds a critical security flaw in CosmosDB which allowed it to hack into thousands of Azure customers’ databases. Looks like Microsoft needs to make some calls. Top Quotes “I just think about all the companies who were … trying to build their own ML models for document recognition and how far they are versus how far Amazon and Google are and Azure. … this is the reason why using your cloud vendor might be the better choice. Because they&#8217;re not even getting this kind of scale and or price reduction for anything they&#8217;re doing on top of ML.” “I think the main benefit for this change is going to be shared tenancy systems because, with virtualization, everytime there’s a context switch between different tenants on the CPU, you have to throw away that entire cache. The smaller that cache is, the faster that&#8217;s going to be, and the better overall performance you&#8217;ll get from the system.” ”There&#8217;s servers behind everything. So nothing’s serverless just how exposed are you to it? And to me, I think that level of exposure where it&#8217;s no longer serverless is if I have to patch it.” General News: Docker goes “Full Oracle” Docker announces it will begin charging enterprise customers to use it’s desktop app. Enterprise companies with over $10 million in revenue or greater than 250 employees have until January 31st, 2022 to buy the subscription. In Justin’s words, “that’s just dirty.” Amazon Web Services: Can’t Stop Won’t Stop To enable East-West traffic, Amazon has removed some VPC routing restrictions, allowing users to inspect, analyze or filter all traffic flowing between two subnets. AWS CloudFormation users are sharing a collective sigh of relief as they can now disable the automatic rollback when a cloud formation fails and retry stack operations from the point of failure. Peter is jumping for joy. AWS announces a 32% price reduction for Amazon Textract users in 8 regions as well as a 50% reduction in processing times for asynchronous jobs. Fast or cheap? We

On The Cloud Pod this week, the results of the AWS Summit prediction draft are in. It was probably worth getting up early for — especially if you’re Jonathan. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights At the Summit, AWS announces AWS Backup Audit Manager, sealing the prediction draft winner: Congratulations, Jonathan. Outside the Summit, AWS announces MemoryDB for Redis, new split charge rules, and cybersecurity updates. Former AWS leader Charlie Bell is joining Microsoft. What his role will be is unclear, but we speculate that he’ll play some part in improving Azure availability. Top Quotes “I suspect that certificate-based access to the console is going to be more prevalent. I don&#8217;t know of this in Microsoft Azure or Amazon, but I also know that this is one of the things popping up in custom security audits or in documentation that I&#8217;ve started to see more and more, which is, how do you control access to this publicly available API?” “This could be an additional $5 billion boost in revenue for Microsoft Office 365, which is important to us because Microsoft 365 is included in the Azure number and reported as one line item. So a $5 billion increase could be a pretty big increase in revenue and growth that Azure could then tout and say, We are finally the biggest, fastest-growing cloud.” General News: Later Days GitHub is saying goodbye to password authorization, but you can still create a personal access token to log in. Amazon Web Services: We’ve Reached the Summit Redis users in select regions can now use Amazon MemoryDB to boost their application performance with data durability, microsecond read, and single-digit millisecond writes. Unlike ElastiCache, MemoryDB does not require adding a cache from your database to achieve low latency. Amazon EC2 turns 15 this year. Launched with a single instance in 2006, there are now over 400 variations of instances. Happy birthday, EC2 — next year we’ll buy you a car. Good news for finance pros: AWS Cost Categories will now allow you to create split charge rules to allocate shared costs to different categories. Time to bust out the corporate card. IAM Access Analyzer users can (finally) get rid of localized cloud trails and consolidate them into a single account. This makes us super happy, except for Justin, who lost a

On The Cloud Pod this week, everyone’s favorite guessing game is back, with the team making their predictions for AWS Summit and re:Inforce — which were not canceled, as they led us to believe last week. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS CTO talks about continuous configuration (CC) at Amazon in his latest blog post. CC has made it possible for the company to keep services running while it also adapts and reacts in real-time. Google launches monitoring and troubleshooting for virtual machines (VMs). Developers will be able to access visual guides talking them through various scenarios. Microsoft launches a lawsuit in response to AWS winning a $10 billion NSA contract, the content of which is reportedly related to the organization’s attempts to modernize the way it stores classified data. Top Quotes “When it comes to streaming VR, you can be very smart about what you send to a consumer and what you don&#8217;t. I mean, there&#8217;s still enough compute power locally that it has a good idea of what most of the scenes can look like. So potentially, local computers do the background or the bits that are complex, and you just stream the complexity with the bits that do need to be latency sensitive.” “I feel like all the monitoring tools out there have been missing this [monitoring and troubleshooting for VMs] for a long time, in that they seem to have all the features you need, but then getting the things you want is so difficult.” General News: Here We Go Again Amazon has won a secret $10 billion cloud computing contract from the NSA. This is JEDI all over again: Microsoft is not happy and has already launched a lawsuit. AWS CTO Dr. Werner Vogels talks about continuous configuration at Amazon. There are a lot of helpful tips in this article, particularly if you’re in Dev, DevOps or Ops. Amazon Web Services: A Good Brew AWS Codebuild allows project owners to make build logs and artifacts publicly accessible to anyone outside of AWS Console. This is a great way to build trust in your product: thumbs up from us. AWS continues to muddy the waters of Glue DataBrew with announcements about logica

On The Cloud Pod this week, it’s been an interesting few days in the cloud, so the team members have made themselves comfortable with plenty of adult beverages to keep them going. Also, Elastic has forked everyone with its latest Elasticsearch move. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights Elastic has modified the Elasticsearch Python client so it won’t work with forked versions, including the relatively recently released OpenSearch 1.0. AWS CloudWatch Synthetics now supports visual monitoring. Customers with web apps can see defects that can’t be scripted but would be visible to end users. Google introduces the Unattended Project Recommender. ​​It uses machine learning to identify projects that have likely been abandoned and forgotten about, so you can cull them from the cloud. Top Quotes “People were originally attracted to Elasticsearch because it was an open source project. So this [amending the Elasticsearch Python client] is taking away one of the main reasons they were able to acquire the users they did. I don&#8217;t get the strategy, unless they&#8217;re pulling a ripcord right now, because they&#8217;re bleeding.” “I know a lot of companies are moving their services into the cloud, and a lot of security engineers are restricting outbound access, or tightly controlling egress. These things [Google’s Private Service Connect] have to happen — these things are absolutely needed — to keep them secure, and allow those companies to sell their services. Good catch-up feature.” General News: We’re Not Angry Just Disappointed Elastic amends Elasticsearch Python client so it won&#8217;t work with forked versions — and proves it knows how unpopular this is by blocking GitHub comments. This is forcing people to choose sides, and is a really disappointing move. AWS details its commitment to keeping OpenSearch and Elasticsearch compatible with open source. Elastic has managed the impossible: it’s made AWS look like the good guys. Amazon Web Services: Unbreaking The Rules Amazon’s senior cloud leader Charlie Bell is leaving the company after more than 23 years. Knowing how fast AWS moves, we feel tired just thinking about working there that long. Amazon EC2 Auto Scaling enhances Instance Refresh <a href="https://aws.amazon.com/about-aws/whats-new/2021/08/amazon-ec2-auto-scaling-enh

On The Cloud Pod this week, the team is back in full force and some are sporting fresh tan lines. Also, it’s earnings season, so get ready for some big numbers — as well as some losses. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS is finally killing off EC2-Classic. EC2 was launched in 2006, with one instance type (m1.small), security groups, and the US-EAST-1 Region. The 2021 Gartner Magic Quadrant for Cloud Infrastructure and Platform Services is out, and AWS, Google, Microsoft and Oracle have all made it. Although some scraped in by the skin of their teeth. Get consistent Kubernetes definitions with the new Anthos Config Management feature. The Kubernetes Resource Model (KRM) helps users define and update resources with minimal effort on their part. Top Quotes “I would say Google&#8217;s getting market share because they are able to leapfrog everyone else on Kubernetes, big data, and machine learning.” “Considering all the different vendors that are involved in a hospital, just being able to have a standard data format with FHIR is huge. And they also now power that with the cloud. There are lots of really interesting use cases that get unlocked with this [Azure Healthcare APIs] solution.” General News: Earn Baby Earn Google’s parent company, Alphabet, crushed earnings expectations. It still lost a lot, though. Increasing the price of YouTube TV could have limited the damage. Microsoft&#8217;s revenue is up 21% overall. Azure’s revenue doubled, which is nuts. Amazon’s revenue is up 27% overall — but that’s down from the 41% year-on-year increase the company saw in Q2 of 2020. It’s starting to see post-COVID-19 corrections. Amazon Web Services: Not Fit for Consumption AWS named as a Leader for the 11th consecutive year in the <a href="https://aws.amazon.com/blogs/aws/aws-named-as-a-leader-for-the-11th-consecutive-year-in-2021-gartner-magic-quadrant-for-cloud-infrastructure-platform-services-cips/" target

On The Cloud Pod this week, it’s a merry-go-round of vacations, with Jonathan returning and Ryan escaping while Peter tunes in from Hawaii. Also, there is some big news in an otherwise quiet week. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS announces that Virtual Private Cloud (VPC) users can now assign IPv4 and IPv6 prefixes to EC2 instances. It should help simplify the process of using container and networking applications that require multiple IP addresses. AWS releases a new feature for SAM CLI, SAM Pipelines. It provides quick and easy access to the benefits of CI/CD, making it easier to get out new products faster and check for errors. Microsoft has acquired security platform CloudKnox, which was designed to work across multi-cloud and hybrid cloud environments. Top Quotes “I hope to see more of these [SAM Pipelines-style features]. It’s been one of my mental blocks. I&#8217;ve been using serverless ever since Lambda was announced, but building into a pipeline is such a chore. And Jenkins is such a chore in itself. So if you have a canned way to deploy a pipeline, it&#8217;s great.” “I think it [CloudKnox] had a potential to be really interesting and really valuable. But Azure was actually building a lot of these capabilities into their cloud natively, including least privilege access. And Google&#8217;s building that kind of stuff too. So I don&#8217;t know if there&#8217;s a long runway left for them to get a lot of adoption and a lot of new customers, or if they’re going to be replaced by the cloud providers over time, and ultimately not be needed.” General News: Don’t Off Slack Salesforce has completed its acquisition of Slack for $27.7 billion. Hopefully they don’t kill slack because we do not want to use Teams. Amazon Web Services: Winning Amazon Virtual Private Cloud customers can now assign IP prefixes to their EC2 instances. Being able to assign multiple IPs is super helpful, so there are some great use cases for this. AWS Serverless Application Model (SAM) Pipelines is a new feature of the AWS SAM CLI. We hope to see more of these types of announcements, this out-of-the-box function is so good. AWS is

On The Cloud Pod this week, if you were impressed by Matthew Kohn’s ability to wing it last time, then you’re in luck because he’s back. Also, the team hopes AWS is listening to the show and reading these notes, so it can get on with creating its own unified agent for CloudWatch. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS has launches HIPAA eligible Amazon HealthLake. The service enables information exchange across healthcare systems, pharmaceutical companies, clinical researchers, health insurers, patients, and others parties. Google previews new Cloud IDS for network security. The system makes it easier to manage threat detection from the cloud. Microsoft announces the evolution of the Azure Migration Program (AMP). The new Azure Migration and Modernization Program (AMMP) will help enterprises improve their apps while moving them to Azure. Top Quotes “I have a couple of customers that I sent this [HealthLake] press release over to, and they&#8217;re very excited. They have no idea how they want to use it yet, but they&#8217;re very excited to figure out how to do something interesting with it. So I&#8217;m really curious to see how people actually start to play with this, and figure out how to use it to be beneficial for their companies.” “I was surprised that they limited the open-source UDP proxy to just gaming. I get that there&#8217;s some undifferentiated heavy lifting that is provided with session management security. But a UDP proxy that scales is something valuable to most companies that are using some legacy protocols. I wouldn&#8217;t be surprised to see this expand a little bit to enable some other UDP use cases in the future.” Amazon Web Services: Swimming Upstream AWS has launched a HIPAA eligible service for customers in healthcare and life sciences, called Amazon HealthLake. We recommend checking out the pricing before getting excited, as it seems expensive to us. AWS EBS io2 Block Express volumes are now <a href="https://aws.amazon.com/blogs/aws/amazon-ebs-io2-block-express-volumes-with-amazon-ec2-r5b-instances-are-now-generally-available/" target="_blank" re

On The Cloud Pod this week, with a couple of no-shows, Justin and Ryan’s Happy Hour includes returning guests Matthew Kohn and Sara Tumberella. Also, the team is curious to see what’s going to change at AWS with its new CEO. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights Amazon has finally launched OpenSearch 1.0. They’re hoping to make the transition to as simple as possible for open-source Elasticsearch users. AWS customers can now pre-pay for their usage. This will allow customers to pay future invoices automatically. Google announced the general availability of its new Google Cloud Certificate Authority Service (CAS). It hopes the service will help address the increased need for digital certificates. Top Quotes “I&#8217;m curious to see if you can do things like optimization, where you can reference a security group rule many times across multiple security groups. [You could] simplify a lot of your ecosystem by having maybe a catalog of rules that you apply selectively.” “I still haven&#8217;t seen much talk about what they&#8217;re doing with Beats, and if they&#8217;re going to fork Beats as well. Initially, they weren’t going to, but then it sounded like Elasticsearch basically pulled the rug out from under them on that too. I wouldn&#8217;t be surprised to see that also get forked at some point in the future as well.” General News: Red Tape New AWS CEO Adam Selipsky faces bureaucracy challenges. It will be interesting to see what he keeps and what he changes. Security: Ryan’s Going to Space Research suggests security tools are fighting for attention, and there’s a rise in false-positive alerts. When companies want the latest and greatest security applications, they often end up competing with each other, and it makes troubleshooting difficult. Amazon Web Services: Setting Fire to Dumpsters AWS announces new VPC security group rule IDs. We’re curious to dig into the details: for example, will it allow users to reference one security group rule across multiple security groups? AWS launches OpenSearch 1.0. We get the impression AWS is handling this project differently, by really investing in the community. AWS now allows customers

On The Cloud Pod this week, Ryan was busy buying stuff on Amazon Prime Day and didn’t want to talk about JEDI, so he arrived late to the recording. Also, long-time sponsor of The Cloud Pod, Foghorn Consulting, has been acquired by Evoque, so the team grilled Peter for the juicy details. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights The $10 billion JEDI cloud contract has been canceled by the Pentagon. In its place, the DOD announced a new multi-vendor contract known as the “Joint Warfighter Cloud Capability.” Evoque Data Center Solutions has acquired cloud engineering experts Foghorn Consulting. This is a key part of the company’s Multi-Generational Infrastructure (MGI) strategy, which it announced the same day as the acquisition. AWS released some incredible numbers from Amazon Prime Day. Jeff Barr gives his annual take on how AWS performed and the record-setting event. Top Quotes “The Pentagon has called off the $10 billion cloud contract [JEDI]. It was being dragged through the courts by Amazon and Microsoft, and this is sort of an admission that the Pentagon didn&#8217;t want Donald Trump to get subpoenaed and testify on what his involvement was in the whole contract.” “This is a big problem that almost every business has: how do you stop a deployment, especially a large deployment? Typically, we throw people at it, and we have them watch millions of dashboards, and hopefully, they catch it. But usually, it&#8217;s a problem somewhere that&#8217;s exposed to the customer that triggers that. So if we can have more tools like Gandalf that detect problems earlier, it’s great.” General News: Some People Can’t Take a Joke Evoque Data Center Solutions acquires Foghorn Consulting. Congratulations to Peter on this exciting news! The AWS Infinidash story has taken on a life of its own. What started as a joke has led to backlash from the community complaining about it being a form of technology gatekeeping. JEDI: We’re Not Talking About This Anymore The Pentagon has canceled the $10 billion JEDI cloud contract. It’s not really dead, they&#8217;ve just turned it into a joint multi-cloud offering, which is what we said they should do six months ago. Amazon Web Services: A Little Gooey Andy Jassy thanks AWS employees as he <a href="https://newsnationusa.com/news/finance/banking/internal-email-andy-jassy-thanks-his-missionary-insurgent-aws-cloud-team-as

On The Cloud Pod this week, with the first half of the year full of less-than-ideal events, the team is looking forward to another next six months of less-than-ideal events. Also, everyone is excited to see how they can manipulate the AWS BugBust Challenge for a free ticket to re:Invent. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS launches the BugBust Challenge in the hopes of finding and fixing 1 million bugs. The challenge aims to help developers improve code quality, eliminate bugs and boost application performance while saving millions of dollars in application resource costs. Google has announced new features for Cloud Monitoring Grafana plugins. The new features include popular dashboard samples, more effective troubleshooting with deep links, better visualizations through precalculated metrics and more powerful analysis capabilities. Azure VM Image Builder service is now generally available. Image Builder will make it easier to build custom Linux or Windows virtual machine images. Amazon Web Services: Does Not Have Bugs AWS announces the world’s first global competition to find and fix 1 million software bugs. We don’t think they’re referring to Amazon bugs, just software bugs in general. AWS launches customized images for Amazon EMR on Amazon Elastic Kubernetes Service. If you’re looking to reduce the time it takes to build images, that’s a good thing: otherwise it’s a fully managed service, so we’re not sure that users will care. Amazon announces new Java Detectors and CI/CD Integration with GitHub Actions for CodeGuru Reviewer. We’re amazed by how quickly GitHub Actions is being adopted. AWS acquires communication technology company Wickr. We want to know why Amazon is buying this: maybe they’re trying to enhance their enterprise and public sector application suites. AWS now supports container images to simplify <a href="https://aws.amazon.com/about-aws/whats-new/2021/06/new-tools-to-simplify-continuous-integration-systems/"

On The Cloud Pod this week, Jonathan pulls a classic move from 2020 and doesn’t realize he’s on mute. Also, the team completely destroys an article about the cloud being too expensive for what you get. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access and device management — no matter where your users and devices are located. This week’s highlights VC firm a16z calls the cloud a “trillion-dollar paradox” in a blog post, noting the pressure cloud computing puts on margins can start to outweigh the benefits. We think there are quite a few holes in their analysis and the Dropbox example doesn’t work. AWS releases Step Functions Workflow Studio. Developers new to Step Functions will enjoy being able to build workflows faster. Google announces that Quantum computers from IonQ are now on its marketplace. Developers, researchers and enterprises alike can now access IonQ’s high-fidelity, 11-qubit system via Google Cloud. General News: A Trillion-Dollar Paradox Venture capital firm Andreessen Horowitz, known as &#8220;a16z,&#8221; thinks the cost of cloud computing outweighs its benefits. Dropbox is a terrible example to use in this case. Splunk launches Splunk Security Cloud and announces a billion-dollar investment by a private equity firm. We think it’s having some integration problems in the background — it’s something to keep an eye on. Amazon Web Services: Jonathan, You’re On Mute AWS launches Step Functions Workflow Studio. This is great for developers new to Step Functions as it reduces the time it takes to build their first workflow. AWS invites individual developers and small teams to take the Graviton Challenge. They’re obviously trying to drive adoption. AWS Key Management Service is introducing multi-region keys. A nuisance that has plagued Justin for years has finally been solved. AWS announces a public registry for CloudFormation, providing a searchable collection of textensions. People have

On The Cloud Pod this week, Matthew Kohn joins the team as a substitute for Jonathan and Peter, who have gone AWOL. Also, Google demonstrates again why its network is superior to the other cloud providers. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. This week’s highlights AWS now allows crash-consistent AMIs without requiring a reboot. No more manual processes needed. Google is building a subsea cable named Firmina. The cable, to be comprised of 12 fiber pairs, will carry traffic quickly and securely between North and South America. Oracle announces improvements to its block volumes. Its Ultra-High-Performance (UHP) block volume comes with up to 300,000 IOPS and 2,680 MB/s throughput per volume and is generally available across all OCI commercial regions and on all interfaces. General News: Not Dead Yet Hashicorp Vagrant 3.0 will maintain its Ruby-based features while being ported to Go. We thought this was on a path to death but apparently not. Amazon Web Services: Proceed With Caution AWS announces a new region in Tel Aviv, Israel. AWS clearly realized it was behind the other cloud providers on building new regions. Amazon launches AWS Proton in general availability. There are some super cool improvements that have been done to this. Amazon EC2 now allows you to create crash-consistent Amazon Machine Images (AMIs). This is one of our EC2 wish list items — it’s great to tick it off the list. AWS announces per second billing for EC2 Windows Server and SQL Server Instances. It’s nice to only be billed for what you actually use. AWS removes NAT Gateway’s dependence on Internet Gateway for private communications. This has been a big annoyance for a while so nice to see it sorted! Google Cloud Platform: Just Figure It Out Google is

Is sending the former CEO of one of the biggest technology companies in the world to space a good idea? On The Cloud Pod this week, the team discusses the potential economic catastrophe that could follow if Jeff Bezos becomes space junk. A big thanks to this week’s sponsors: Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure. Jumpcloud, which provides cloud directory services, enables remote access, eases onboarding and offboarding of users and enables zero trust access models. This week’s highlights Amazon is sending the old junk it found in the attic into space. Google is now fully qualified to direct traffic. Azure turned its out-of-office message on and hoped no one would notice. General News: Frenemies Snowflake had its annual user conference and announced some new tools and features. Pretty good! Jeff Bezos is joining the first human flight to space with his company Blue Origin. This is super risky, even if he’s no longer CEO. Fastly blames global internet outage on a software bug. This is the right way to address outages — nice one, Fastly! Amazon Web Services: Watch This Space Amazon announces auditing feature for FSx for Windows File Server. This needs an acronym. AWS has added a third availability zone to the China (Beijing) region operated by Sinnet. Nice to see. AWS Sagemaker Data Wrangler now supports Snowflake as a data source. Smart move. Google Cloud Platform: Sneaky Sales Tactics Google announces the release of container-native Cloud DNS for Kubernetes. Powerful building block or Achilles heel? Google announces new capabilities for Cloud Asset Inventory. Makes so much sense to come from the provider because they know what you have. Google releases new Microsoft and Windows demos on <a href="https://cloud.google.co