 Okay, welcome back and we are live in San Francisco for our beloved world, 2014 is theCUBE, our flagship program to go out to the events, and expect to see them as I'm John Furrier, the co-founder SiliconANGLE Media Show, and Jeff Frick, general manager of our CUBE operation. Jeff, we're back here with more expertise around Cisco. Sean Donaldson, our next guest CTO of Secure24, welcome back to theCUBE. Thank you, thank you for having me. So we didn't get the interviews, do Mini Man interview with you at VMworld. Absolutely. First was the ancient, obviously he's hot, v-sphere, we cover that all day long. But here at the show is Oracle, it's security, it's Cisco. Given the breaches this week, I mean, how do you feel? I mean, are you on top of these recent security snafus? Yeah, absolutely, absolutely. So security is always a hot item, right? It's always a hot topic, a conversation, and it's always something that we're very much looking at. You know, if you look at our name, our name's Secure24, right? So it's very well established in our culture and in our brain. And what we're really looking at specifically with 2015 is security moving past simply the technology aspects of it, the firewalls, the DLP, the IPS, all those technology capabilities and really going a lot more into the people in the process, right? The capabilities from a security perspective of, I'm going to give you a Starbucks card if you give me your password, right? And working on the process around that and the people around that and the policy and the procedures in place to mitigate data breaches. So talk about how the landscapes changed since you were on in 2013, because that's a great example in this security, the places where security, the war is fought, I guess, continue to change and evolve. So talk about how that has evolved since 2013, where is it today and where do you think it's going next? Yeah, it continues to evolve upstack, right? So it's from the very traditional firewall that would simply be blocking internet ports and protocols, moving upstack into more of the application layer, application layer securing advanced persistent threats, different types of attacks and then even moving farther than that into the people and the policy and the procedure, right? Social hacking, right? Hacking by calling in and getting a password or user name or access and you're not supposed to have it. Yeah, it's interesting because we talk about tech, people in process all the time and I don't think people give enough really thought about the people in the process and it's interesting on the cloud and like an AWS perspective where someone will say, you know, your stuff might actually be more secure in a cloud that's managed outside of your internal company because you don't have some of your internal company that might be disgruntled or whatever the reason is that are causing some of your security breaches. So it is really a multifaceted approach that you've got to take. Absolutely, this is kind of a good opportunity to take a step back and tell you a little bit about Secure24. So Secure24 we specialize in critical application hosting and a lot of that really focuses around obviously availability and performance from an application perspective but security and compliancy as well. So as the market evolves and as there's more and more compliancy requirements just about every industry today has a variety of business requirements that revolve around their compliancy requirements whether it's SOCs, PIPA, PCI, FTI, ITAR and you can keep going down the list but just about everyone today has those types of requirements and that's really where we try to focus is that higher level of compliancy and process. But then if we go back the other direction to the lower level now all the rage is in and out of things all these devices are going to be connected. Absolutely. All kind of data this transferring back and forth so does it kind of shift the game back out to the edge on some of these other appliances because it looked like something today that a printer is a PC that's unprotected what a great access point into your network. Well that's a great question and I don't see it so much as shifting so much as I see it expanding. So that technology, that network, that endpoint security, that mobile device management those are going to continue to still be hot topics and big areas of focus. I just see the broader overall landscape expanding and really looking more and more into the people side of it the process, the training, training resources making sure there's good process in place to mitigate those things as well. Sean talk about the why UCS tell us why you're working with these guys what are some of the things that impresses you about what Cisco's doing? Yeah absolutely so as we were saying as I was saying earlier at Secure 24 we focus in hosting mission critical applications so ERP systems that run a business disaster recovery business continuity and those processes that go along with that. So we were actually one of the early adopters of Cisco UCS and a lot of the reasons for it are around the ability to deploy quickly the ability to manage a technical environment and have a level of consistency across that environment. So UCS allows a lot of API integration. So if you have various types of automation tools various types of workflow management control tools you can do a lot of API automation integration. If you have multiple systems in a cluster you can create a profile that controls all of those systems profile and I can guarantee across multiple physical servers that I have a consistent landscape that I know the security of that landscape I know the bio settings and all the individual settings that you might do to customize and tune a machine that's all captured in a profile and I can apply that then to multiple physical hosts. And I know- It's not going good. Sorry to interrupt. Oh no that's all right. So about Larry Ellison's vision of the cloud what did you think of it? He did slam HANA. I don't know if you saw that keynote yesterday. He said the quote the quote chef was HANA powers the cloud. He goes what cloud? He was like pointing to what clouds does SAP HANA support? I know you guys have worked with SAP we love SAP as a competitive jam there. Oh yeah absolutely. You've got Oracle cloud, you've got enterprise cloud, you guys specialize in enterprise cloud. How do you talk to customers about make sense of it? The Oracle is great for Oracle customers but there's other clouds. Absolutely so this is always an interesting topic of conversation right? When you there's a lot of different options out there cloud is a very ambiguous word and more and more there's a lot of want and need for this the hybrid cloud, the flexibility but then the offset of the security compliance and control around that right? So where we really look at that is yeah focusing on that enterprise private cloud focusing on that controlling capabilities but also always trying to look at how we can how we can utilize a public cloud in an efficient manner right? How can I utilize a public cloud to be able to run particular types of workloads still in a secure and controlled manner? So there's a trend out there called native as a service which is essentially running native software at the SaaS layer in the cloud. Yeah. Which essentially just your data center app putting that that's what it sounds like Oracle's doing. Is it and or there seems to be a trend for people just to put stuff in the cloud from a cost perspective and a consumption standpoint to be native not so much satisfied per se we just I want to run my stuff in the cloud. What does that mean? Do you even follow this at all? Yeah so that's there's a lot of different opportunities for that. So obviously the cloud offers a lot of different options offers everything from platform as a service to infrastructure as a service to software as a service. There's various degrees and tiers of that. Where we kind of see a lot of it going is we see that there's really becoming a shift in the overall IT management workforce. So we see this shift happening where now the traditional IT manager is kind of becoming that broker of different services. So their jobs transitioning from managing a bunch of employees now to saying okay I'm going to understand the business a lot better and I'm going to see what's my best use case for a true public cloud. What are my best applications to go to a SaaS maybe a sales force or a workday. What are my best solutions that I'm going to take to a secure 24 type company that are my mission critical ERP systems that still need to have that greater degree of compliancy. And I think there's enough demand out there for all of these different use cases. Does that answer your question? Yeah it does because it's a new kind of category but infrastructure deserves commodity platform and SaaS but doing the SaaS requires more of a dev ops philosophy. So we just want to roll in their windows apps in the cloud for instance. These are kind of new trends. So I brought up because we're watching it Jeff one of those things where Oracle basically saying we'll put Oracle in the cloud. I mean okay but it's Oracle in the cloud. It's not really cloud. It's just Oracle running in some service. It's nothing different than just putting a data center together. Absolutely that's the challenge I see a lot of IT managers facing today is their job now is to understand what all these different cloud component pieces mean and understand the pros and cons of these different solutions and know okay for my business what's going to bring more value to my business right? If I'm talking about anything from big data, big data analytics. If I'm talking about email solutions or collaboration solutions what are the ones that are going to bring the most value to my business and where are the opportunities to run it in a cloud such as you're talking about versus what auditing, compliance, security, availability and all those understandings. They're really becoming more of that broker between the business and this plethora of different private, hybrid, public clouds that are available. And then they got to manage across all of them. Yep. So yeah, putting together managing the service providers holding them accountable managing the SLAs, understanding the SLAs. And at the same time where we see a lot of that value though is now they can actually, a lot of the CIOs and IT directors that we've talked to they've spent so much time in the past managing the day to day issues, challenges that came up. Where now they, through outsourcing and through using some of these services they can take more time to understand the business. Sit down with the CFO understand what's the most important thing to you? What's the most important thing driving your segment of the business and how can we put the right technology solution in place that's going to add more value? So you're seeing a lot of customers are pretty well down the road in terms of seeing this viable adoption strategy and really now moving into the business partner implementation focus and really optimizing around the options that are available. And that's a big change we've seen over the last five years. Because five years ago it was a lot of trying to convince people that the cloud was secure, the cloud was safe. And again, an enterprise private cloud, right? There's obviously different degrees of it. What we've seen is that transition happen where a lot of people are understanding now, okay, there's been a lot of adoption of this already. We fundamentally, assuming you meet all the auditing compliance, easy checklist, we trust you. Now it's more of a matter of how do I get there? And how do I get there making sure I'm delivering the right values of the business? And is it because they've had success kind of on the low hanging fruit on the early workloads that they put to the cloud that their trust and comfort has gone up? Or was there some other event that suddenly blessed it as being a viable alternative for somebody's kind of more sensitive applications? You know, fundamentally it's not always success that has driven it. We've also seen learning opportunities through failures where they say, okay, I went in here into this opportunity and here's the things that worked. Here's the things that didn't work. And what we have now is a more educated consumer. And this is actually helping us a lot because we can sit down with them and say, okay, well here's from a customer service perspective, from a service delivery perspective, we can still meet all those requirements. But some of those challenges maybe you've had before, we can also address those and make sure we're putting the appropriate SLA measures in place and application delivery methods in place. So we're seeing maybe a more educated consumer now. Sean, really appreciate you coming on theCUBE. I wanted to get to the final word and share with the folks out there, what is the most important thing happening at the show today, this week? In your opinion, technically, and or on the business front? Technically or on the business front? That's a great question. I think it's great that Larry's bringing up security. I think it's a great message. I think it's a great point of focus and something we should always continue to focus on. And he uses the word, it's hard to do. Yeah. It's really hard. Okay, shut down. So here inside theCUBE, we are live in San Francisco for Oracle over World 2014. It's theCUBE. Stay with us. We'll be back after this short break with our next guest live here inside the Cisco booth on the floor, on the ground. This is theCUBE. I'm John Furrier with Jeff Frick and the Right Back.