 Live from Boston, Massachusetts, it's theCUBE. Covering AWS Reinforce 2019. Brought to you by Amazon Web Services and its ecosystem partners. Hello everyone, welcome back to the live CUBE coverage here at Boston, Massachusetts. This is theCUBE's coverage. I'm John Furrier with Dave Vellante. Special guest here at Rubinoff, President of Prime Tech, Cybermind Genius VIP Influencer. Love having her on. We are here at AWS Reinforce. AWS inaugural event. Great to have you on, be host with us and to do more hosting and co-hosting with us as we bring the community CUBE to security. Excellent. I think this is the perfect conference to do that. Here and Dave. So day one's in the books. We've got another full day of coverage. A lot of action happening. I think the seminal point of this event is that you have Amazon Web Services. They already run the biggest event, Reinvent. They have summits all around the world. Some summits get huge numbers, but this has been rebranded, Reinforce, by design. This is not another summit, Dave. This is a game statement from Amazon. Well, Pat Gelsinger several years ago told us on theCUBE, security's a do-over, it's got to be reinvented. And Amazon is reinforcing that message and rebuilding it from the ground up with developers and the security, security as code. Mindset. Yeah, certainly as technology advances, cloud security has to advance as well. And the cloud is looking towards technology to know how to differentiate itself and to continue to add to it and change up. And as we talk about AWS, they secure the cloud and the customers have to secure in the cloud, which is a very important piece because it almost lends itself when people are talking about how do you secure an environment and even you look at organizations. There's a talk between the CIO, what's the role of the CIO and what's the role of the COO. Almost look at it like how AWS really positions itself, securing the cloud, securing in the cloud, securing the industry itself, securing within the company. And what AWS really has seen and really is doing is it's saying you've got to work hand in hand. It has to be a partnership. And a partnership is able to secure things much better than a one person because then you're putting the onus on everybody. And if everybody's actually thinking about security all the time, it's going to yield best security. And the things we heard, CIO only get your thoughts on, encryption always on, everyone's watching, so shared responsibility. These are the buzzwords, reasoning. This is industry wide. I know you do a lot of traveling, you do a lot of public speaking, you do a lot of work with some of the big companies and their transformations. What are you seeing? Because you're out there getting the data, we got some data. What's the big trend? What's the macro trend right now? The most important story that needs to be told in this new reimagined security renaissance? Well, I think it's just that. I think that people are moving towards the cloud for the reasons of one plus one equals three. You're going to have the security of the web, I'm sorry, of the cloud, and you're also going to have the security of the organization within the cloud. And the organizations are realizing today, moving to the cloud, they can have better overall security. So that is the trend that I'm seeing, certainly from the larger companies out there, and the smaller ones are building it from the ground up. They're saying, you know what, let's make it a solution that we're going to build going right from day one, and not putting band-aids on it to try to make it to secure after. So they're really learning from the experts. Dave, I want to get your thoughts with sheer on this, because all three of us do a lot of content. We make content for a living, we kind of think about the users in mind, the audience. Well, I overheard a couple of things at this event that I've been hearing at other events. Open ecosystems, and the partner networks are developing. And so that makes a lot of sense, integration is a big part of security. But I hear people saying, I want to meet more people. I want to meet the person who runs partners over that company. So you have, I've seen for the first time, a real hunger for social interaction at the events, more hunger for understanding who the other partners, not just what they sell. You know what? But what's on their mind? So interesting you bring that up, and that's a very new piece that we're seeing today. It used to be, this is my information, and I'm not sharing it with you. I'm going to build something, and you're going to have to guess what I'm doing, because that's my secret sauce. The companies were realizing that's not going to work. We need to collaborate, we need to share ideas. And the biggest companies are all banding together to share the best breed of technology and the best breed of way to how to deal with security, because they realize that we're all trying to protect also from the same bad actors out there. And they realize by collaborating, they're all stronger as a whole and stronger by themselves as well. So this collaboration is a big deal, and that's taking a trend forward. Hey, what's your take on this? Well, and it comes back to something we've talked about a lot today, and over the years in theCUBE was this whole API economy. For decades, we've been trying to solve the distributed systems problem. You know, we saw it in little pockets, obviously the internet, but it's in limited work loads. And Amazon has solved that problem. Massively scalable distributed systems, and then now it's okay, how do you secure it? So this shared responsibility model is very interesting, and I think misunderstood. The number one problem we're hearing here that customers are having is keeping up with Amazon, because Amazon's moving at such a fast pace. That's so rare in the technology industry where the vendors are always a little bit ahead of the customers, but not light years ahead. Amazon is just like pushing them out of the plane. And so I think the shared responsibility model is very important. I think it's misunderstood. I think people were expecting, oh, Amazon can take care of everything in the cloud, and that's not the case, so. Well, if you're going to use the pushing out of the airplane analogy, you've got to say, you've got to make sure the parachute opens. So when you pull the rip cord, this is what companies have to understand, that they got to be compatible with the way the architecture of cloud native works, and the right way to lift and shift. So there's a way to lift and shift, and there's a way not to lift and shift. You can lift and shift infrastructure, but you can't lift and shift entire workloads. Very true, but also making somebody responsible for their can of worms is important too, because that also leads back to culture of the organization. If security's part of culture, and they have responsibility, as within the cloud that Amazon is pushing, you handle within the cloud, that's your wheelhouse. You do that, that it's becoming something that becomes part of culture, and it's an everyday thing, which in turn I talk a lot about cyber hygiene with an organization. It's not just training, it's not just awareness, it's not just security and patching, and not just, you know, zero, there's also being aware of it and making it an everyday item that it has to be utilized. Amazon is right on the button with this. You know, I heard a phrase, it's the best thing I do in these CUBE interviews is that it means such smart people and learn a lot, but I love the quote I heard from the co-founder of Sumo Logic. He was awesome, and he said process is a reflection of culture. And so in the digital transformation equation, which we all know, it's the cliche, people process technology, people with talent gaps and skill gaps, get it, technology, plenty of tech, now the process. That's always the hardest nut to crack, and most people won't give it up, but they won't fight for it, it's the most important. But that's also the glue between the two. You're not going to have a secure environment if you're just dealing with security, and you're not going to have a secure environment just dealing with the people. The process in the middle, the process, yes, the Canadian land of it, that's the glue between it, that's what makes it run, and you have to get to that as you're saying, you have to get to the process, you got to make that run well, and then you mailed the two together, that's full security. The other big thing here, not this conference, but a theme that we've talked about for quite some time on the CUBE, is this notion of big tech. It's been said that Amazon, Facebook, Google, maybe even Microsoft, Elizabeth Warren saying, break up big tech. Amazon, people have said, split AWS out from core Amazon retail. What do you guys think about that? Is that the right thing to do? No, I don't think it's the right thing to do. I think right now, like I said, we had Jamir on earlier, they're not breaking any laws, so why would you want to take down what could be a competitive advantage for national security? AI is going to be, and machine learning and the role of data is going to be a power source for good and also for safety. So why would you want to take the best companies who are doing the best work and handicap them over what argument? Well, I think that Facebook wasn't responsible in dealing with making billions of dollars in free cash flow. So the argument, let's see, they broke democracy. Okay, too big, that's not a good argument. Maybe appropriating our data to sell more ads, you know, that should be looked at. Don't you think? Well, I just don't buy the tech for bad argument, because yes, some bad things have happened, but the regulators and the lawmakers, you can't legislate what you don't understand, you can't regulate what you don't understand. So as it's been coming out from the biggest minds in tech and government, the lawmakers aren't smart enough yet. They got to get, it's like they're in kindergarten, crayon outside the lines, trying to write, they don't even know what tech is. You know what you've been talking about, the Chernobyl push the buttons, I feel like that's what public policy is putting forth. Just push the buttons now and blow it up. Rather, public policy should catch up, understand it, and maybe set a framework and put in laws so that we have a clear understanding. Our current government is like that scene in Chernobyl. That is exactly what's happening, Dave. You know, you can apply that metaphor. Just do it! No, there's no proper regulation yet. You got to get everyone in the room and everybody has to agree at least on an initial framework, we've started, but we're nowhere near where we need to be. And you have to look at safety of our nation. And that's a big factor. You know, I've gone to Congress as a part of Cybersecurity Women, Testifying for Congress and talking about this, and they still don't have a handle on it. There's nobody who's running the show. Describe what it's like there. Well, I went down with the Executive Women's Forum, which was an amazing group. We went down there, we talked to different people in Congress. They're very open to it. And they realize that we really need to do something. The problem is, it's very disorganized. Sadly, it's way too disorganized. Nobody knows who's calling the shots. There's a nice bunch of different groups that are working towards it, but there's no one at the helm of it saying, all right, let's all fall into place and do it. Little pockets doing little things, but not everybody banding together. That needs to change, it has to change. I'm hoping it's coming down to where it's going to be something. I think there's going to be a revolution in a positive way where, again, back to my tech for a good thing. I don't think people yet know how to articulate what tech for good is. There's plenty more use cases where tech could be used for good than there are bad. Bad is always an early adopter before good. We've seen that in the web, the underbelly of multiple trends. But the reality is, I see the bad as bad, but I see so much more good going on that could be enabled. That's what I'm afraid of, that they litigate what's happening for bad and they screw the good. It's almost like technology, right? You have to be proactive as well as reactive. Everybody's running to be reactive to a problem, but no one is being proactive. Now, technology is understanding. We have to be proactive as well as reactive. Same like you're saying, John. It has to happen from the front. So, while you're here, I want to get you and Dave to weigh in because it's been near and dear to my heart for many years, over a decade. Humans and machines, this conversation has been discussed. Here again, Dave, some of the smartest people in the industry are reiterating. Brian from, again, SumoLogic, he's got great view on this and that's others as well. The role of the human really is important, not just having machines do all this automation. It's not about job replacements. It's more like the craft of creating outcomes that are going to be acceptable for defense or for good, the human's critical. Your guys' thoughts. Sure. So, we talk automation, right? People are afraid of that. They're saying robots and machines are going to replace us. Not true. Done right. It takes away menial tasks, which will be giving jobs and actually creating jobs in a more meaningful way. I look at, I talk a lot about the human factors of technology and cybersecurity. If you think about it, technology is developed to help, a human is developing technology to help a human. A human is using technology to hurt a human. What's the common factor? The human. We're dealing with people. They're not being replaced. There's always going to be humans there. So, machines are going to help us with automation. It's going to help us with digital transformation. We'll throw the buzzwords out there, but they're actually meaningful if you dial back and understand that. I think people are weary of it because they don't understand it. And if they're not understanding how it could actually help an organization and how it could be used right, then there's fear. So we couple back to education. Education, coupled with humans, machines, technology, we're going to have something very strong and really, really good. So, it's not something to be fearful of. It's something to educate yourself and be excited about and move along with technology as it advances. Well, machines have always replaced humans, you know, for various tasks. So that's sort of natural. For the first time in history, we're replacing cognitive tasks, and I think that scares a lot of people. And I think you're right on, Sher, the answer is not to protect the past from the future, it's education. Because innovation, we've talked about this, innovation comes from now a combination of things. It's not just Moore's law or new products are coming out at some rapid pace. It's the combination of data, artificial intelligence, the cloud for scale. This combinatorial innovation is going to require new creativity, new thinking, and education is at the heart of that. So I think the question is, what can public policy be to foster that? Are we teaching the right things? Is public policy and public and private partnerships fostering that type of innovation? And so, I think there's reasons to be concerned in terms of productivity, impacts on wages, et cetera, et cetera. But I'm an optimist. I think the future is very, very bright. Okay, so as we wrap down day one, great to have you on as a guest host. We're going to do a lot more coverage. So we're going to be collaborating and we're going to initiate coverage of the security sector with theCUBE. You're going to start seeing us doing a lot more events, extracting the signal from the noise, a lot more community involvement outreach, looking for participation and help from our friends, CUBE alumni's, the 8,000 plus CUBE alumni's that are out there, join us. Have you got some security chops? You notice people in security have something to add. We're always open. We're here at Reinforce. What's your guys' thoughts here? I think it's a great event. I think it's going to be one of those moments where we're like, we were present at creation again for another big wave, it's coming. Your thoughts about Reinforce? Well, I think Reinforce has found its niche. I think it's needed. I think cloud security is being embraced. I think there's a real need for it. And I think just highlighting those actions that they're taking is very much needed. And we're going to see a lot more out of Reinforce, for sure. Yeah, I agree. I mean, critical mass here. I guess 8,000 or so people that care about security and specifically care about cloud security, it's just going to get bigger and bigger, bigger. I mean, I was impressed by the, first of all, I agree, cloud security across the board. I was really impressed by the amount of heavy hitters that are here. And it's the heavy hitters that aren't the big exec brand names, the CEO, the stuff. You had the working CEOs of the startups, CEOs of the startups, the key biz dev people, the key marketing people because they're all, and the CEOs are here because they're investing. That's the pain point. They're investing together and they're building out in real time, it's really fast, a community around cloud security. So it's interesting. So Andy Jassy's not here, you don't see Theresa, but what you do see is the CSO saying, I'm betting my business on the cloud. I can't scale without the cloud. I have to be at this show. And you're seeing, maybe it's a little bit of Andy and Theresa, let go to grow and then sort of pyramid out that I saw Jassy at public sector summit. I should have asked him this, but I inferred from his response when I did ask him if he's coming is that in looking at how they're executing, they don't need the big guns here because the team's doing it. So it's one of those, when you have organic chemistry coming together, you don't want the big execs being, go do it, you've got to let it foster on its own. And that's why I'm impressed by the people here because they're the ones that are putting the sparks of creativity together, they're putting deals together, relationships are forming. That's how organic communities build. And I don't think the people here want to hear frankly from Andy, they can hear from Andy at reinvents. And so what they want to hear is the substance that they heard in the keynote today. Security, security. Well for inaugural event, this is amazing. The sheer size of it for a first time event is amazing. And having the heavy hitters, like you said, really invested in time, people don't have time. And to actually invest their time here and want to be here and want to learn and want to share, that speaks volumes. And that's not to say that Andy Jassy doesn't have substance, his keynotes are among the best. And they're always super, super, super substantive. But when it comes to security deep dives, you don't want to hear from him, you want to hear from somebody like Schmidt today. Well some public information that I found out, that's now public, is that there are 100,000 security subscriptions in AWS Marketplace. One million subscriptions paid for in AWS Marketplace as a whole, 100,000 plus security software buys there. Okay, that's huge. Huge for a little cottage industry going on called Cloud Security. Look at the rate the industry's growing. Look at Cisco, we were just at Cisco a couple weeks ago. Cisco was a huge company, $40 billion company. Their security practice is growing 21% a year, year over year. I mean that's huge for a company that's growing basically single digits. We'll have Josh on, sorry go ahead. Yeah, no, I said just looking at all these large companies that we're all talking to and that we're dealing with, certainly I'm consulting to, people are moving to the cloud and they're saying that one of the big reasons or the reason is for extra and more leveled security. So I think cloud is going to be taking the forefront and I think it's going to be much bigger than people really think. And customers are telling us they want more innovation from the security vendor community. And again, that comes from cloud and the data comes from cloud comes from machine intelligence. Put those things together. Shira, great to have you on. Dave, as always, profound insight, taking a red eye all day. You're a warrior, energizer bunny. Cube coverage here. AWS Reinforce, day one, day two tomorrow. Thanks for watching. Thank you.