Cloud security makes Josh Stella tick. In 2013, he founded Fugue, a company that brings native security and simplified operations to cloud architecture. Join Corey and Josh as they discuss why Fugue is called Fugue, how the approach hackers take has changed in recent years, why cloud security is actually more of a physics and biology problem than a technology problem, the recent Capital One data breach, how it likely happened, why the bank didn’t necessarily do anything wrong, why cloud security should be automated, and more.
For the last five years, Matt Broberg has worn many different developer advocate hats. These days, his developer hat looks a bit … red ... as he’s an advocate, writer, and editor for opensource.com at Red Hat. Join Corey and Matt as they discuss IBM’s recent acquisition of Red Hat, open source culture and how to contribute without submitting code, the rise of developer relations and whether the term “DevRel” will stick, what developer relations actually is, what its future looks like, and more.
Nicole Forsgren grew up in a small farm town in Idaho. After working as a programmer, a software engineer, and a systems administrator at IBM, she went back to school to get her PhD in Management Information Systems. Now, she leads research and strategy at Google and oversees the production of the annual State of DevOps Report. Join Corey and Nicole as they discuss what it’s like to put together said reports, why people are so passionate about their DevOps team’s unique approach, the four metrics you can use to grade DevOps teams, how to scale DevOps teams, and more.
Be honest: How many people decide to launch a weekly podcast actually end up publishing hundreds upon hundreds of episodes? Richard Campbell, founder and chairman of the Humanitarian Toolbox and host of RunAsRadio podcast, is someone who actually did. Join Corey and Richard as they talk about what it’s like to host 1,650-plus podcast episodes, building open source tools for disaster relief, moving away from legacy tech, the power of admitting you don’t understand something, how snarkiness often gets lost in translation, the thanklessness of good IT, and more.
Supercomputers used to be gigantic monstrosities that would take up enormous rooms. Now, you can run them in the cloud. Just ask Mike Warren, CTO and co-founder of Descartes Labs, a company that provides Earth imagery to help folks understand planetary changes—like deforestation, water cycles, agriculture, and more. Join Corey and Mike as they discuss what it’s like to build supercomputers on top of AWS and how “easy” it is, the power of Amazon’s Spot blocks, building Beowulf clusters in the ‘90s, what Descartes Labs’ platform-agnostic infrastructure looks like (spoiler alert: nothing is on-prem), how AWS accelerates the development process, petaflop machines, the evolution of high-performance computing over the last few decades, and more.
Another week, another high-profile data breach. Well, that’s what it seems like anyway. As Director of Cyber Risk Research at UpGuard, Chris Vickery knows a thing or two about why these breaches are occurring—and what organizations can do to minimize the likelihood they do. Join Corey and Chris as they talk about why so many companies leave S3 buckets publicly exposed, raising the bar of low-hanging fruit for data security, why organizations can’t blame third parties for breaches, why AWS isn’t liable for everything that goes wrong in the cloud, the recent Capital One breach, and more.
Microsoft has undergone a major transformation over the last several years. Just ask Tara Walker, principal software engineer, who recently rejoined the company after a four-year hiatus at AWS. Join Corey and Tara as they talk about this transformation, why the world of IoT gets more exciting every day, what Microsoft is focused on today, why Tara is now pursuing a master’s degree at Georgia Tech, and much more.
For two decades, Custom Ink has helped folks around the world create unique T-shirts, jackets, activewear, promotional products, and more. Today, the company has hundreds of applications and services in the cloud. But their infrastructure didn’t always look like that. Join Corey as he talks with Ken Collins, a staff engineer at Custom Ink, about the value of AWS certification, moving the Custom Ink’s monolithic Rails apps to AWS Lambda and EC2, why they still love Ruby, what technologies they’re eying for the future, and how and why they’re transforming into a cloud-native shop.
Azure Sphere is Microsoft’s push into Internet of Things security, promising lifetime security updates and more. In this episode, Dr. Galen Hunt explains why Azure Sphere is so important to device manufacturers, and gives some examples of real-world uses.
Before she held her current role as senior cloud advocate at Microsoft, Christina Warren was a self-proclaimed “content engineer.” These days, who follows a traditional career path anyway? Tune in to hear Corey and Christina discuss how to give killer conference talks, what it means to be a developer advocate, what the next generation of cloud developers looks like, why grizzled IT veterans shouldn’t be wary of moving to the cloud, and more
HashiCorp has embraced the multi-cloud, and in this episode, Corey asks Founder and CTO Mitchell Hashimoto to explain how that’s working out. From Terraform’s humble beginnings to the answer to “why HCL?” Hashimoto explains what makes HashiCorp tick, and why it continues to do so.
VMware is shifting its business as more companies move code to the cloud. What does that mean for the company internally? In this episode, Corey gets an inside view of this shift and discusses some recent acquisitions the company has made to change its business model.
Another chat with another Corey but this time Corey Sanders has a shiny new title: Corporate VP of Microsoft Solutions. In this episode the two Coreys discuss the Microsoft mission statement, more real-world Azure examples, and why “vendor lock in” is both simpler yet more complicated today than ever.
Serverless deployment is picking up steam in the industry, and Austen Collins has been leading the charge since 2015. In this episode, Collins talks about his work with AWS, building the Serverless Framework, and why it’s solving so many problems.
Emily Freeman’s book on DevOps is an approachable read for all types, not just techies. As DevOps for Dummies is set to hit the shelves, she sat down to talk to Corey about the process of writing a book, what she learned during that process, and how teams of all types can learn from her insights on management.
Anna Spysz offers a different perspective, coming from communications first and engineering second. In this episode, she describes the hybrid model employed at Stackery for developing cloud applications that can save time and frustration, plus she’s got a few tips for liberal arts majors looking to get into tech.
Scott Guthrie shares his experiences at Microsoft as the company has shifted its strategy and corporate culture. He answers questions about Azure, working with partners, and why Microsoft’s customer-first focus has led to multiple learnings across the organization. There are few people with such a perspective in the industry, and Guthrie provides key insights for those looking at cloud solutions, or anyone considering migrating from on-premises to cloud architecture.
There are a lot of choices for managing and encrypting secrets in Kubernetes. Kamus is one of those solutions, and it was developed as an open-source project by Omer Levi Hevroni. Today we’re talking with Omer, a DevSecOps engineer with Soluto at Asurion, about his work on Kamus, its origins, and how it’s being applied for secrets management in Kubernetes.
Amazon’s AWS offers a tantalizing range of services at incredible prices. While not a panacea to all your cloud computing needs, it’s definitely risen fast to become a critical piece of the pie for many companies looking to scale up quickly. Valentino Volonghi is CTO of AdRoll, who uses AWS extensively. In this episode, Volonghi relates his years of experience with AWS, and all its growing pains. Today? There’s a lot of magic in S3 as well, and Volonghi explains how AdRoll leverages this magic.
In the same way that the cloud can be incredibly helpful, it can also be the source of a few headaches. Just like the printing press, technology can help eliminate the arduous parts of our jobs and help create new specialties. But it doesn’t mean that we have the golden ticket. Today we are talking to Cloud Data Engineer, Richard Boyd, of iRobot about the perils of getting services to talk to each other and keeping your career flexible in the ever-evolving tech world.
Today, data service is becoming more like a utility and that affects the expectations and practical uses of the cloud in almost every form. Today we are talking to Richard Hartmann about the logistics of serverless infrastructure from how data centers are built to how the cloud is kind of just more of the same in the technology world.
While cloud architecture has many forms from container to serverless, the value of open source infrastructure never changes. Today we talk to Jess Frazelle of Twitter fame about role of GitHub in the cloud and how open source is beneficial to the community. Even though the way the cloud if built might change, open source will always be important to the growth of developers as well as the industry.
While a valuable investment, the value of AWS training is still not always well understood. With a library of free digital training and a variety of certifications validating baseline as well as more specific expertise, there are many reasons to look at investing the Amazon’s training program. Today, we are talking to Maureen Lonergan who works hard to bring value to the training programs for AWS and doesn’t take your time and investment in their cloud services for granted.
Episode 54: Rethinking the Robot: How AWS Robotics is helping shape the future of domestic and commercial robotics
What if every time you washed your dishes, your dishwasher got smarter? Now imagine your dishwasher getting smarter every time someone else washed their dishes. Today, we are talking to Roger Barga, the General Manager of AWS Robotics. We discuss the recent advances in robotic programming as well as the benefits of the cloud in commercial and domestic applications.
Today we are talking with Silvia Botros, Principal Engineer at SendGrid. They specialize in email marketing that is trusted by developers and marketers for time-savings, scalability, and delivery expertise. Our discussion centers around SendGrid’s migration to AWS and the unique career paths that the company has been evolving over the past several years.
The job market in the AWS world is complex and often confusing to both employers and employees. Wouldn’t it be great to have over 43,000 data points to draw a larger picture of the market and where you fall in line? Today, we are talking to Kate Powers who walks us through the AWS Salary Survey from Jefferson Frank and discusses some interesting insights as well as real world examples of the findings. Some of the highlights of the show include: The AWS job market at large Training Certificates: what’s their value How much value is in a job title Most desirable skills from employers Gender representation in the industry The discrepancy in compensation based on geography Links: https://www.jeffersonfrank.com https://www.jeffersonfrank.com/aws-salary-survey/ https://twitter.com/_JeffersonFrank https://www.linkedin.com/company/jefferson-frank/ https://www.facebook.com/JeffersonFrank.AWS
Years ago, if you wanted to launch an Internet company or Web application, you had to own necessary hardware. Now, the economics have changed drastically with the ease of Cloud computing. It’s still a new industry that people are trying to figure out, especially when it comes to cost and optimization. Today, we’re talking to Dann Berg, a Cloud ops analyst at Datadog. He helps others understand and lower the cost of Cloud operations. Dann is a detective who is dedicated to figuring out why a company’s Cloud bill is so high. Some of the highlights of the show include: Companies struggle with field of Cloud economics; can be overwhelming because there’s so much to learn about products and implementation Companies use the Cloud to grow quickly, which makes their Cloud costs grow quickly and more than expected Only access to full list of every resource being used is the Cloud bill; there’s no comprehensive inventory service available Companies need to offer visibility to Cloud bill; not everyone has access to understand how their actions impact the bill Cost of Cloud bill is dependant on different factors, including new features, new users, and cost of goods sold (COGS) Scale and manage bill by using a platform app or hiring a consultant/team Understand pricing of AWS and learn best practices for cost controls early on Don’t leave money on the table by focusing on engineering time - not best use of resources; focus on the smallest things that have the biggest impact Cost is important, but don’t slow down those developing in the Cloud; open lines of communication to create culture to understand cost, value what’s measured Links: Dann Berg on Twitter Datadog re:Invent AWS Cost Explorer CloudHealth CloudCheckr Cloudability Lambda EC2 GCP Azure CHAOSSEARCH
If you use MongoDB, then you may be feeling ecstatic right now. Why? Amazon Web Services (AWS) just released DocumentDB with MongoDB compatibility. Users who switch from MongoDB to DocumentDB can expect improved speed, scalability, and availability. Today, we’re talking to Shawn Bice, vice president of non-relational databases at AWS, and Rahul Pathak, general manager of big data, data lakes, and blockchain at AWS . They share AWS’ overall database strategy and how to choose the best tool for what you want to build. Some of the highlights of the show include: Database Categories: Relational, key value, document, graph, in memory, ledger, and time series AWS database strategy is to have the most popular and best APIs to sustain functionality, performance, and scale Many database tools are available; pick based on use case and access pattern Product recommendations feature highly connected data - who do you know who bought what and when? Analytics Architecture: Use S3 as data lake, put in data via open-data format, and run multiple analyses using preferred tool at the same time on the same data AWS offers Quantum Ledger Database (QLDB) and Managed Blockchain to address use case and need for blockchain Authenticity of data is a concern with traditional databases; consider a database tool or service that does not allow data to be changed Lake Formation lets customers set up, build, and secure data lakes in less time DocumentDB: Made as simple as possible to improve customer experience AWS Culture: Awareness and recognition that it takes many to conceive, build, launch, and grow a product - acknowledge every participant, including customers Links: Amazon DocumentDB MongoDB Amazon RDS React Aurora re:Invent DynamoDB Amazon Neptune Amazon Elasti-Cache Amazon Quantum Ledger Database Amazon Timestream Amazon S3 Amazon EMR Amazon Athena Amazon Redshift Amazon Managed Blockchain Amazon EC2 Amazon Lake Formation Perl CHAOSSEARCH
Does operating system (OS) choice even matter anymore to most people? Especially with the emergence of serverless and containers? Debian may not see its name up in lights much these days, but it’s still very much front, center, and relevant to what people are doing in Cloud environments. Today, we’re talking to Elana Hashman, a Python packager and Debian developer. Everything inside a base operating system may not be interesting to end users, but such a collection of components is necessary to create a functioning Linux system. Some of the highlights of the show include: Alternative Linux operating systems, including Amazon Linux 2 Level of awareness about free software when choosing and distributing an OS What is a Python packager? How do you become one? Python is the new default language due to growth and adoption of its ecosystem Packaging community off-putting to beginners; find someone who understands the system to guide you Links: Elana Hashman Elana Hashman on Twitter Elana Hashman on Mastodon A tale of three Debian build tools Python Python Packaging Authority PyCon Debian The Debian Women Project Docker Red Hat Fortran Amazon Linux 2 Go Perl SaltStack OpenHatch SCALE Jordan Sissel on Twitter DigitalOcean
Companies can find working in the Cloud quite complicated. However, it’s a lot easier than it used to be, especially when trying to comply with regulations. That’s because Cloud providers have evolved and now offer more out-of-the-box services that focus on regulation requirements and compliance. Today, we’re talking to Elliot Murphy. He’s the founder of Kindly Ops, which provides consulting advice to companies dealing with regulated workloads in the Cloud. Some of the highlights of the show include: Technical controls are easier, but requirements are stricter Risk Analysis: Putting locks on things to thinking about risks to customers Building governance and controls; making data available and removable Secondary Losses: Scrub services to make scope and magnitude of loss smaller Computing became ubiquitous and affordable; people started collecting data to utilize later - nobody gets rid of anything General Data Protection Regulation (GDPR) set of regulations apply to marketing technology stacks to manage systems Empathy building exercise and security culture diagnostic help companies understand compliance obligations Security Culture: Beliefs and assumptions that drive decisions and actions Evolution of understanding with public Cloud’s security and availability Raise the bar and shift mindset from pure prevention to early detection/ mitigation; follow FAIR (factor analysis of information risk) Links: Kindly Ops Amazon Web Services (AWS) Microsoft Azure Relational Database Service (RDS) Google Cloud Platform (GCP) Nist Cybersecurity Framework GDPR Day People-Centric Security by Lance Hayden Stripe Society of Information Risk Analysts (SIRA) DigitalOcean
More and more enterprises and on-prem applications are moving to the Cloud. Therefore, flexibility, agility, time-to-market, and cost effectiveness need to be created to address a lack of visibility and control. Today, we’re talking to Archana Kesavan, senior product marketing manager at ThousandEyes. The company offers a network intelligence platform that provides visibility to Internet-centric, SaaS, or Cloud-based enterprise environments. Our discussion focuses on ThousandEyes’ 2018 Public Cloud Performance Benchmark Report. Some of the highlights of the show include: Purpose of Report: Reveals network performance and architecture connectivity for Amazon Web Services (AWS), Google Cloud (GCP), and Microsoft Azure Report gathered more than 160 million data points by leveraging ThousandEyes’ global fleet of agents that simulate users’ application traffic Data collected during four-week period was ran through ThousandEyes’ global inference engine to identify trends and detect anomalies Internet X factor when calibrating network performance of public Cloud providers; best-effort medium that has no predictability and is vulnerable to attacks AWS’ performance predictability was lower than GCP Cloud and Azure leveraged their own backbones to move user traffic Certain regions, such as Asia, were handled better by GCP and Azure than AWS Customers should understand value of long-distance Internet latency when selecting a Cloud provider Determine what the report’s data means for your business; conduct customized measurements for your environment Links: ThousandEyes ThousandEyes on Twitter ThousandEyes’ Blog 2018 Public Cloud Performance Benchmark Report Amazon Web Services (AWS) Google Cloud Microsoft Azure AWS Global Accelerator for Availability and Performance re:Invent DigitalOcean
If you’re looking for older services at AWS, there really aren’t any. For example, Simple Storage Service (S3) has been with us since the beginning. It was the first publicly launched service that was quickly followed by Simple Queue Service (SQS). Still today, when it comes to these services, simplicity is key! Today, we’re talking to Mai-Lan Tomsen Bukovec, vice president of S3 at AWS. Many people use S3 the same way that they have for years, such as for backups in the Cloud. However, others have taken S3 and ran with it to find a myriad of different use cases. Some of the highlights of the show include: Data: Where do I put it? What do I do with it? S3 Select and Cross-Region Replication (CRR) make it easier and cheaper to use and manage data Customer feedback drives AWS S3 price options and tiers Using Glacier and S3 together for archive data storage; decisions and constraints that affect people’s use and storage of data Feature requests should meet customers where they are, rather than having to invest in time and training Different design patterns and best practices to use when building applications Batch operations make it easier for customers to manage objects stored in S3 AWS considers compliance and retention when building features Mentorship: Don’t be afraid of the bold ask Links: re:Invent AWS S3 Amazon SQS AWS Glacier Lambda CHAOSSEARCH
Do you have to deal with data protection? Do you usually mess it up? Some people think data protection architecture is broken and requires too many dependencies. By the time a business needs to backup a lot of data, it’s a complex problem to go back in time to retrofit a backup solution for an existing infrastructure. Fortunately, Rubrik found a way to streamline data protection components. Today, we’re talking to Chris Wahl and Ken Hui of Rubrik. Some of the highlights of the show include: Transform backup and recovery to send data to a public Cloud and convert it to native format Add value and expand what can be done with data - rather than let it sit idle Easy way for customers to start putting data into the Cloud is to replace their tape environment; people hate tape infrastructure more than their backups Necessity to backup virtual machines (VMs) probably won’t go away because of challenges; Clouds and computers break Customers leaving the data center and exploring the Cloud to improve operations, utilize automation Business requirements for data to have a level of durability and availability People vs. Technology: Which is the bottleneck when it comes to backups? Words of Wisdom: Establish an end goal and workflow/pathway to get there Links: Rubrik Chris Wahl on Twitter Chris Wahl on LinkedIn Ken Hui on Twitter Ken Hui on Medium Amazon S3 IBM AS/400 Amazon EC2 Instances Azure Virtual Machine Instances re:Invent DigitalOcean
Do you have some spare time? Can you figure out an easier way to do something? Then, why not build some software?! Today, we’re talking to Ian Mckay of Kablamo, an Amazon Web Services (AWS) consultancy. He is the author of Console Recorder, which is a browser extension that records your actions in the Management Console to convert them into SDK code and infrastructure as code templates. Some of the highlights of the show include: Timeline to build Console Recorder Infrastructure as Code: How to code repeatedly without starting over and take ownership of what you built by hand AWS vs. Individual Achievements: People asked AWS for years to create something to record console click-throughs that Ian did in his spare time Console Recorder support for any browser that exports Web extensions Sharp edges of what’s expected of Console Recorder to speed up development Management Console’s unreadable responses require reverse engineering Console Recorder: Recommended use cases and areas How to alleviate security concerns with Console Recorder Changes to Management Console that may break things Ian’s past, present, and future projects and products Words of Wisdom: If you don’t like something, just fix it yourself Links: Ian Mckay on Twitter AWS Console Recorder Kablamo AWS CloudFormation Terraform MediaLive Jeff Barr re:Invent CDK Google Cloud Platform AWS Management Console AWS RDS AWS Lambda DigitalOcean
A Manager README is a document designed to establish clarity between a manager and those who report to them. These documents are especially useful for onboarding content. For example, if you have someone new starting on your team, there's so many things you need to share with them - pieces of advice and guidance that help them to make the best decision about what to do in specific situations. A Manager README sets some expectations in advance to make things easier and reduce friction and anxiety for team members. Today, we’re talking to Matt Newkirk, who manages Etsy’s localization and translation group. He explains that even if your company has an intensive onboarding program and review process, some things are still left out. A Manager README is a helpful and proactive piece of content that prompts conversations about how people perceive things. Some of the highlights of the show include: Avoid writing READMEs that are extremely self-centered/arrogant READMEs clarify what to do until a relationship is established between the manager and their employee Get feedback early on to make sure that what you include in the document is helpful; it should reflect reality and be discussed Share README with your manager to make sure you’re both on the same page about team philosophies and expectations README is a living document that needs to be updated occasionally because things change README adds context; it’s not designed to make employee feel like they’re back in school and panicking because they’re not prepared Manager README - Not Matt’s best selection of terminology Who’s the best boss you ever had? Why? They can be a force that shapes your life and career from the right perspective Philosophy of Management: Don’t do what terrible managers have done; be transparent about strategic reasons for priorities changing Links: Matt Newkirk Matt Newkirk on LinkedIn Matt Newkirk on Twitter Share your Manager README Etsy Etsy’s Job Openings Shane Garoutte on LinkedIn Kubernetes Everbridge Digital Ocean
Join our newsletter
2019 Duckbill Group, LLC