164 episodes

The Cloud Pod is your one-stop-shop for all things Public, Hybrid, Multi-cloud, and private cloud. Cloud providers continue to accelerate with new features, capabilities, and changes to their APIs. Let Justin, Jonathan, Ryan and Peter help navigate you through this changing cloud landscape via our weekly podcast.

The Cloud Pod Justin Brodley, Jonathan Baker, Ryan Lucas and Peter Roosakos

    • Technology
    • 4.9 • 55 Ratings

The Cloud Pod is your one-stop-shop for all things Public, Hybrid, Multi-cloud, and private cloud. Cloud providers continue to accelerate with new features, capabilities, and changes to their APIs. Let Justin, Jonathan, Ryan and Peter help navigate you through this changing cloud landscape via our weekly podcast.

    The Cloud Pod Siemplify’s Our First Recording of 2022

    The Cloud Pod Siemplify’s Our First Recording of 2022

    On The Cloud Pod this week, Peter finally gets to share his top announcements of 2021. Plus, Google increases security with Siemplify, Azure updates Defender, and AWS comes into the new year with a lot of changes.

    A big thanks to this week’s sponsors:

    Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning, and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud, and Azure.

    This week’s highlights

    🚨 AWS confirms that applications can now be deployed on Amazon EKS using the IPv6 address space.
    🚨 Google looks to boost its security operations by acquiring SOAR provider Siemplify.
    🚨 Azure spent December updating Defender: was it worth it?

    Top Quotes  

    💡 “All the cloud providers are embracing containerization and the technologies that allow containerized workloads to work well on their platform. But the side effect is that they also run equally well on everybody else's platform.” 

    💡 “[As Vice President of Google Cloud Phil Venables wrote in a blog post,] ‘The race by deep-pocketed cloud providers to create and implement leading secure technologies is the tip of the spear of innovation.’ Which is interesting, because I think this is an area where Google's really crushed it, and I think Amazon has failed. Not failed, but not invested as much as they should have.”
    General News: Google Acquires Siemplify

    💰 Google acquired Siemplify, a security orchestration, automation and response (SOAR) provider. The hope appears to be that it will help security teams using GCP better manage their threat responses.

    AWS: Plenty of Non-Outage News

    🤨 IPv6 applications are now deployable through Amazon’s Elastic Kubernetes Service (EKS). This prevents IP exhaustion, minimizes latency, and simplifies routing configurations. On the downside, IPv6 can’t be added retroactively, and this EKS add-on only supports Linux — a dealbreaker for the team.
    👩‍💻 The AWS compute optimizer has been enhanced to allow users to specify both x86 and ARM as their preferred architecture for their EC2 instance type recommendations. This is a big blow to other tools that perform the same operations. 
    🎵 AWS announced the general availability of the EC2 Hpc6a Instance. It’s built for HPC workloads to leverage AMD EPYC 3rd-generation processors. This release expands AWS’ portfolio of HPC compute options. Plus, according to Justin, the instance name reminds him of the song “abcdefu” by GAYLE.
    💡 According to a recent job posting, AWS plans to completely re-imagine how its network is managed. It allegedly has two secret projects that could mitigate the risk of cloud outages — like the one that impacted the company in December of 2021.

    GCP: Phil Venables on the Keyboard

    ✍️ Phil Venables, the venerable Google VP and Chief Information Security Officer, wrote a blog post about megatrends he’s identified in the cloud security world. It’s worth a read if you’re wondering how someone at the top is thinking about the future.

    Azure: The Best Offensive is a Good Defender

    🛡️ Microsoft was busy in December with a series of Azure updates. Most importantly, it combined the K8 and container registries in the Azure Defender cloud offerings. The relevant components are automatically configured for K8-native scale onboarding. It also now supports multi-cloud, host-level threat detections.

    Oracle: Throwing Shapes

    🎂 Oracle Cloud Infrastructure (OCI) announced that starting at the end of February 2022, its Intel X7 shapes (Standard, HPC2, and GPU) will officially be considered an older generation. You’ll still be able to use them, but they will be a low priority for OCI, which means the quality of your experience may suffer.

    Peter’s Favorite Announcements of 2021
    👔 As he was absent from the final show of 2021, Peter gets to plug his favorite announ

    • 53 min
    Goodbye 2021, A log4j kinda year

    Goodbye 2021, A log4j kinda year

    EDITORIAL NOTE: Your Cloud Pod hosts are on vacation until early January!! Enjoy our 2021 wrapup and look ahead to 2022 and we'll be back in your Podcast feed mid January! 

    Justin, Jonathan, and Ryan are minus Peter in this episode as they review the year in cloud computing.

    A big thanks to this week’s sponsors:

    Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning, and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud, and Azure.

    This week’s highlights

    🚨 It’s the last podcast of 2021. The next one premieres in the third week of January.
    🚨 Log4j came back with a vengeance during the holiday season.  
    🚨 The team looks back at its 2021 predictions and forecast for 2022.

    Log4jackass

    📅 Using AWS security services to protect against, detect, and respond to the log4j vulnerability is still an issue. Suggestions to upgrade to version 2.16 for Apache log4j security issue for EKS, ECS, and Fargate customers wasn’t enough. Customers are asked to upgrade to 2.17. By the end of 2021, it will probably be 2.22 just to get into the spirit. 

    Did The Team’s 2021 Predictions Come True?
    👔 The hosts reviewed their 2021 predictions to see if they came true.

    Johnathan’s prediction about bracket computing and other quantum technology didn’t come true to break TLS. It’s still a long way off but there are now more classes in quantum programming to prepare for the cutover. Jonathan takes half a point on his merit.
    Peter believed The biggest blocker to cloud adoption would be costs, with individuals spending too much on poor cloud migrations. Justin believes he’s way off on this prediction. Though cost is a big consideration it’s definitely not the blocker. However, Jonathan believes more controls are needed to prevent overspending.
    Justin’s prediction on the verticalization of the cloud in fintech, health, retail, etc. came true. Ryan says it makes a lot of sense for industries to go this route instead of building everything out. 
    Ryan said work from home (WFH) would be a permanent trend, further breaking traditional security. Justin agreed on the first part but not the second on security issues. Though plenty of workers still log in through their companies’ VPNs, there is a big move to implement zero-trust security. 

    Favorite Announcements Of 2021
    📢 The hosts reviewed their favorite announcements of 2021.

    Justin is happy that Amazon released its Redshift Serverless program to compete with Snowflake
    Jonathan’s most favorite announcement was the introduction of OpenSearch. Especially how it went from notification to general release in a short period. Justin is impressed at the community working to improve OpenSearch. He hears more about this product now than elasticsearch.
    Ryan puts AWS announcing the cloud control API at the top of his list. It allows one API to work across multiple cloud platforms. Although limited now, Ryan is curious to see how it works in the future. 

    2022 Look Forward
    🔮 Here are what the hosts see taking place in cloud computing in 2022.

    Ryan: Google will build the first data center region under the sea.
    Jonathan: Amazon will release a new database service.
    Justin: Someone is going to solve the issues of designing apps that stretch from the cloud edge to the availability zone via new SDK/Programming tools.
    Peter: Fortune 500 companies will continue to avoid an all-in-one single cloud vendor strategy in 2022. 

    AWS News
    💽 The holidays didn’t stop news from the AWS environment. 

    🕵🏿‍♂️ AWS has released guidelines on simplifying the setup of Amazon Detective at the AWS organization level. New items include focused views, expanded details on each finding, links to the profiles for each involved entity, and integration with Splunk via the Splunk Trumpet project.
    🗂️ AWS is now integrating

    • 1 hr 17 min
    The Google CyberCAT is Out of the Bag

    The Google CyberCAT is Out of the Bag

    On The Cloud Pod this week, Oracle finally has some news to share. Plus Log4j is ruining everyone’s lives, AWS suffers a massive outage post re:Invent, and Google CAT releases its first threat report. 

    A big thanks to this week’s sponsors:

    Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure.


    JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. 

    This week’s highlights

    🚨 A critical vulnerability in Apache Log4j wrought havoc over the weekend. Cloud platforms and developers alike are racing to fix the bug, which gives hackers an opportunity to take control of systems remotely. 
    🚨 On the heels of re:Invent, AWS suffered a major outage last Tuesday in its US-EAST-1 region, which had staggering repercussions across the cloud. 
    🚨 Google Cybersecurity Action Team (CAT) releases its first Threat Horizons report, revealing its top three concerns threatening cloud users today.  

    Top Quotes  

    💡 “It’s amazing how much of our infrastructure and applications live on these open source contributions of one or two people, and how critical they are to the entire ecosystem. And when they break or they're vulnerable, it becomes a huge issue for us very quickly.”
    💡 “Think about what Microsoft did: They started signing device drivers and signing applications that run in Windows, and everyone thought Oh, they’re just exerting control, what a terrible idea. They're just trying to corner the market. And now, of course, 15 years later, binding authorization is probably the most critical next step in securing the cloud.”

    General News: The Log4j Vulnerability is COVID for Tech

    🔥 In light of the critical Apache Log4j 2.0 vulnerability that gives attackers the ability to to execute arbitrary code on other systems, AWS has released a hotpatch for the logging platform. The aim is to help developers mitigate risk as they work to update their systems to 2.15 or newer. 
    ⏩ VentureBeat reminds us that while the Log4j debacle is bad, at least organizations now have tools and processes in place to respond quickly to zero-day bugs. 
    ✅ GCP has released a set of recommendations for those who are investigating and responding to the Log4j 2.0 vulnerability. 
    🔎 To help customers detect whether their systems have been compromised by the Log4j bug, Google has updated its IDS signature to automatically scan for any Log4j exploit attempts. 
    🛡️ Google creates a new Web Application Firewall (WAF) rule to detect and block Log4j exploit attempts by attackers. 

    AWS: What Better Way to Follow Up re:Invent Than With a Giant Outage?

    💀 On the Tuesday after re:Invent, AWS experienced a major outage that left many of its users — from day traders to gamers to its own employees — without services for the better part of the day. 
    🤔 The latest AWS outage has some pondering whether entirely cloud-based operations are reliable, and considering the benefits of hybrid cloud environments instead. 
    📜 For those of you curious to know how many outages there have been, AWS Maniac has put together the complete history of AWS outages in this nifty timeline. 
    🇮🇩 Now for a region that (hopefully) isn’t going down: AWS opens a new Asia Pacific Region in Indonesia. The new Jakarta Region is its 10th in the Asia Pacific, and can be used with a large number of AWS services.
    🛑 AWS releases Managed Rules for its Network Firewall, allowing users to enable managed domain list rules to block HTTP and HTTPS traffic to suspicious domains — all at no additional cost!

    GCP: Google CAT Identifies What You Should Really be Worried About

    🕵️‍♀️ Just in time for the Log4j mishap, Google Cl

    • 57 min
    The Cloud Pod Evidently Wants to Talk about re:Invent

    The Cloud Pod Evidently Wants to Talk about re:Invent

    On The Cloud Pod this week, the team finds out whose re:Invent 2021 crystal ball was most accurate. Also Graviton3 is announced, and Adam Selipsky gives his first re:Invent keynote. 

    A big thanks to this week’s sponsors:

    Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure.


    JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. 

    This week’s highlights

    🚨 Amazon’s re:Invent 2021 featured a ton of new updates, including AWS CloudWatch Evidently, AWS Private 5G, and a new AWS Sustainability Pillar. 
    🚨 Justin’s prediction pick — Graviton 3 — was announced on Day Two of re:Invent, along with serverless options for data analytics, and a free machine learning (ML) database for existing AWS customers. 
    🚨 Amazon CEO Adam Selipsky missed the mark at his re:Invent debut, announcing fewer new releases than expected to a low-energy crowd.

    Top Quotes  

    💡 “This is Adam’s [Selipsky] first keynote as CEO of AWS… I do feel it was a missed opportunity. Number one, he didn't drive out a ton of announcements, which everyone expected. There was a miss across the entire audience — people were expecting something they didn't get. And then number two, OK, maybe you're not the best public speaker: maybe you should go with a different model.”

    💡 “In the keynote, the message was really clear: They're trying to democratize access to machine learning, they're trying to give this access to more than just the elite data scientists and programmers. And that made me think that if you expand that out to no-code in general, that’s a really powerful thing”
    AWS: re:Invent 2021 feat. a Mechanical Cat

    Amazon highlights its top announcements of AWS re:Invent 2021 and gives details of new releases and updates across the platform. 

    Pre:Invent: Because Every Good re:Invent needs a Warmup

    👩‍🏫 In support of its mission to educate 29 million people by 2025, AWS expands access to its free cloud skills training to empower learners to pursue careers in technology. 
    ⚠️ AWS Elastic Disaster Recovery is now generally available to provide fast, reliable recovery of on-premises and cloud-based applications for its enterprise customers. This scalable solution enables customers to use AWS as an elastic recovery site rather than relying on an on-premise disaster recovery infrastructure.
    🐦 AWS Control Tower users can now created nested organizational units within the platform. Huzzah!
    📊 AWS Audit Manager users can now simplify their audit preparations with the new dashboard feature that enables them to instantly track the progress of audit assessments relative to common control domains.
    ⛔ AWS Identity and Access Management users can now (finally) efficiently troubleshoot access denied errors in AWS with a new policy type responsible for deny permissions, and access denied error messages. 
    🎱 Amazon Cognito has a new console experience for user pools which makes it easier for users to add sign-in and sign-up functionality to their applications.
    🌊 AWS Glue DataBrew now has native console integration with Amazon AppFlow, allowing users to connect to data from Salesforce, Slack  and other SaaS applications, as well as AWS services like Amazon S3 and Amazon Redshift.
    🆔 AWS Glue DataBrew helps users protect personally identifying information (PII) in just a few clicks with detection and data masking.
    ❄️ In other Glue DataBrew news, customers can create datasets by writing custom SQL statements to retrieve data from Amazon Redshift and Snowflake.
    ✅ With GlueDatabase, users can create their own data quality rules to check for duplicate values in certain columns, validate one column does not

    • 1 hr 35 min
    Oh the Places You’ll Go at re:Invent 2021

    Oh the Places You’ll Go at re:Invent 2021

    The Cloud Pod: Oh the Places You’ll Go at re:Invent 2021 — Episode 144

    On The Cloud Pod this week, as a birthday present to Ryan, the team didn't discuss his advanced age, and focused instead on their AWS re:Invent predictions. Also, the Google Cybersecurity Action Team launches a product, and Microsoft announces a new VM series in Azure.

    A big thanks to this week’s sponsors:

    Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure.


    JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. 

    This week’s highlights

    🚨 AWS releases new G5 instances, which feature up to eight NVIDIA A10G Tensor Core GPUs. That’s super, super fast. 
    🚨 Google’s Cybersecurity Action Team adds Risk and Compliance as Code (rCaC) Solution.
    🚨 Microsoft announces the NDm A100 v4 Series, and claims another spot on the  TOP500 supercomputers list.

    Top Quotes  

    💡  “[AWS Resilience Hub] is already building on top of the FIS, which is interesting, but at some level I just want you to execute Lambda functions that validate things for me, and then tell me that I'm resilient because I validated it with Lambda.”
    💡 “Anything that empowers more dynamic and interactive web development I'm all for.”

    Amazon Web Services: Give Us Your Car  

    🚘 AWS is releasing new G5 instances, which feature up to eight NVIDIA A10G Tensor Core GPUs. For the cost of a small car every month, you too can get up to 40% better value on inferencing and graphics-intensive operations.
    💪 AWS is releasing the Resilience Hub, a service designed to help you define, track and manage the resilience of your applications.
    🐧 Unified Search in the AWS Management Console now sources results from blogs, knowledge articles, events and tutorials. Buyer beware with this one: It will pull outdated information that is still available on AWS, and you could end up with a giant albatross that costs you a fortune.
    🐌 Amazon ECS is improving ECS Capacity Providers to deliver faster cluster auto scaling. When you're using a capacity provider, it's painfully slow to get the underlying hosting infrastructure to scale fast enough, so we’re presuming AWS has addressed this in the back end.
    😁 Manage access centrally for JumpCloud users with AWS Single Sign-On. We’re super happy to see this: Take notes, Azure AD.
    👏 Amazon ECS adds container instance health information. This is nice to see and will help improve your application resiliency.

    AWS re:Invent 2021 Predictions    

    Prediction rule: If it’s already been officially announced by Amazon, then it doesn’t count. It needs to be in the rumor mill and somewhat specific.
    Each contestant will also predict how many total announcements are made, which will be used in the case of a tiebreaker.
    Jonathan


    New silicon from Annapurna Labs, for a new Inferentia chip
    AWS will partner with data centers in different countries, especially in Europe
    More customer insights into their carbon footprints


    Tiebreaker: 21
    Ryan


    A dashboard or visualization to help you manage organization-level networking
    Data tokenization, anonymization and/or data scrubbing as a service or DLP solution
    App configuration on demand


    Tiebreaker: 10
    Justin


    Graviton 3, or whatever AWS names its new version of a general purpose ARM-based processor
    Zero Trust networking solution
    New Honeycomb features, and a lecture on the benefits of no-code


    Tiebreaker: 20
    Peter


    Babelfish for Oracle
    Serverless Neptune
    Serverless DocumentDB with MongoDB compatibility


    Tiebreaker: 4

    Google Cloud Platform: A Bit of a Stretch

    🤨 Memorystore for Redis Read Replicas is now in public preview, supposedly

    • 1 hr 1 min
    It’s Chaos in the Cloud Pod Studio

    It’s Chaos in the Cloud Pod Studio

    On The Cloud Pod this week, the pod squad is down to the OG three while Ryan is away. Also AWS announces serverless pipelines, GCP releases Spot Pods, and Azure introduces Chaos Studio. 

    A big thanks to this week’s sponsors:

    Foghorn Consulting, which provides full-stack cloud solutions with a focus on strategy, planning and execution for enterprises seeking to take advantage of the transformative capabilities of AWS, Google Cloud and Azure.


    JumpCloud, which offers a complete platform for identity, access, and device management — no matter where your users and devices are located. 

    This week’s highlights

    🚨 AWS releases Serverless Application Model (SAM) pipelines to save development teams time. These pipelines streamline CI/CD configurations for AWS applications. 
    🚨 In the spirit of savings, new GCP Spot Pods help GKE Autopilot users run fault-tolerant workloads while spending less money. Hooray!
    🚨 Azure Chaos Studio helps development teams wreak controlled havoc with a managed experimentation service, allowing them to safely build, break and optimize their apps with reckless abandon. 

    Top Quotes  

    💡 “I think for some people when they're looking at, OK, we're gonna make this commitment to a different architecture, at that point in time, they've looked at serverless versus containerized apps, and most companies went the containerized apps route, but that might change in the next wave.” 
    💡 “Python 3.10 looks really interesting. It's got a bunch of new features … around data handling specifically, which is really what people have been using Python for for years: bioinformatics and data science. But it has really neat features around matching different schemas of data and things like that.”

    AWS: Finally, a Pipeline We Can Get Behind

    ⏲️ AWS releases Serverless Application Model (SAM) pipelines, a new feature of the AWS SAM CLI, to help users simplify CI/CD configurations for AWS serverless applications. The new feature will help development teams minimize the amount of time spent creating pipelines, while also ensuring safe deployments. 
    🍗 With AWS Fault Injection Simulator, users can now create and run FIS experiments that check the state of Amazon CloudWatch alarms and run SSM automations. We hope the only fault injections you have are in your EC2 instances, not in your Thanksgiving turkey. 
    🪄 AWS customers running Windows containers rejoice: New Amazon ECS Exec allows you to execute commands or get information directly from your Windows container shell. Magic!
    🇨🇦 Amazon is doubling down on Canada. AWS announced plans to open a second Canadian region, in Calgary, bringing the company’s total region count to nine. The Calgary region is set to open in late 2023 or early 2024, and AWS has committed to using renewable energy to help build it out. 

    GCP: Hitting the Spot with New GKE Autopilot Spot Pods

    🖼️ Google is making it easier to improve application scale-up times with its “revolutionary” (read: evolutionary) new feature: GKE Image Streaming. Users can enjoy drastically reduced container pull-times, and simultaneously boot up applications while GKE streams container data.
    🤘 The one notable announcement to come out of the Google Cloud Public Sector Summit this week was GCP’s release of RAD Lab: a cloud-based sandbox environment to help technology teams spin up projects quickly and compliantly. We can’t wait till this hits the private sector.
    🤑 If you’re running GKE Autopilot and are looking for savings, we have the answer: GKE Spot Pods. Save on fault-tolerant workloads and dev/test clusters by using Spot Pods to run them on GKE Autopilot. 

    Azure: Brace Yourselves, Azure Chaos Studio is Coming

    🐚 Azure Automation now supports PowerShell 7.1 in preview. With PowerShell 7.1, users can develop and execute runbooks for infrastructure and operational automation scenarios as cloud and

    • 46 min

Customer Reviews

4.9 out of 5
55 Ratings

55 Ratings

tgohl ,

Informative and entertaining

The Cloud Pod is my go-to podcast for staying up to date with Cloud news. The hosts are knowledgeable and the delivery is excellent. Thanks for the great content!

Robmartin3 ,

Five stars for the content

Anyone working in cloud projects or trying to keep up with the cloud space, particularly anyone using multiple clouds, should give The Cloud Pod a listen each week. They review all the news from the week from all three vendors and the industry. They give a diverse set of opinions and points of view on the announcements and put them in context. They have a lot of experience clearly and bring that to the discussion as well. Love this as my go to podcast on cloud

CloudyAdvice ,

Great way to keep up to date on the Cloud…with some laughs along the way!

Staying current on all the new releases in the cloud world is like drinking from a firehose, but the Cloud Pod helps make that a little bit easier with summary and analysis on the most significant releases each week.

Top it off with some laughs along the way and you’ve got a great and valuable podcast.

Top Podcasts In Technology

Lex Fridman
Jason Calacanis
Tristan Harris and Aza Raskin, The Center for Humane Technology
NPR
Jack Rhysider
Jason Calacanis

You Might Also Like

Cloudcast Media
Changelog Media
Ride Home Media
Changelog Media
Allen Underwood, Michael Outlaw, Joe Zack
Jack Rhysider