Clarke Rodgers:
You've mentioned your SSAs are deeply embedded with your customers solving security problems, building out architectures for them, etc. I know another aspect of their job is to sort of get customer feedback back into the service teams. Can you sort of walk me through how that works?
Matt Saner:
We really try to think about trends and we are industry-aligned. So I have security essays on my team that are not just great at identity or great at building out SOCs or threat modeling or whatever it might be that a customer needs to talk about. They're also really great at understanding those industries and the particular needs and threats of those industries as well.
Someone on my team has been working with gaming customers recently, have very unique edge security needs around CDNs and the like. And there's some feature requests that are in the pipeline. But what we have said is these customers really are looking from their own roadmap perspectives to be able to achieve these outcomes using features that might not right now be aligned with where our roadmaps are.
Clarke Rodgers:
Interesting.
Matt Saner:
And so what we try to say is, what is the risk to our customer for that? Not what's the risk to AWS, what's the risk to our customer?
Clarke Rodgers:
Sure.
Matt Saner:
And we built these trust relationships with our customer because, at the end of the day, that's what matters the most. But we built the same level of trust relationships with our service team, PMs, and GMs, the people that run and build these great services. And they absolutely love having this direct voice of the customer, especially when you think about the size and scale. So some of these customers that we align to are, again, leaders of their industry. And if they can say, well, if I can unblock it for this big use case, I can now unblock this for every use case within an industry. That's a powerful story for them. And so they very much are willing to invest that time and opportunity with us and we act as that two-way conduit into the customer. And the other thing is, with that trust relationship built with these service teams is then they come to us when they are brainstorming their roadmaps, even years out.
Clarke Rodgers:
Would a customer be interested in this feature or that feature? That kind of thing.
Matt Saner:
Yeah, and can you help us find one?
Clarke Rodgers:
Oh, that's great.
Matt Saner:
Can you go talk to them? Our customers absolutely love when they don't just get to turn on a feature that went GA. Right?
Clarke Rodgers:
Right.
Matt Saner:
They love it when they're like, I shaped that feature.
The reason that it does the thing it does is because I directly asked for that thing. And this is not unique to security. We have specialists in network and gen AI, actually, cloud operations, all of these specialists in general have these relationships too. But it's very unique because it is that direct amplification, bi-directionally where people are achieving the outcomes they want through actual targeted use cases and examples.
Clarke Rodgers:
And when you're hiring for people to join your team, what are you looking for? Is there a specific trait or background or maybe a skillset that you're looking for, for that next great SSA hire?
Matt Saner:
Yeah, we really want someone that is demonstrated to know the domain well. But beyond just the basics, how deep are you in the technology aspect of this is the construct of making sure that you're raising the bar on the capability and the solution and the why in earning trust.
We want folks that can go in and say, I know exactly what you're trying to drive and that outcome and I'm here along with you. We're not trying to come in and necessarily pitch a product or service. We're trying to actually say, here's a business outcome, and here's the solution, here's how we get there. And I think our customers really have appreciated that relationship. It's very strategic.
Clarke Rodgers:
I love that. You mentioned that the security SSAs work very closely with the customers, almost embedded with them at times. Generative AI has been all the rage for the last 18 to 24 months or so. When did you first start getting signal from your teammates that this was something big from a security risk and compliance perspective?
Matt Saner:
AI/ML is not new, but when we think about the new transformer-based architectures that hit the consumer marketplace, it really is one of those things that felt more of what I call a revolution than an evolution. We've lived through many evolutions in technology and the natural progression of things over time, but this was certainly a, “Oh, we're kind of interested in this as consumers ourselves.” We're playing with the apps on the phones and we're learning and then we're like, whoa, we actually are now also the producers of this thing and our customers are going to be the consumers of these things and their customers are going to consume them.
So it was very quick. It was very quick there. When we started having these customers with conversations, we realized that everybody across the industry was kind of new to it as well, other than maybe the ones that were deep in the data scientist aspect of it. And then immediately we started having CSO's, other leaders of our customers kind of reaching out saying, Hey, what is this thing? What do I need to think about? And we do pride ourselves on trying to be tip of the spear in helping our customers understand how to approach things and secure things.
So we've created tiger teams very similar to the Amazon two-pizza team model and also extended communities across the internal field made up a variety of different folks, including not just technologists and data scientists, but legal and marketing all coming together to say, “Hey, let's make sure that instead of being a few months ahead of where the customers are asking conversations, how do we widen that?” How do we get far enough ahead that with confidence, we can say this is not just thought leadership, this is actual pragmatic, practical advice and guidance and building that for customers to deploy? And that's been a strong mission of not just my team, but really the extended team across the AWS.
Clarke Rodgers:
So if I understand you correctly, not only were you answering questions and perhaps predicting what the questions would be from our customers, you also took it on to educate our field, our account managers, all those folks so they could have cogent security conversations with those same customers.
Matt Saner:
Yeah, I don't-
Clarke Rodgers:
Is that right?
Matt Saner:
That's exactly right. I don't think there's a security leader anywhere in the world that wouldn't want more great security people working with them. We realize that I can't always send a member of my team into every cluster conversation. My team does have the privilege of serving some of our most largest and most complex customers across the globe. We hear some amazing stories and learn a lot of thought through that, but we can't go to every single customer that AWS services, but we want that thought leadership to go to every single customer.
We built internal mechanisms that we call Maven's Courses. We worked with peer teams of mine to build those. A lot of great people across the greater gen AI community to help build those and deliver those. And we've scaled that out to hundreds of folks across the globe now, across dozens and dozens of our global offices. And then that Train-the-Trainer model also then scales and grows that wildfire of knowledge as well.
Clarke Rodgers:
That's fantastic.