#715: AWS News: Be your own data analyst with Amazon Q in Quicksight, and more - AWS Podcast

Summary5 min read

AWS Podcast Episode #715 Summary: "Be Your Own Data Analyst with Amazon Q in Quicksight, and More"

Release Date: April 7, 2025

In Episode #715 of the Official AWS Podcast, hosts Simon Elisha and Gillian Ford delve into a multitude of the latest updates and innovations from Amazon Web Services. From empowering data analysis with Amazon Q in Quicksight to advancements in artificial intelligence, networking, and security, this episode offers a comprehensive overview for developers and IT professionals eager to stay ahead in the cloud ecosystem.

1. Empowering Data Analysis with Amazon Q in Quicksight

Simon Elisha introduces a groundbreaking feature in Amazon Quicksight—Amazon Q—designed to democratize data analysis:

"Now within Quick Q and Quicksight, as long as you have access to your Quicksight account, you can start and actually go and ask those questions exactly." ([01:57])

Key Highlights:

Scenario Analysis: Helps users formulate and answer complex business questions without deep data expertise.
Agentic AI Integration: Automatically breaks down tasks, executes them, and provides detailed insights, enhancing efficiency.
Data Connectivity: Seamlessly integrates with Amazon Athena, Aurora, Redshift, S3, OpenSearch Service, and supports traditional formats like CSV and XLSX.
Enhanced Collaboration: Features like reusable analysis canvases facilitate exploratory data analysis and collaborative discussions.

Gillian Ford emphasizes the ease of use:

"Q and Quicksight can help you to be able to ask questions like, what if we extended our free trial period? What if we change suppliers." ([00:52])

2. Analytics and Data Enhancements

Gillian Ford provides updates on various analytics tools:

Amazon Datazone: Now supports metadata rules for better data governance.
Amazon OpenSearch Service: Introduces new OR2 and OM2 instances, delivering substantial performance improvements in indexing throughput.
AWS General Availability of PySpark: Facilitates large-scale data processing and analytics.

Simon Elisha adds insights on application integration:

Amazon Corretto 24: A no-cost, multi-platform distribution of OpenJDK, enhancing Java application performance and security.

3. Advancements in Artificial Intelligence

The hosts explore several AI-focused updates:

Amazon Bedrock Guardrails:

"This allows you to block up to 88% of harmful multimodal content." ([03:41])

Features robust content filtering, PII redaction, contextual grounding checks, and automated reasoning for factual accuracy in model responses.
Amazon SageMaker: Introduces metadata rules to enforce data standards, improving compliance and audit readiness.
AWS Marketplace for ML Products: Enhanced seller experiences with self-service publishing and private offer management.
Amazon Polly: Launches a new Korean female voice, expanding the tool’s multilingual capabilities.
Amazon Bedrock Model Evaluation: Now supports Retrieval Augmented Generation (RAG) evaluation powered by LLM judges, aiding in the selection and comparison of models based on various performance metrics.

4. Developer Tools and Infrastructure Enhancements

Gillian Ford discusses key updates in developer tools:

AWS CodeBuild: Enhanced S3 caching with custom cache keys for better build performance.
AWS CloudFormation: Now supports targeted resource scans, streamlining infrastructure as code management.
AWS Amplify Hosting: Introduces Web Application Firewall (WAF) protection, ensuring secure deployment of web applications.
Increased Quotas for AWS Client VPN: Expanded routes and authorization rules enhance network flexibility.

Simon Elisha highlights networking advancements:

Amazon EC2: Supports full instance bandwidth for inter-region VPC peering and AWS Direct Connect, along with jumbo frames up to 8,500 bytes, significantly improving data transfer efficiency.

5. Enhanced Security and Compliance

Gillian Ford outlines recent security enhancements:

AWS IAM Dual Stack Public Endpoint: Enables connections over both IPv6 and IPv4, enhancing accessibility.
AWS WAF: Now supports URI Fragment field matching, allowing for more granular security rules.

Simon Elisha emphasizes the importance of these features in protecting against evolving threats and ensuring secure cloud operations.

6. Management and Governance Improvements

Simon Elisha and Gillian Ford discuss tools designed to simplify management:

Amazon CloudWatch Rum: Now supports monitoring multiple domains with a single app monitor and JavaScript source maps for easier error debugging.
AWS Network Firewall: Introduces Pass Action rule alerts and JA4 filtering for enhanced network traffic visibility and control.

7. Quantum Computing and Emerging Technologies

The episode touches on cutting-edge developments in quantum computing:

IonQ Fort Enterprise on Amazon Braket: Introduces a 36-qubit enterprise quantum processing unit with advanced error mitigation algorithms, facilitating complex quantum workloads.

Simon Elisha remarks on the significance of this advancement:

"This is a big deal because moving from mainframe to open systems is not easy." ([14:06])

8. Customer Experience and Support Tools

Gillian Ford highlights updates to business applications:

Amazon SES VADE Add-on for Mail Manager: Enhances email security with sophisticated content filtering against spam, phishing, and malware threats.

Simon Elisha discusses Amazon Connect enhancements:

Next Generation Amazon Connect: Integrates powerful AI to improve customer interactions across self-service, agent assistance, analytics, and automated follow-ups, all with a single click for unlimited AI capabilities.

9. Storage and Deployment Innovations

Simon Elisha expresses enthusiasm for new storage solutions:

"I am so happy that exists." ([22:43])

Key Developments:

Amazon EBS: GP3 and IO1 volumes now available in AWS Dedicated Local Zones, supporting regulatory compliance with localized data storage.
Storage Browser for S3: Allows users to easily browse, download, upload, and manage S3 data through an intuitive file browser interface.

Conclusion

In this episode, Simon and Gillian provide a thorough overview of AWS's latest offerings, emphasizing tools that empower users to analyze data more effectively, enhance security, streamline development processes, and leverage advanced technologies like AI and quantum computing. The hosts' insightful commentary and notable quotes underscore the significance of these updates in shaping the future of cloud computing.

As Gillian Ford aptly puts it:

"I feel like I've been born in the cloud. I wouldn't even know where to get started." ([14:11])

And Simon Elisha encourages listeners to stay engaged:

"Until next time, keep on building." ([23:54])

For more information or to engage with the hosts, listeners are encouraged to reach out via LinkedIn or email at aws podcast@Amazon.com.

This summary provides a detailed overview of Episode #715, encapsulating the key discussions, insights, and notable quotes to inform and engage those who haven't listened to the full episode.

Loading summary

Transcript35 lines

[00:00]
Simon
This is episode 715 of the AWS.
[00:03]
Gillian Ford
Podcast, released on April 7, 2025.
[00:08]
Simon
Hello, everyone, and welcome back to the AWS Podcast. Simon, great to have you back. Joined by one of my illustrious co hosts, Gillian Ford. G'day, Gillian.
[00:15]
Gillian Ford
Illustrious co host. I love it. Simon, always excited to be here.
[00:20]
Simon
That's good to. Good to have you here. We're operating in 2az mode at the moment. Shruti is not with us today, but she'll be back. Lots of new stuff to talk about today. The first one that we wanted to call out is a new cap in Amazon Q in Quicksight. So this is scenario analysis. Now, I'm a data person, but I often don't know what questions to ask. And looking at this one, Julian, this, this helps you figure out how to get the answers to questions that you don't have enough manipulative knowledge to figure out yourself.
[00:53]
Gillian Ford
Yeah, I love that. Especially, like, it's so easy if you start with like a spreadsheet and then to feel a bit overwhelmed and kind of limited by what a simple spreadsheet can do. And I love that. Q and quicksight can help you to be able to ask questions like, what if we extended our free trial period? What if we change suppliers? A lot of these things that are a lot harder to just do in a spreadsheet.
[01:16]
Simon
It's true. It's like there's different factors. So, you know, one of the examples that we talk about is, you know, how might we increase our marketing ROI by 15% or more? So that's kind of like beyond gold goal seeking. It's kind of like important stuff. Or how do you know how to reduce customer churn by 20%? So again, natural language. And then what Q will do inside Quicksight is it'll find the relevant data, it'll suggest approaches, it'll plan each step and execute, and it'll give you detailed insights along the way. So this ties into, I guess, agentic AI that we've been talking a lot about, about the fact that breaking down tasks into littler tasks and then having them happen automatically gives you a lot of power. And it just means you can get answers quicker, can't you?
[01:57]
Gillian Ford
Yeah. Or if you had to get these answers before, it would require you to maybe work with like a data scientist or maybe had to work with like a DBA who could go and like, run the queries for you. And now within Quick Q and Quicksight, as long as you have access to your Quicksight account, you can start and actually go and ask those questions exactly.
[02:17]
Simon
And it creates an analysis canvas so you can sort of go down different paths because finding answers is often an exploratory thing. You can read from Quicksight dashboards connected to Amazon Athena Aurora Redshift, the simple storage service OpenSearch Service. It supports CSVs and single table XLSX file uploads. So the old Excel spreadsheets, it's about 10 times faster than doing it the old fashioned way, which is kind of nice. So. And you can also reuse, which I think is interesting. If you're sort of discussing and comparing, you can go back and try things again.
[02:52]
Gillian Ford
Pretty exciting stuff, Simon, I think.
[02:54]
Simon
Yeah, it's nice. Nice stuff. Well, speaking of analytics, Jillian, why don't you kick us off with analytics?
[02:59]
Gillian Ford
Amazon Datazone now supports metadata rules for publishing Amazon OpenSearch service introduces two new instances, Or2 and Om2, expanding the OpenSearch optimized instance family. The new generation of Or2 instance delivers up to 26% higher indexing throughput compared to previous Or1 instances and 70% over R7G instances. The new Om2 instance delivers up to 15% higher indexing throughput compared to Or1 instances and 66% over M7G instances in internal benchmarks. AWS announces the general availability of pyspark.
[03:42]
Simon
In AWS Clean Rooms let's talk about application integration. Amazon Corretto 24 is now generally available. This this as a reminder is a no cost multi platform production ready distribution of OpenJDK. This is a feature release so it'll be supported through October 2025. We also have the long term releases as well. This has a bunch of new updates. Speaking of new updates, Artificial Intelligence there's a lot happening there. Amazon Bedrock Guardrails has announced the general availability of industry leading image content filters. So this allows you to block up to 88% of harmful multimodal content. This new capability really removes that undifferentiated heavy lifting of building your own safeguards. And it also reduces the cycles you need to spend on manual content moderation, which can be both error prone and tedious. So it'll allow you to do this automatically. You can deny and disallow specific topics, you can redact pii, you can block specific words. There's also contextual grounding checks to detect and block model hallucinations. There's a whole lot of stuff going on there. And you could explain the factual claim in model responses using the automated reasoning checks, which is very very cool. Amazon SageMaker has introduced metadata rules to enforce standards and improve governance. So this allows you to understand what is going on with your data. By standardizing metadata practices, organizations can improve compliance, enhance your audit readiness, and streamline your workflows. Basically, data domain owners can define mandatory metadata fields that data users must complete when publishing assets to the catalog or requesting access. AWS Marketplace has introduced new seller experiences for machine learning products. Sellers can now quickly publish and update their ML listings with a new self service experience, and they can also now create, view and manage private offers for their ML products as well. Amazon Bedrock Knowledge Bases now supports Amazon OpenSearch managed cluster for vector storage and Amazon Bedrock Custom Model Import has introduced real time cost transparency. So now you can understand the compute resources being used to calculate inference costs in real time, which is pretty cool. There's a new Korean voice for Amazon Polly. I'm probably going to get the name terribly wrong. Ghee is what it looks like to me. It's a neural text to speech female voice for Amazon Polly. We're happy to announce multi head node support in slurm for Amazon SageMaker Hyperpod clusters couldn't be more jargon in that if I tried. I think basically this new capability enhances fault tolerance and availability for large scale gen AI model development workloads. When a single head node manages job scheduling and resource allocation it can become a bottleneck and if the node is unresponsive or goes down, we've got lots of trouble. Now you can have one primary head, a controller node to control all the others, and you can have additional backup head nodes on standby. If the primary fails, it'll switch across as well. The Research and Engineering Studio and AWS version 25.03 is now available, so this gives you even more insight into any work you're doing from a research standpoint. Amazon Bedrock now supports RAG evaluation in ga so you can evaluate your retrieval augmented generation applications either built on Amazon Bedrock Knowledge basis or a custom RAG system. And you can evaluate either retrieval or end to end generation. And these are powered by LLM as judge with a choice of several judge models. So this allows you to understand how well you're doing judged by another LLM. For retrieval you can select from metrics like context, relevance and coverage. And for end to end retrieving generation you can select from quality metrics like correctness, completeness, hallucination detection and other responsible AI metrics like harmfulness, answer, refusal and stereotyping. Lots of capability in this one. Amazon Bedrock Model Evaluation LLM as Judge is now generally available. This one ties in with the previous one doesn't it? So now you can evaluate, compare and select the right models for your use cases. And you can use an LLM as your judge from several available to decide what is good or what is not so good and Amazon Bedrock Guardrails has announced policy based enforcement for responsible AI. This is a new feature that enables customers to apply specific guardrails to model inference calls, ensuring responsible AI policies are applied across all AI interactions. This helps you protect against the nasties that could come in undesirable content. You have topic filters, PII detection, all that stuff. And guardrails can be applied across any foundation model including those hosted with Amazon Bedrock self hosted models and third party models. Bedrock by using the Apply Guardrail API. So this is important because it gives you a consistent user experience and standardizes safety and privacy controls.
[08:39]
Gillian Ford
Great. Let's talk about business applications. Amazon SES announces the availability of the VADE Add on for Mail Manager. This is a sophisticated content filter that enhances email security for both incoming and outgoing messages. This Add on, developed in collaboration with Hornet Security, combines heuristics, behavioral analysis and machine learning to provide robust protection against evolving communication threats such as spam, phishing attempts and malware. Next up we've got compute. Amazon EC2 now supports up to the full EC2 instance bandwidth for inter region VPC peering traffic and to AWS direct connect. Additionally, EC2 supports jumbo frames up to 8,500 bytes for cross region VPC peering.
[09:27]
Simon
This is a big deal for network geeks like myself. The ability to have Jumbo frames means you can move more data quicker with less overhead. So I'm kind of kind of excited about this one.
[09:37]
Gillian Ford
Oh, I like it. Okay, been a while since we've got like some hype around a networking release.
[09:44]
Simon
Really one so deep in the stack too. But hey, Jumbo frames are a good thing.
[09:47]
Gillian Ford
We're announcing Terraform support for AWS parallel computing service. Customers can now use Terraform to create and manage their PCs clusters. AWS deadline cloud now supports IPv6 let's.
[10:00]
Simon
Talk a bit about contact centers. There are three new features on the Connected Mobility solution on AWS. There is now Role Based Access Control, Multi Account and Multi Region support. There is Fleet Management Portal in preview as well. So lots of things if you're into that sort of part of the world. Amazon Connect Contact Lens now enables you to capture agent acknowledgments of performance evaluations so agents get an evaluation of their performance. You know the old how did I do? They can now acknowledge the fact that they got it back and they can also add notes to it as well. And AWS announces the next generation of Amazon Connect, where powerful AI improves every interaction, basically every customer. Touchpoint now gets the opportunity to have a better outcome. So this approach spans self service agent assistance, analytics, post contact evaluation and automated follow ups to boost sales and delight customers. And essentially this is enabled with a single click and it has unlimited use of AI capabilities. So you can just figure out what the best customer experience is rather than trying to budget a quick update. In the world of containers, Amazon EKS now enforces Upgrade Insights checks as part of cluster upgrades. This is a significant step forward, giving cluster administrators confidence with your upgrade. You know you're always a bit nervous when upgrades happen, so this lets you be less nervous.
[11:20]
Gillian Ford
Next up IS database Amazon DynamoDB now supports percentile statistics for the successful request latency. Amazon CloudWatch metric this percentile statistic enables you to understand the latency distribution of your successful request to Dynamodb, complementing the existing average, minimum and maximum statistics. Amazon DynamoDB Streams now comes with Abu Dhab AWS Private Link support, allowing you to invoke DynamoDB Streams APIs from within your VPC without traversing the public Internet. Amazon RDS for SQL Server now supports Linked servers to teradata databases Linked Server is a SQL Server feature that enables customers to read data and execute commands on remote databases servers outside of the SQL Server instance. So with this launch, customers can link their RDS for SQL Server instance to a teradata database running on AWS or on premises. Amazon Keyspaces for Apache Cassandra has expanded its multi region replication capabilities now enabling you to replicate your tables beyond the previous quota of 6 AWS regions to all available AWS regions. Amazon RDS for MySQL now supports MySQL Innovation Release 9.2 in the Amazon RDS Preview environment, allowing you to evaluate the latest innovation Release on Amazon RDS for MySQL Amazon KeySpaces for Apache Cassandra adds multi region support for user defined types. This enhancement allows you to add user defined types consistently across multiple AWS regions, enabling global applications to maintain consistent data schemas. AWS Database Migration Service Schema Conversion is a fully managed feature of DMS that automatically assesses and converts database schemas to formats compatible with AWS target database services. Now we're excited to announce that Schema conversion now supports conversions from IBM DB2 for Z OS to Amazon RDS for DB2.
[13:35]
Simon
Now Julian, this is this is a big deal for old heads like me. ZOS is the way we say it for us gray beards, but this is a big deal because moving from mainframe to open systems is not easy. I'm going to throw in words like big endian and little endian. I'm also going to throw the word ebcidic in there as well, which is probably going right over your head there. But the formats of data on the mainframe are completely different to the open systems world and so this is. This is a big deal. So I'm really impressed with what the team got done here.
[14:06]
Gillian Ford
I am. I mean, I feel like I've been born in the cloud. I wouldn't even know where to get started.
[14:12]
Simon
Yeah, you're lucky.
[14:15]
Gillian Ford
Totally. Speaking of born in the cloud, let's Amazon DynamoDB accelerator SDK for JavaScript version 3 is now available and so is the SDK for Go version 2. Next up is developer tools. AWS CodeBuild now supports an enhanced S3 caching experience. You can now define custom cache keys for more granular cache management and improved cache persistence across your builds. AWS cloudformation now supports targeted resource scans in the infrastructure as code generator. AWS Amplify Hosting announces web application Firewall protection in general availability Amplify Swift now supports sharing authentication state across multiple apps by leveraging keychain access groups. This new feature allows developers to manage a single authentication session across all Swift based applications and extensions within the same access group. AWS announces increased quotas For AWS client VPN Expanding routes per Target Network association to 100 and authorization rules per endpoint to 201 Quick update in front end Web and mobile AWS announces expanded service support in the AWS Console mobile app. Now with the mobile app you can access 24 additional AWS services including service quotas, CloudFront, Amazon SES, AWS Cloud 9 and AWS Batch via an integrated mobile web browser experience in the AWS Console mobile app.
[15:54]
Simon
Let's talk about games. Amazon Gamelift servers have expanded instance support with next generation EC2 instance families. They now support the Amazon EC2 5th through 8th generation instances so you get lots more price, performance, efficiency and flexibility for hosting based on different types of servers. Let's talk management and governance. Amazon cloudwatch Rum now supports monitoring multiple domains with a single app monitor. So this allows you to monitor multiple top level domains and second level domains using a single app monitor. And you can monitor everything across the one place so one dashboard can see everything. That's pretty cool. And CloudWatch rum, or rum as I like to call it, now supports JavaScript source maps for easier error debugging so you can understand what the script was doing.
[16:44]
Gillian Ford
One quick update in Media Services AWS Elemental Media Connect adds support for NDI or Network Device Interface outputs from Media Connect flows.
[16:56]
Simon
Let's talk networking and content delivery. AWS Network Manager and AWS Cloud WAN now supports AWS private link and IPv6. The ongoing V6 march continues AWS Network Firewall adds Pass Action rule alerts and JA4 filtering. So this is the ability to generate alerts on traffic that matches Pass action rules and fingerprinting in firewall rules as well. So this gives you enhanced visibility into your network traffic without having to add an alert action rule before the Pass Action rule. So this helps you figure out anomalies that would otherwise cause issues without additional scrutiny. Amazon Route 53 Profiles has introduced Dual stack support for the for the Route 53 Profiles API endpoints, which means you can now connect using IPv6, IPv4 or dual stack clients as well. Existing Route 53 profile endpoints supporting IPv4 will remain available for backwards compatibility. The AWS Network Firewall has introduced a new flow management feature, so this enables you to identify and control active network flows. So there are two key new functions Flow Capture, which allows point in time snapshots of active flows and Flow Flush, which enables selective termination of specific connections. So as a customer you can now view and manage your active flows based on the criteria like source or destination IP addresses, Ports protocols, which means you get lots more control over what's going on in the network and a quick update around payment the option to have currency selection has been added to payment profiles, so this capability builds upon the existing ability to set different payment methods per service provider, so now you have more control. For example, you can select to pay one AWS service provider in USD and another in Euros so you can do it up to however you like. But if you don't mean to create a profile you can also just use the default payment preferences and a quick update For Quantum Technologies IonQ Fort Enterprise is now available on Amazon Bracket, so this is IronQ's latest 36 qubit fort enterprise quantum processing unit. This device joins the existing Quantum hardware profile on Braket, which includes Fort 1, Aria 1 and Aria 2. So again you can use the familiar bracket SDK and APIs to access this new device. This device features IronQ's debiasing and sharpening error mitigation algorithms to enable advanced customer workloads and Fort Enterprise continues to use the native ZZ gate architecture make it easy for customers to seamlessly migrate workloads between FORT devices. Look at this, it's quantum computing and we're still doing migrations between devices. The enterprise device is physically located in Switzerland, but all customer traffic routes through US East North Virginia Next topic, Security.
[19:50]
Gillian Ford
Identity and Compliance AWS IAM announces a new Dual Stack Public endpoint enabling customers to connect to IAM over the public Internet using IPv6, IPv4 or dual stack clients. AWS WAF now supports URI Fragment field Matching, enabling customers to match against the URI fragment and along with the already supported URI path. With this feature, customers can create rules that inspect and match against the content of the URI fragment within their URI path. Now onto serverless AWS Lambda now supports creating serverless applications using Ruby 3.4. AWS Fault Injection Service now supports a recovery action for Amazon application Recovery Controller Zonal autoshift A Recovery action is a new fault injection service action type that allows customers to demonstrate how AWS responds during an Availability incident. This sounds super useful. So an example. When AWS detects potential infrastructure issues in an Availability zone such as power or network disruptions, Zonal Auto Shift automatically shifts traffic away from the Availability zone. With the new fault injection service recovery action, customers that have enabled Zonal autoshift can now run default injection service AZ Availability the Power Interruption scenario to induce the expected symptoms of a complete interruption of power in an Availability zone and demonstrate how AWS would trigger Zonal Auto Shift. This is so cool. This is going to allow customers to yeah tune their monitoring recovery process to improve resiliency and really be able to ensure based on their own SLAs that they're able to meet them. Amazon EventBridge scheduler now supports AWS Private Link providing you access to scheduler from within your VPC without using the public Internet. Next up is Storage. You can now use Amazon EBS GP3 and iO1 volumes in an AWS Dedicated Local zone. Dedicated Local Zones are a type of AWS infrastructure that are fully managed by aws, built for exclusive use by you or your community and placed in a location or data center specified by you to help you comply with regulatory requirements. You can now easily deploy pre configured sample applications to connect your users to Data in Amazon S3 using storage browser for S3. Once you select and deploy one of the sample apps, users can browse, download, upload, copy, delete data that you have access to in S3 through an intuitive file browser experience.
[22:43]
Simon
I am so happy that exists.
[22:45]
Gillian Ford
Yeah and wow.
[22:47]
Simon
That should have existed a long time ago. I don't know why it took us so long, but we got there, so I'm excited. So there are lots of updates today. Any that leapt out at you as something of like, oh, I'm gonna get my hands on that one. It sounded like you kind of like the, the AZ testing one.
[23:01]
Gillian Ford
Oh, absolutely. I mean, I think there's something in this one for everyone and that's where I get really excited. And especially I work with startups. I know a lot of startups that have goals of being able to scale, but they haven't really tested their resiliency strategy. So I love that this is something that they can be able to implement to really be able to ensure that they can meet their SLAs for their customers. What about you?
[23:25]
Simon
That's nice. Well, for me it was actually the AWS amplify hosting with WEF support going into general availability now. It's not an exciting thing in terms of wow, this is an amazing new functionality, but for me it's just make it easier to deploy something and be secure. I like that. So I like the easy button. The more easy button we can get, the better. Jillian, how do folks reach out to you?
[23:52]
Gillian Ford
Jillian Ford on LinkedIn.
[23:54]
Simon
That's the way. And also if you want to do it old school aws podcast@Amazon.com if you want to send us a question for our mailbag episode as well, please feel free to do that to the same address. And until next time, keep on building.