Cloud

Startups focused on AI are influencing so many areas of our lives. They’re defining the future of education, advancing healthcare innovation, reinventing collaboration and more.

To help AI-focused startups scale quickly and build responsibly, we’re hosting the Google for Startups Cloud AI Accelerator. This program builds on the success of our recent AI First accelerators and targets startups building AI solutions based in the U.S. and Canada. This is the first of several AI-focused programs we’ll offer throughout the year across the US, Canada, Europe, India and Brazil.

After a rigorous selection process, we’ve selected a cohort of dynamic companies leveraging AI to address a wide range of real-world challenges. Meet the startups: 

1. Alma (Palo Alto, CA): Simplifies US immigration for global talent.
2. Asepha (Toronto, ON): Develops fully autonomous AI pharmacists.
3. CAMB.AI (Wilmington, DE): Enables multilingual storytelling with AI.
4. CerebraAI (Palo-Alto, CA): Detects strokes rapidly using AI-powered non-contrast CT scan analysis.
5. Creati AI (San Jose, CA): Generates usable AI videos using just elements.
6. Finnt (Miami, FL): Automates solutions for corporate finance teams.
7. HydroX AI (San Jose, CA): Automates generative AI risk and compliance.
8. Instalily (New York, NY): Automates B2B workflows using AI agents.
9. Instreamatic (Boca Raton, FL): Creates personalized video/audio ad variations.
10. Kahuna Labs (San Jose, CA): Provides comprehensive technical product support.
11. Lately (Stone Ridge, NY): Manages social media with AI, boosting ROI.
12. Multimodal (New York, NY): Automates financial services workflows with Agentic AI.
13. Simular (Palo Alto, CA): Creates personal AI assistants for computers.
14. Starcloud (Redmond, WA): Provides data centers in space.
15. Vody (New York, NY): Builds AI models for enhanced retail engagement.

The equity-free program kicks off at Cloud Next 2025 where the cohort will pitch their company  on stage in preparation for a high profile Demo Day in June for potential partners, customers and investors. Startups will then receive 10 weeks of hands-on mentorship and technical support focused on using AI in their core service or product. 

These startups will collaborate with a cohort of peer founders and engage with leaders across Google. The curriculum will give founders access to the latest Google AI tools, including Vertex AI, Gemini and Agentspace, and will also include workshops on infrastructure, user experience (UX),  growth, sales, leadership and more.

After graduation, startups join the active Google for Startups Accelerator community, where they receive ongoing support, and have the opportunity to build lasting connections with like-minded founders, mentors and investors.

We are honored to partner with this cohort of companies through this Accelerator and beyond. Register your interest to get updates on the program, and join us in celebrating!

Data backups are a lifeline and the ultimate safeguard when your organization is faced with unexpected disruption.

Last year, we introduced backup vault, a powerful storage feature available as part of the Google Cloud Backup and Disaster Recovery (DR) service. Backup vault secures backups against tampering and unauthorized deletion, and integrates with Security Command Center for real-time alerts on high-risk actions.

To further support your security needs, we’re deepening the integration between Google Backup and DR and Security Command Center Enterprise. This integration adds new detections — including the ability to detect threats to backup vault — and end-to-end workflows to help customers protect backup data.

Backups and real-time threat detection 

Among the most pressing threats to organizations today are ransomware attacks. We have seen threat actors intentionally delete data to raise the likelihood of seeing their ransom demands met and encrypt unprotected backups to hold them hostage. Accidentally deleting critical data can also cause serious harm, even if unintended. 

Whether malicious or unintended, the consequences of threats to data security can be severe and result in significant data loss and operational disruptions. Security Command Center provides security and risk management across your Google Cloud footprint. It ingests and analyzes security telemetry to detect threats in near real-time. Activity that raises suspicion of an adversary or insider attempting to tamper, modify, or delete your backups will be immediately flagged and brought to your attention. 

Security Command Center: Accelerating incident response

Security Command Center surfaces threats using findings, which are notifications that a specific behavior was observed in your environment. These provide contextual information on the threat event, including which resource was affected, the time of the occurrence, and the nature of the threat. 

To further investigate, Security Command Center findings are linked to Cloud Logging, enabling a deep dive into the forensic details. Here, you can analyze the event to pinpoint the user or service account responsible and take action to remediate.

Streamlining response with Google Security Operations

Along with new Security Command Center detections for backup vault, we are also introducing prebuilt Backup and DR detections in Google Security Operations. 

Organizations using Security Command Center Enterprise now have access to curated detections designed for backup-related threats in the Google Security Operations console. With these detections, you’re equipped to respond effectively from day one without the need to craft custom rules.

Google Security Operations intelligently aggregates related alerts into comprehensive cases, providing a consolidated view of the incident. It can automatically enrich each case with relevant contextual details to help you understand scope and potential impact.

For example, a user who takes a high-risk action, such as deleting several backups in quick succession, would be flagged by Security Command Center, surfaced as an alert in Google Security Operations, and aggregated in a case for triage by your SOC team.

Gemini for Google Security Operations

Adding another layer of capability is Gemini in Google Security Operations, which can summarize findings, recommend remediation steps, and help you craft custom detections.

• Summarizing findings: When a backup deletion alert arrives, ask Gemini to “Summarize the findings related to the recent backup deletion attempt,” to receive a clear, concise summary of the event, including details about the affected resources.
• Recommending remediation steps: When you ask Gemini for guidance, such as, “What steps should I take to restore the deleted backup?” Gemini will provide tailored recommendations, drawing from security best practices and product specifics.
• Proactive threat hunting: You can engage Gemini in proactive investigations. For example, you might ask, “Show me users who have deleted backups recently.” Gemini will quickly review events and alerts on your behalf.

Protecting your backups with confidence

The powerful synergy between Backup and DR and Security Command Center Enterprise, amplified by Gemini, provides a robust framework for threat detection and response. 

By using these advanced Google Cloud tools, your security team can swiftly identify suspicious activities, gain a comprehensive understanding of incident scope, and take action to safeguard backups.

Learn more about how Google Cloud can help you protect your data with Security Command Center for Backup and DR, and attend the breakout Next session.

Do you work with Kubernetes every day? Want to learn about the latest advancement in Kubernetes and the Cloud Native Space? Come join us for KubeCon + CloudNativeCon Europe 2025 in London (April 1-4), the premier event for folks running Kubernetes in the cloud! As the creator of the Kubernetes project and a key leader in this space, Google Cloud is excited to showcase the latest contributions and our commitment to the Kubernetes community. Join us at booth S100 to discover our sessions, lightning talks, hands on labs, and demos — plus, some friendly competition in a game of Kubernetes Family Feud!

We will begin the week with our pre-conference Google Container Day on April 1st and continue with a multitude of sessions and activities throughout the main event. You can expect to see numerous experts like Clayton Coleman, Antonio Ojea, Jago Mcleod, and Dawn Chen leading keynotes, covering topics from the very building blocks of Kubernetes to cutting-edge applications in AI/ML.

Meet our experts at the Google Cloud Booth S100

Visit the Google Cloud Booth to chat with our experts and discover the latest advancements in the cloud-native space. You will also get a chance to experience interactive demos and lightning talks by Googlers, partners, and customers. Check out the complete Google Cloud schedule — we can’t wait to see you there!

Join the Google Cloud demo on 65,000 node clusters

Wednesday April 2, 2025 13:00 – 13:20 BST
Level 1 | Solutions Showcase | Hall Entrances S8 – S9 | Demo Theater

AI workloads are getting bigger and trickier to run. For large-scale training jobs we need Kubernetes clusters that can scale to sizes beyond what has been possible until now. In this demonstration we will showcase what it takes to scale Kubernetes to up to 65,000 nodes and handle the most demanding workloads, whether you are training AI models or running complex simulations. We will also look at open-source tools like Kueue and how it efficiently manages a wide range of AI workload scenarios within a large, hypothetical AI company, running their AI workload on a 65,000-node Google Kubernetes Engine (GKE) cluster. We’ll showcase Kueue’s capabilities in handling train/inference fungibility, priority-based preemption, fair sharing, and topology-aware scheduling, providing insights into its effectiveness at this massive scale.

Featured sessions at KubeCon + CloudNativeCon Europe 2025

Google Cloud will be delivering multiple sessions at KubeCon. Below is a small selection of the sessions you won’t want to miss. For a full list check our website and the KubeCon schedule.

• The Future of Data on Kubernetes From Database Management To AI Foundation: The Data on Kubernetes ecosystem has expanded beyond persistent storage to support critical data workloads including databases and AI/ML operations. In this panel, experts will discuss the current state and future of data on kubernetes.

• Yes You Can Run LLMs on Kubernetes: As LLMs become increasingly powerful and ubiquitous, the need to deploy and scale these models in production environments grows. In this session we’ll cover the key considerations and best practices for packaging LLM inference services as containerized applications using popular OSS inference servers like TGI, vLLM and Ollama, and deploying them on Kubernetes.

• KubeCon FamilyFortune, Episode 2: Join us for a rousing game of Family Fortune (Family Feud to our friends across the pond)! We will have silly questions with even sillier answers, as we try to guess what our global community of Kubernauts think.

• AI Beyond Autocomplete: Using LLMs To Create 1000 Kubernetes Controllers: LLMs can generate React apps, poems, and even music. But can they rise to the ultimate challenge: writing reliable Kubernetes controllers? The Config Connector team say “yes!” We are successfully using AI to write production controllers for a thousand google cloud resources. Join us to learn lessons that will apply as your project embraces the AI-assisted future.

• Scalable DNS With CoreDNS Plugins: A Deep Dive: CoreDNS is a highly flexible and extensible DNS server widely recognized as the default DNS solution in Kubernetes. We will dive deep into CoreDNS’s extensive plugin ecosystem, examining several plugins that significantly enhance DNS scalability in Kubernetes. We’ll also walk through developing a Go-based demo plugin that leverages source IP for service discovery.

• A Practical Guide To Kubernetes Policy as Code: Policies play a critical role in ensuring Kubernetes security, compliance, and governance in your clusters. In this session, they’ll explain what PaC is, why it’s essential, and demonstrate how to effectively use built-in Kubernetes features like ValidatingAdmissionPolicy and MutatingAdmissionPolicy alongside CNCF policy engines such as OPA/Gatekeeper and Kyverno to manage your PaC lifecycle.

• Simplifying the Networking and Security Stack With Cilium, Hubble, and Tetragon: Join us as we celebrate nearly a decade of Cilium. This session provides updates on the latest Cilium release and showcases how its unified eBPF-powered stack is transforming Kubernetes environments by replacing fragmented toolchains with seamless, secure, scalable, and simplified solutions.

• The Next Generation of DaemonSet Autoscaling: Imagine you have small 4-core nodes and larger 64-core nodes in the same cluster, and a DaemonSet that does much more work on the larger nodes. How do you set resource requests and limits appropriately? In this talk we discuss our case studies, why this feature is useful, how our prototype implements per-pod VPA for DaemonSets to improve resource efficiency, stability, and eliminate the need for manual tuning.

• Making the Leap: What Gateway API Needs To Support Ingress-NGINX Users: Ingress-NGINX has been the cornerstone of Kubernetes Ingress for years. In this talk, Rob and James explore the critical challenges of migrating from Ingress to Gateway. They highlight commonly used Ingress-NGINX features that are not yet supported in Gateway API and discuss how the community can drive the evolution of Gateway API to meet the needs of Ingress-NGINX users.

• Encryption, Identities, and Everything in Between; Building Secure Kubernetes Networks: As the scale of your clusters grows, so does the complexity of securing your networks. The stakes are high: Inadequate encryption or identity management solutions can leave clusters vulnerable to a range of security risks. In this session, Lior and Igor explore the landscape of network encryption, AuthN and AuthZ solutions grounded in the principles of defense-in-depth and least privilege.

• Defusing the Kubernetes API Performance Minefield: Kubernetes enables a wide landscape of CNCF projects and organizations to build upon its foundation and extend its functionality through custom controllers. But anyone who has deployed an operator at scale quickly discovers that the Kubernetes API is a performance minefield where one small mistake can lead to reliability and performance issues. Join us to learn how these changes mitigate risks, boost performance, and contribute to a more stable and reliable Kubernetes experience.

Looking forward to seeing you in person in London!

Mainframe modernization is no longer a question of if, but how, with organizations seeking ways to accelerate modernization while also minimizing costs and reducing risks.

Today, Google Cloud and mLogica announced a strategic partnership focused on accelerating and de-risking mainframe application modernization, combining mLogica’s LIBER*M automated code refactoring platform with Google Cloud Dual Run for validation and de-risking, offering a non-disruptive and validated modernization path to our joint customers. 

LIBER*M provides automated assessment, code analysis, dependency mapping, and code transformation capabilities. It supports multiple target languages and platforms, providing a crucial foundation for refactoring projects.

Dual Run enables simultaneous operation of mainframe and cloud applications in parallel, letting you compare and validate refactored applications before cutting over. This, along with powerful testing capabilities, enables a controlled, phased transition, minimizing business disruption and substantially reducing the risks inherent in large-scale mainframe modernization projects.

This partnership with mLogica complements Google Cloud’s existing mainframe modernization solutions, including our Mainframe Refactor offering, with mLogica’s expertise and tools. Together, we can address a wide spectrum of mainframe languages and use cases, and ultimately provide customers with more modernization options.

Automated code refactoring with LIBER*M

Enterprises seeking a nuanced approach to mainframe modernization often combine multiple modernization patterns, for example, reimagining the application with Google Gemini Accelerated application rewrites, as well as refactoring workloads. For applications where innovation and new capabilities are critical, generative AI can help reimagine them from the ground-up as entirely new cloud-native applications and user experiences. But for workloads where modernization speed is critical, customers can choose automated code refactoring from legacy languages to modern equivalents, which optimizes for cloud deployment while delivering functional parity. This strategy maximizes innovation and cost-efficiency, balancing the desire for deep modernization with practical considerations of cost and time-to-value.

Refactoring involves transforming existing mainframe applications (often written in COBOL, Assembler and other legacy languages) into modern languages and architectures, typically Java or C# running on cloud-native platforms and services, through rule-based transformation. This is distinct from other modernization patterns such as replatforming, which focuses only on infrastructure changes, or rewriting, which recreates the target application from the ground-up.

Refactoring offers several advantages for customers, striking a good balance between modernization potential and speed: 

• Refactored applications leverage modern development practices (CI/CD, DevOps) and cloud-native services, enabling faster feature delivery and response to changing business needs.

• Modern languages and architectures are easier to maintain and enhance, reducing technical debt and expanding the pool of available talent.

• Refactored applications are designed to integrate with cloud services, such as databases, analytics, and AI/ML.

• Cloud-native architectures are inherently scalable and elastic, allowing applications to adapt to fluctuating demands.

• While refactoring requires an upfront investment, the long-term benefits of reduced infrastructure costs, improved efficiency, and faster innovation often lead to a lower total cost of ownership.

Refactoring doesn’t imply a monolithic approach. It supports a wide modernization spectrum, from automated code conversion to more extensive architectural redesign. The optimal approach depends on the specific application and business goals.

The mLogica modernization foundation

mLogica brings a comprehensive suite of tools and decades of experience to the mainframe modernization challenge. Key products include:

• LIBER*M: This platform provides automated assessment, code analysis, dependency mapping, and code transformation capabilities. It supports multiple target languages and platforms, providing a crucial foundation for refactoring projects.

• CAP*M: As a dedicated solution for database migration and modernization, CAP*M facilitates the transition from legacy databases (e.g., IMS, DB2) to open-source or cloud-native databases.

• STAR*M: Allows for automated testing during modernization.

These tools are complemented by mLogica’s deep expertise in mainframe technologies and modernization methodologies.

Google Cloud Dual Run directly addresses the key challenges customers face when refactoring mainframe applications: de-risking the modernization, validating and certifying the new system, and ensuring comprehensive testing. By enabling parallel operation of the original mainframe application and its modernized counterpart on Google Cloud, Dual Run eliminates the need for a “big bang” cutover, significantly reducing the risk of business disruption. Parallel operation of both legacy and modernized environments allows for continuous validation, helping to ensure the modernized application behaves as expected under real-world conditions. This kind of parallel processing facilitates extensive testing, including performance, functional, and regression testing, and identification of any discrepancies before the final switch.

Helping our joint customers 

This partnership is about delivering real outcomes for customers engaged in mainframe modernization, significantly reducing risk, accelerating time-to-value, and lowering overall costs. 

Together, we have certified the combined solution of Dual Run and mLogica’s tools, validating the effectiveness in real-world modernization scenarios. The combination of mLogica’s automated refactoring with LIBER*M and Google Cloud’s Dual Run parallel operation minimizes the potential for errors, downtime, and business disruption. Automation streamlines the modernization process, while Dual Run facilitates application validation and certification, alongside robust testing and a rollback capability for enhanced confidence. This combined solution lets you adopt a modern, cloud-native architecture efficiently and securely, positioning your organization for sustained innovation and growth.

mLogica’s LIBER*M and STAR*M products are available for customers directly on the Google Cloud Marketplace. Dual Run is available through our certified mainframe modernization implementation partners. For more details and inquiries please contact mainframe@google.com.

From YouTube and Gmail to BigQuery and Cloud Storage, almost all of Google’s products depend on Colossus, our foundational distributed storage system. As Google’s universal storage platform, Colossus achieves throughput that rivals or exceeds the best parallel file systems, has the management and scale of an object storage system, and an easy-to-use programming model that’s used by all Google teams. Moreover, it does all this while serving the needs of products with incredibly diverse requirements, be it scale, affordability, throughput, or latency. 

Colossus’ flexibility shows up in a number of publicly available Google Cloud products. Hyperdisk ML utilizes Colossus solid state disk (SSD) to support 2,500 nodes reading at 1.2 TB/s — impressive scalability. Spanner uses Colossus to address cheap HDD storage with super-fast SSD storage in the same filesystem, the foundation of its tiered storage feature. Cloud Storage uses Colossus SSD caching to deliver the cheapest storage while still supporting the intensive I/O of demanding AI/ML applications. Finally, BigQuery’s Colossus-based storage provides super-fast I/O to extra-large queries.

We last wrote about Colossus some time ago and wanted to give you some insights on how its capabilities support Google Cloud’s changing business and what new capabilities we’ve added, specifically around support for SSD.

Colossus background

But first, here’s a little background on Colossus:

• Colossus is an evolution of the Google File System (GFS).
• The traditional Colossus filesystem is contained in a single datacenter.
• Colossus simplified the GFS programming model to an append-only storage system that combines file systems’ familiar programming interface with the scalability of object storage.
• The Colossus metadata service is made up of “curators” that deal with interactive control operations like file creation and deletion, and “custodians,” which maintain the durability and availability of data as well as disk-space balancing.
• Colossus clients interact with curators for metadata and then directly store data on “D servers,” which host its HDDs or SSDs.

It’s also important to understand that Colossus is a zonal product. We build a single Colossus filesystem per cluster, an internal building block of a Google Cloud zone. Most data centers have one cluster and thus one Colossus filesystem, regardless of how many workloads run inside the cluster. Many Colossus filesystems have multiple exabytes of storage, including two different filesystems that have in excess of 10 exabytes of storage each. Being able to scale this high helps ensure that even the most demanding applications don’t run out of disk space close to their cluster compute resources within a zone.

These same demanding applications also need a large amount of IOPS and throughput. In fact, some of Google’s largest filesystems regularly exceed read throughputs of 50 TB/s and write throughputs of 25 TB/s. This is enough throughput to send more than 100 full-length 8K movies every second!

Nor do we rely on Colossus only for large streaming I/Os. Many applications do small log appends or small random reads. Our busiest single cluster delivers over 600M IOPS, combined between reads and writes.

Of course, to achieve such great performance, you need to get the right data to the right place. It’s hard to read at 50 TB/s if all of your data is located on slow disk drives. This leads us to two important new innovations in Colossus: SSD caching and SSD data placement, both powered by a system we call “L4”.

What’s new in Colossus SSD placement?

In our previous Colossus blog post, we talked about how we place the hottest data on SSDs and balance the remaining data across all of the devices in the cluster. This is all the more pertinent today, as over the years, SSDs have gotten more affordable, increasing their prominence in our data centers. No storage designer would ever just spec a system just built out of HDDs anymore.

However, SSD-only storage still poses a substantial cost premium over a blended storage fleet of SSD and HDD. The challenge is putting the right data — the data that gets the most I/Os or needs the lowest latency — on SSD while keeping the bulk of the data on HDD.

With that, let’s look at how Colossus identifies the hottest data. 

Colossus has several ways to select data for placement on SSDs:

• Force the system to place data on SSD: Here, an internal Colossus user forces it to place data on SSD. Users can do that through the path: /cns/ex/home/leg/partition=ssd/myfile. This is the easiest approach, and ensures that the file is completely stored on SSD. At the same time, it is the most expensive option.

• Utilize hybrid placement: More sophisticated users can take advantage of “hybrid placement” and tell the Colossus system to place only one replica on SSD: /cns/ex/home/leg/partition=ssd.1/myfile. This is a more affordable approach, but if the D server with the SSD copy is unavailable, accesses suffer from the latency of HDDs.

• Use L4: For the bulk of the data at Google, most developers use the newer L4 distributed SSD caching technology, which dynamically picks the data that is most suitable for SSD.

L4 read caching

The L4 distributed SSD cache analyzes the access patterns for an application and automatically places the data that is most suited for SSD.

When functioning as a read cache, L4 index servers maintain a distributed read cache:

That means that when an application wishes to read some data, it first consults an L4 index server. That index informs the client whether the data is in cache, in which case the client reads the data from one or more SSDs, or tells the cache it is a cache miss, and the client fetches the data from the disk Colossus has placed it on.

On cache misses, L4 can decide to insert the accessed data into the SSD cache. It does so by informing an SSD storage server to transfer the data from the HDD server. Eventually, as the cache fills up, L4 deletes some items from the cache, freeing space for new insertions.

L4 can be more or less aggressive about how much data to place on SSD. We use a machine learning (ML) powered algorithm to decide between different policies for each workload: insert into the L4 cache when the data is written, after the first time it is read, or only after the second time it is read within a short time period. To learn more about how we do this, please read the CacheSack paper.

This approach works well for applications that read the same data often and has dramatically improved our IOPS and throughput. At the same time, it does have a major weakness: we still write the new data to an HDD. And it turns out that there are other important classes of data where L4 read caching isn’t as effective at saving resources as we’d like, namely data that is written, read, and deleted quickly (such as intermediate results for a large batch-processing job), and database transaction logs and other files that see many tiny appends. Because both of these workloads are poorly suited to HDD, it’s preferable to write them directly to SSD, and skip HDD entirely.

L4 writeback for Colossus 

Now, imagine that an internal Colossus user wants to place a portion of their data on SSD — they need to carefully think about which files should go on SSD and how much SSD quota they should purchase for their workload. And if they have older files that aren’t being accessed, they might want to migrate that data from SSD to HDD. But from watching our users’ experience, we know that deciding on these parameters is quite hard. To help, we enhanced the L4 service to automate this work.

When being used as a writeback cache, the L4 service advises Colossus curators on whether or not to put a new file on SSD, and for how long. This is tricky! At file creation time, Colossus can only see the application that’s creating the file and its name — it doesn’t know for sure how it will be used.

To solve this problem, we use the same approach as the L4 read cache described in the CacheSack paper mentioned above. The application passes features to L4 such as the file type, or metadata about the database column whose data is stored there. L4 uses these features to segregate the files into “categories” and observes the I/O patterns of each category over time. These I/O patterns drive an online simulation of different placement policies, such as “place on SSD for one hour,” “place on SSD for two hours,” or “don’t place on SSD.” Based on this simulation, L4 chooses the best policy for each category.

These online simulations also serve another important purpose: They predict what placement L4 would choose if more or less SSD capacity were available. Thus, we can predict how much I/O can be offloaded from HDD with different amounts of SSD. These signals drive purchases of new SSD hardware and inform planners of ways to shift SSD capacity between applications to maximize efficiency.

When instructed, the curator can then direct new files to SSD rather than to the default HDD. After a set amount of time, if the file still exists, the curator migrates the data from SSD to HDD:

When the L4 systems’ simulation correctly predicts the file access patterns, we place a small portion of our data on SSD, which absorb most of the reads (which tend to happen to newly created files), before migrating the data to cheaper storage, minimizing the overall cost. In the best case scenario, the file is deleted before we migrate it to HDD, avoiding all HDD I/O.

Colossus SSD and Google Cloud

As the basis for all of Google and Google Cloud, Colossus is instrumental in delivering reliable services for billions of users, and its sophisticated SSD placement capabilities help keep costs down and performance up while automatically adapting to changes in workload.

Ultimately, our goal is to maximize storage efficiency and performance without end-users having to be an expert on every detail of HDDs, SSDs, and Colossus. We’re proud of the system we’ve built so far and look forward to continuing to improve the scale, sophistication, and performance. Visit us at Next ‘25 and attend breakout sessions “What’s new with Google Cloud’s Storage” (BRK2-025) and “AI Hypercomputer: Mastering your Storage Infrastructure” (BRK2-020) to learn more.

In an era where digital security is more important than ever, Atlético de Madrid is strengthening its defenses beyond the pitch. Known for their resilience and tactical discipline on the field, the club is taking the same proactive approach to securing its digital operations and fan experience. 

At Google Cloud, we are proud to be extending our partnership with Atlético de Madrid to become the official cybersecurity partner across both the women’s and men’s teams, reinforcing our shared commitment to innovation and resilience in sports technology.

Kicking off the partnership

Since our collaboration began, Google Cloud and Atlético de Madrid have worked together to explore innovative ways to enhance the club’s cybersecurity posture. Paramount has been thinking through the importance of protecting sensitive data and maintaining the integrity of digital operations, including the security of its vast fanbase. Over the past months, we have worked together to better understand the threat landscape that Atlético de Madrid faces, and have begun to apply best practices in cybersecurity awareness and resilience.

Atlético de Madrid has invested in improving protection of both operational and fan data by moving to Google Cloud’s Backup and Disaster Recovery Service. This service, which automatically encrypts data at rest, ensures critical data and systems remain protected and operations can swiftly recover from any potential disruption.

Understanding the threat landscape 

Atlético de Madrid, and other global sports clubs, face a range of cybersecurity threats that could impact operations, reputation, and fan trust. These challenges include:

• Data breaches and fan data protection: With extensive amounts of personal data, including payment information and preferences, clubs must ensure stringent protection to comply with GDPR and prevent identity theft or fraud.

• Ransomware attacks: A cyberattack could cripple critical operations such as ticketing, merchandising, and performance analysis — especially during crucial game weeks.

• Website and mobile app security: As digital platforms play a crucial role in fan engagement, securing these touchpoints against defacement and DDoS attacks is essential.

• Phishing and social engineering: Players, staff, and even fans are potential targets for phishing attempts aimed at stealing credentials and financial information.

Ensuring that these potential threats are being addressed with a strong cybersecurity posture does more than protect Atlético de Madrid’s digital infrastructure — it enhances every player, employee, and fan interaction with the club and the beautiful game. 

Cybersecurity also plays a key role in preventing online scams and protecting fans from fraudulent ticket sales and merchandise offers. Even inside the stadium, robust security ensures that essential systems like electronic access controls and signage remain operational, providing a seamless experience for everyone.

Looking ahead

Moving forward, Google Cloud will continue to work alongside Atlético de Madrid to strengthen its security capabilities, explore new ways to innovate, and ensure the club remains protected in today’s fast-evolving threat landscape. 

For Atlético, this partnership goes beyond just implementing security measures, it’s about creating a safe and positive experience for everyone who interacts with the club.

“The safety and trust of our digital ecosystem is at the heart of everything we do,” said René Abril, CIO, Atlético de Madrid. “Cybersecurity plays a critical role in ensuring that every interaction with Atlético de Madrid — whether purchasing tickets, engaging online, or accessing club services — is secure and seamless. Working alongside Google Cloud has already given us valuable insights that we can use to strengthen our defenses and knowledge about the kind of threats facing every football club around the world.”

Google Cloud’s collaboration with Atlético de Madrid exemplifies how cybersecurity can enable innovation in sports technology. “Sports clubs today operate in an increasingly digital world, making cybersecurity more important than ever,” said Cristina Pitarch, Managing Director EMEA, Google Cloud Security. “Atlético de Madrid’s proactive approach sets a strong example for the industry. We’re excited to support their journey by sharing our expertise, exploring new challenges, and helping them build a secure foundation for the future.”

As technology and sports increasingly intersect, cybersecurity must remain a top priority. Through our ongoing partnership, we aim to set new standards in digital protection, ensuring Atlético de Madrid and its fans can enjoy every aspect of the game with confidence.