We have 20+ years of experience working in startups, corporate environments and as freelancers and we're driven by lean product development practices. To help you build security from the ground up we offer the following services:
We can make an assessment of your current cloud environment and development practices, based on industry standards. We share our tools and methods, which can enable you to continuously and incrementally improve your security.
Based on our security assessment, we put together an improvement plan tailored to your needs and circumstances. To help you incrementally adopt the improvements, we can offer you a dedicated lead to support your team.
We can set up a secure by default multi-account environment with you, using infrastructure as code and CI/CD pipelines, inluding e.g. IAM, baselines, centralised logging, devops toolchains, artifacts, networking and automated guardrails.
A cost-effective and cloud-native security data lake for logs enables automated detection and response to security or reliability incidents, as well as valuable business performance insights.
Automated Guardrails are lightweight functions that react to incidents 24/7. They help isolate and recover from incidents in a similar fashion as well established resilience practices such as autoscaling for performance and autorecovery from errors.
We use DevSecOps to verify the effectiveness of the guardrails and controls you have deployed and make sure they operate as intended.