Frequenty Asked Questions

Illustration of questions-and-answers

what is a Cloud Foundation?

Before deploying a workload on the public cloud there are many moving parts which have to be coordinated. There are technical parts such as connectivity or security and organizational parts such as finance or operations.
A secure, scalable Cloud Foundation will significantly accelerate your cloud adoption journey and is the key to success.

which cloud providers do we support?

We are mainly specialized in secure enterprise deployments on AWS. Some topics are not specific to a cloud provider so feel free to get in touch anyway!

what is Infrastructure as Code?

Infrastructure as Code (IaC) is the management of infrastructure in a descriptive model, using software development methods such as versioning of source code.
Terraform is a powerful open-source Infrastructure as Code software and an outstanding tool for cloud deployments.
Visit the Terraform Registry and take a look at some of our free to use public modules.

what is Security / Policy as Code?

Similar to Infrastructure as Code the industry shifts to Security / Policy as Code. According to McKinsey and Gartner the success of security at scale depends on automation and codification.
We fully agree and built a solution for cloud security event management based on Policy as Code.
Get in touch to learn more about SEMPER.

what are CIS Controls?

The Center for Internet Security publishes best practices guidelines for IT security. Currently published in version 8 it includes 18 control domains from Data Protection, Audit Logging, Service Provider Configuration to Penetration testing and more
Take a closer look and visit the CIS Control Navigator.

what is auto-remediation?

Auto-remediation describes the technique to automatically react on a policy violation and actively engage to enforce to a policy. If for example an AWS Security Group with insecure rules is deployed, the Security Group could be automatically destroyed by auto-remediation.

what is FinOps?

FinOps is shorthand for “Cloud Financial Operations” and describes finance best practices for the cloud. Traditional processes are at their limits with pay-as-you-go models, where the costs scale with the actual workload.
It is all about optimizing cloud spend to get the most value for the business.

what is GitOps?

GitOps describes the concept of using Git as the central version control system to manage the lifecycle of a solution.
Many tasks such as deployments, automated tests and approval workflows are all triggered and managed by Git events while keeping everything versioned.

what is CI/CD?

CI/CD is the combined practices of continuous integration (CI) and continuous delivery or continuous deployment (CD).
CI is a modern software development practice in which incremental code changes are made frequently and reliably. Automated build-and-test steps triggered by CI ensure that code changes being pushed to production are reliable.
The code is then delivered quickly and seamlessly as a part of the CD process.

what is segregation of duties?

Segregation of duties is the practice of dividing critical tasks and responsibilities among multiple individuals within an organization to prevent conflicts of interest and reduce the risk of fraud or errors.
By ensuring that no one person has complete control over an entire process, controls and practices are established that promote transparency and accountability.