Cloud native security and compliance reviews

Benefit from our experience working with a wide range of use cases for cloud-native technology all over the world. We help design, build, and operate robust, cost-efficient, and scalable services – on-premise, in the cloud, or in hybrid environments. We guide you along the Kubernetes learning curve and help realize your optimal cloud-native infrastructure.

One time efforts

€950, 1 day

We review your infrastructure based on our extensive experience security hardening Kubernetes clusters and surrounding open source projects.

Based on architectural documents, a joint review meeting (either on-site or remotely) and potential source code access we review the following:

  • Infrastructure architecture
  • Container repository
  • Base image choices
  • PodSecurityPolicies
  • Network policies
  • Role based access control
  • CI/CD

Output is a complete report together with suggestions for improvements.

€4900, 5 days

We help translate regulatory requirements such as PCI-DSS, ISO-27001, GDPR, SOC-2, banking licences requirements and similar into a security hardened configuration for your cloud-native infrastructure. 

Based on our experience helping regulated organisations make the transition to Kubernetes and container based development we detail the technical roadmap for complying with your specific regulations. Depending on your status and challenges we also implement PoCs based on your requirements.

Output is a technical implementation roadmap and PoC implementations for the specific areas where you want extra guidance.

€4900, 5 days

We harden your existing cloud-native infrastructure based on best practices. This includes configuration as well installation of new features based on your requirements.

  • OPA
  • Falco
  • PodSecurityPolicies
  • Network policies
  • Role based access control
  • Audit trails
  • Automated vulnerability scanning

Output is a cloud-native infrastructure platform secured according to best practices, tailored to your needs and often compliant with whatever regulations you might have.

T&M basis

We help bring your cloud-native vision into reality, using best of breed open source projects or our own solutions. We like working face to face but as a lot of our customers are international we are also really good at driving remote teams.