Why do we need to fill out Security Questionnaires if we have a SOC 2 Type 2 Report?
SOC 2 applies to any technology service provider or SaaS company that handles or stores customer data. Going through a SOC 2 audit is a rigorous 8-9 month process, but in spite of
Are You Spending Too Much on DevOps?
The DevOps function in an organization is responsible for deploying, securing and maintaining applications in the cloud. Let’s dissect the DevOps costs and the factors that influ
Avoiding Conflicts Between DevSecOps and Developer Productivity
Developers in a technology company are responsible for innovating customer facing features and fixing errors. Their efforts are distinctly visible within and outside the organizati
Part 2: DevOps from Developer Empowerment to a Separate Role
Previously we described how adoption of Service Oriented Architecture (SOA) at AWS gave birth to a DevOps culture where Developers would own the E2E lifecycle of an application fro
Part 1: How Service Oriented Architecture Gave Birth to DevOps
In the traditional SaaS (Software-as-a-Service) industry, around 2013, companies had three distinct organizations: Development, QA and Operations. Developers built the code for the
Security and Compliance in the Cloud — Do it Right the First Time!
Startups that need compliance must follow a growing number of security standards — SOC 2, ISO 27001, PCI, HIPAA, and GDPR to name a few. Every standard gives rise to a list of ha
Stop Reinventing the Wheel — Automate Your Application Centric Infrastructure
For years businesses large and small have been writing Infrastructure-as-Code to deploy their applications to the cloud. While IaC is an admirable way to shave the time and effort
Solving AWS Access Key Management for Local Development using a Cloud IDE
Until recently, applications were built using infrastructure components like SQL Databases, elastic search, file share and web servers which can be easily replicated in a developer
Understanding How Infrastructure-as-Code Struggles at Scale and No-Code/Low-Code Is the Future
Infrastructure-as-code (IaC) is a very well known and popular technology for cloud infrastructure provisioning using principles of application development i.e. writing code (a prog
Cost efficiencies by migration to public cloud and using Digital Workers for DevOps
Executive Summary DuploCloud was engaged with its strategic customer, a world’s leading supply chain risk management platform, to migrate their decade old IT infrastructure