A Comprehensive Guide to Continuous Compliance-as-Code in the Cloud
Authored by: Ian Tivey, Technical Director, Citihub Digital, Paul Jones, Associate Partner, Citihub Digital, Mark Wong, Associate Partner, Citihub Digital, and David Sewell, Partner & CTO, Citihub Digital.
The maturation of public cloud adoption in financial services is challenging (and blurring) the lines of responsibility between infrastructure teams and application teams. This has led to a demand for a more accurate, consistent mechanism to describe how controls should behave in the cloud.
Our favorite approach is using Behaviour Driven Development (BDD) – using Natural Language to express complex system requirements -- along with automated and regular testing within a Continuous Integration and Continuous Deployment (CICD) pipeline. This all falls under our focus on adopting a comprehensive model for managing compliance “as code”. Our guide provides all of the aspects you need to know about for empowering application teams in heterogeneous cloud environments.
Enter your details below to read the full article here.
** Note **
Synechron’s October 2020 acquisition of Citihub Digital allows for multiple synergies across the combined firm. This acquisition expands Synechron’s existing digital, consulting, and technology capabilities across the global financial services and insurance industry’s landscape. Together, the firms provide a targeted focus on digital transformation, architecture/operating model and application modernization, cloud enablement, critical cybersecurity, and other strategic business solutions.
(This white paper was originally published on the Citihub Digital website, March 2020)