Our Approach

For a lot of our products, there is only one chance to get it right and very few production opportunities to learn non-costly lessons. In this section we outline the basic requirements that all delivery of code – and therefore the code itself – should have.

Security should be at the heart of any approach that we take: the less we need to manage and the less attack surface we create, the better.

Sections

• Application & Cloud Security
• Authorization Policy
• Code Review
• Coding in the Open
• Coding Standards
• Gamedays
• Hosting
• Incidents
  • Severity Levels
  • Template
• Load Testing
• Monitoring & Error Reporting
• Pipelines
• Runbooks
• Production System Requirements
• Third Party Validation
• Tooling

Relevant Articles

• Pipelines Everywhere
• Our approach on automated regression testing
• How Comic Relief’s used Snyk to automate security and boost productivity