Evolve PavedCloud

Evolve PavedCloud is a developer-first continuous delivery engine designed by DBS Bank, that can be marketed to external organisations that wish to adopt public cloud in an accelerated, secure, and controlled manner. At the same time, it minimises the skills gap required to adopt and operate cloud.

Innovation presentation

Evolve PavedCloud enables developers to rapidly deploy cloud resources at scale in a secure and consistent manner by:

• Securing cloud service provider APIs to prevent misconfigurations,

• Increasing productivity gains through architecture orchestration automation with operational best practices, and

• Demonstrating auditable compliance to data protection practices.

The solution streamlines service and application onboarding for application teams through built-in directive, preventive, and detective controls as well as other aspects such as control quality assurance and governance.

These controls determine how features and parameters are set up before they are released to developers through the developer-first continuous delivery engine that was built to balance agility and security without a need to compromise on either.

PavedCloud secures infrastructure up to the service level as controls are built into service templates which integrates multiple cloud service provider (CSP) services to deliver a particular architectural outcome (or “Service Packages”). These templates form reusable “plug and play” patterns which can be used for stateless and stateful application designs. These patterns also contain operational best practices such as backup and restore.

This allows for stronger and more transparent governance as consistent provisioning outcomes can be achieved through standardised controls.

PavedCloud is also built on a layer of abstraction above the cloud service provider. This removes the need for application teams from knowing specific security groups, networks, instance IDs, etc.

Uniqueness of the project

PavedCloud isn’t just a solution for DBS. It can be marketed to other organisations as it gives them a head start in public cloud. Their developers can apply pre-determined, in-built controls and best practices with reusable architectures during application deployment instead of engineering from scratch – resulting in rapid application builds, simplified operations, and faster time-to-market solutions.

PavedCloud’s built-in controls and best practices mean that teams need not keep up with the rate of change in cloud technologies, reducing the learning curve. This enables higher productivity across the organisation (from infrastructure to cybersecurity to application development), which allows technologists to concentrate on higher value work that drives innovation.

PavedCloud stands out by integrating cloud security enforcement, infrastructure automation, and compliance detection, and guardrails to provide end-to-end coverage from threat prevention (before provisioning) to detection (after application deployment).

This paves the way for public cloud to be adopted and used at scale.