Services
Dyanet has been building and running production infrastructure since 1997. Alongside cloud, identity and AI engineering, we are the technical implementation partner behind our clients' security and compliance programmes — the part of ISO 27001, SOC 2, NIST, FedRAMP or MLPS 2.0 that actually has to be built, configured and monitored, not just written down.
Our core disciplines
Scalable, terraformed cloud
AWS and Azure landing zones, networking, resilience and cost governance, delivered as code with Terraform so infrastructure is repeatable and auditable.
One identity layer, any provider
AWS Cognito, Microsoft Entra, IAM Identity Center, or your own OIDC/LDAP — SSO, Conditional Access and least-privilege governance.
AI that earns its keep
Claude, Copilot and custom agents wired into Bedrock, Azure or your own infrastructure, each with a scoped identity and full audit trail.
Production that stays calm
Monitoring, patching, backup, disaster recovery and security operations, backed by SLAs and an on-call team.
Ship without surprises
Senior engineering teams, embedded or project-based, for the work that needs taste.
Make the team better
Workshops on reliability, observability, cloud and modern AI craft.
Compliance & certification readiness
Getting audit-ready for a framework like ISO 27001 or SOC 2 — or a market-access requirement like FedRAMP, IRAP or China's MLPS 2.0 — takes two things: the governance policy that defines the controls, and the engineering to actually build and operate them. We handle the second half.
What we implement
| Framework | What we build & operate |
|---|---|
| ISO/IEC 27001 | Access control, logging, encryption, backup and monitoring controls mapped to the ISMS Statement of Applicability |
| SOC 2 (Type I/II) | Technical controls and continuous evidence collection for the Trust Services Criteria being tested |
| NIST CSF / SP 800-53 | Control implementation for identity, protect, detect and respond functions |
| FedRAMP / IRAP / CPCSC | Hardened cloud landing zones and continuous monitoring for US, Australian and Canadian government workloads |
| China MLPS 2.0 | Technical safeguards for classified-protection-level compliance on mainland-operated systems |
On the legal and policy side — the written ISMS, the risk register, the Statement of Applicability, and the broader question of which of these frameworks actually applies to your target markets — we work with our partner Akber on Law, who prepare that foundation as an independent third party (they do not certify; certification comes from an accredited body or licensed CPA firm). See their IT, IP & Compliance section for the legal side of data protection and technology regulation across the US, EU, Pakistan, India, China, Russia and the Middle East.