This page provides a high-level summary of responsibilities between AWS, Dudobi, and you (the client) for managed AWS environments.
It serves as an executive briefing on our shared responsibility model.
Three-Layer Shared Responsibility Model
AWS Foundation Layer
AWS is responsible for:
- Physical data centres and infrastructure
- Host operating systems and hypervisors
- Core network infrastructure and availability zones
AWS provides the secure, reliable foundation for everything we build upon.
Dudobi Managed Services Layer
Dudobi is responsible for:
FinOps
- Continuous cost visibility and spend analysis across your AWS accounts
- Rightsizing, idle resource elimination, and storage tiering
- Savings Plans and Reserved Instance management
- Budgets, alerts, and guardrails aligned to your business objectives
SecOps
- 24x7 security monitoring, threat detection, and incident response
- AWS security service management (GuardDuty, Security Hub, CloudTrail)
- ISO 27001 and ISO 27017 compliance implementation and maintenance
- Vulnerability assessments and security policy enforcement
CloudOps
- ITIL-compliant service desk, platform governance, and identity and access management
- Network operations and 24x7 network and security operations centre coverage
- Capacity management, storage management, and backup and disaster recovery
- Advanced monitoring and alerting
DevOps
- Automated, consistent deployment processes across all environments
- Pipeline management and CI/CD tooling aligned to your AWS platform
- Environment consistency across development, test, and production
- Elimination of single-person dependency in release and deployment processes
Dudobi manages the technical complexity so you can focus on your business.
Client Business Layer
You and your organisation remain responsible for:
Data & Content
- Data classification and privacy compliance
- Business data backup requirements
- Data retention policies
- Encryption key management decisions
Applications & Business Logic
- Application code security
- Business process definitions
- Application-level access controls
- Custom application monitoring requirements
Business Continuity
- Business impact analysis
- Recovery time and point objectives
- Business continuity planning
- Regulatory compliance requirements
Governance
- Internal policies and procedures
- Legal and contractual obligations
- Audit coordination
- User training and awareness
You retain control over your business data, applications, and strategic decisions.
Key Benefits of Our Model
Clear Accountability
- Well-defined boundaries prevent confusion
- Explicit ownership for each responsibility area
- Streamlined escalation processes
Enhanced Security
- 24x7 security monitoring and response
- ISO 27001 certified processes
- Proactive threat detection and mitigation
Operational Excellence
- ITIL-compliant service management
- Continuous monitoring and optimisation
- Regular performance and cost reviews
Strategic Focus
- Dudobi handles technical complexity
- Your team focuses on business outcomes
- Reduced operational overhead
Service Level Commitments
All services are delivered according to our published Service Priority Levels with defined:
- Response times
- Resolution targets
- Communication requirements
- Escalation procedures