AI25 March 20263 min read
UK AI regulation in 2026: shipping enterprise AI in a sector-led world
What the UK’s sector-led approach means for governance, delivery, and real-world AI risk management.
Our Thoughts
Field notes from teams shipping serious digital programmes
Deep technical perspective on architecture, delivery, AI, cloud, and security from specialists accountable for production outcomes.
Published
22 thoughts
Coverage
6 topic areas
Latest update
25 March 2026
Featured Briefing
Multi-account strategy on AWS: the cleanest way to reduce risk
How AWS Organizations + guardrails reduce blast radius and make access control manageable at scale.
Showing 21 of 22 thoughts
Cloud25 March 20263 min read
FinOps 2026: cloud cost optimisation becomes technology value management
How FinOps is shifting upstream—and what delivery teams should do next.
CostFinOps
Read Thought
AI25 March 20263 min read
FinOps on AWS: 4 building blocks that make cost control sustainable
Tagging, trustworthy cost data, owner-routed alerts, and a monthly optimisation cadence.
CostFinOps
Read Thought
Security25 March 20263 min read
Software supply chain security in 2026: practical steps for delivery teams
Why vendors, dependencies, and CI/CD are the new perimeter—and how to respond.
SecuritySupply Chain
Read Thought
Automation25 March 20263 min read
CI/CD hardening for AWS deployments: treat your pipeline as production
Pipelines can deploy and mint credentials—secure them like production with least privilege, approvals, and auditability.
AWSCI/CD
Read Thought
Cloud25 March 20263 min read
Disaster recovery on AWS: pick a strategy you will actually test
Backup/restore vs pilot light vs warm standby: choose DR based on RTO/RPO and rehearse it.
AWSReliability
Read Thought
AI25 March 20263 min read
Serverless vs containers on AWS: a decision framework
A clear way to choose Lambda vs ECS/Fargate based on workload shape, latency needs, and team operating model.
AWSServerless
Read Thought
Microsoft 36525 March 20263 min read
Next.js 15.5 for business teams: upgrades, performance, and safer releases
What changed in Next.js 15.5 and how to upgrade without breaking production.
Next.jsWeb
Read Thought
Technology25 March 20263 min read
Azure reliability: building for failure (and learning from status pages)
Reliability is a system—architecture, operations, and communication working together.
TechnologyReliability
Read Thought
AI25 March 20263 min read
Agentic AI: how to ship systems that can act—without losing control
Guardrails, permissions, auditability, and governance patterns that actually work.
AIAgentic AI
Read Thought
AI25 March 20263 min read
A delivery model that scales: discover, design, develop, deliver & evolve
A proven approach for shipping software, AI and cloud programmes with less risk.
AI25 March 20263 min read
Adding AI to existing products: the checklist most teams miss
Data contracts, evaluation, and cost control—how to make AI features stick.
Security25 March 20263 min read
Cyber Essentials vs real security: building a baseline that holds up
Compliance is helpful; operational security is essential. Here’s the baseline.
Security
Read Thought
Technology25 March 20263 min read
Build vs buy in 2026: a framework for software decisions
A practical way to decide what to buy, what to build, and what to own.
Technology
Read Thought
AI25 March 20263 min read
AI on AWS: ship value without runaway spend
How to cap experimentation, design data boundaries, and make inference production-safe without blowing the budget.
AIAWS
Read Thought
Cloud25 March 20263 min read
Event-driven architecture on AWS: where it wins (and where it hurts)
How to use SQS/EventBridge safely: contracts, idempotency, correlation IDs, and operability guardrails.
AWSEvent-driven
Read Thought
Cloud24 March 20263 min read
Observability on AWS: dashboards don’t prevent incidents
A practical approach to SLOs, tracing, and customer-journey monitoring so you can detect and recover faster.
AWS
Read Thought
Security24 March 20263 min read
IAM on AWS: the fastest security win is boring
Roles, least privilege, environment separation, and routine access reviews: the IAM basics that prevent most incidents.
SecurityAWS
Read Thought
Cloud24 March 20263 min read
Cost optimisation on AWS: a practical weekly checklist
A weekly AWS cost optimisation routine that engineering teams will actually follow.
CostFinOps
Read Thought
Cloud24 March 20263 min read
AWS reliability: 7 patterns we implement most often
A practical reliability checklist for AWS: blast radius containment, tested failover, progressive delivery, and PES-style learning.
AWSReliability
Read Thought
AI24 March 20263 min read
Reliability on AWS: build for failure, not perfect days
AWS outages aren’t something you outsource. Here’s how to design for containment, recovery, and confident change on AWS.
AWSReliability
Read Thought