Golem Trust Computing Ltd.¶
Golem Trust Computing operates from a converted fish warehouse near the Shades in Ankh-Morpork. Ponder Stibbons (former HEX operator at Unseen University) and Adora Belle Dearheart (postal systems expert) provide cloud hosting for the city’s merchant guilds.
They host critical systems for the Patrician’s Office, the Royal Bank of Ankh-Morpork, and merchant guilds across the Circle Sea. All infrastructure runs on Hetzner Cloud in Finland. Everything is European or open source.
This chronicles their technical journey building security.
- Startup
- Scale-up
- Enterprise
- The Kubernetes migration
- Service mesh and mutual TLS
- The Assassins’ Guild encryption requirement
- Policy as code with OPA
- Vulnerability management at scale
- The Bug Bounty programme
- Threat intelligence with MISP
- Supply chain security
- Behavioural analytics and ML detection
- Red Team operations
- Deception technology
- Runtime security with Falco
- Chaos engineering
- Not covered: Audit compliance
Not covered: audit compliance¶
Each phase focuses on what is actually built: the machinery humming in the back room, the tools that occasionally spark, the automation that behaves itself most days, and the security woven into daily graft. Once the real work is done, the evidence more or less accumulates by itself, like paperwork in the Patrician’s antechamber. Cross references to the purple crossroads point out which bits happen to keep auditors happy, but the real motive is stopping threats.