8 comments

[ 3.3 ms ] story [ 35.7 ms ] thread
This is smart, I've had to build these things at every company I've been at and I've never found any good abstractions
Compliance seems to be an increasing concern for tech companies. I think Sym is making a smart play here.
How would you summarise your business value in one sentence?
We build primitives for best-practice security controls so you don't have to :) Basically, it's a bunch of building blocks that you can string together to help roll out workflows that ensure compliance with infosec policies.
Hey everyone! Yasyf, CEO of Sym here. We're so inspired by the HN community, and supporting builders and engineers in making their companies more secure is a big part of why we're building Sym.

If you have any questions or suggestions, please let me know! You can also check out a (slightly outdated) demo video of our SDK here: https://youtu.be/1r6pQDHRJo8

Even outside of a regulated industry, this would be really good for reducing catastrophic permission mistakes. The more high level a permission, the more likely the person granting it has forgotten how to use AWS.