Remember that the prime directive for cloud security is not to slow down the DevOps process. That said, you need to protect corporate data and enforce security policies and best practices. Guardrails do not block activity; rather it enforces the policies as intended. You can set whitelists and exceptions for resources where the guardrails don’t apply. For example, if admin access is opened for a security group, the group isn’t blocked since that would prevent administrators from doing their jobs. Instead, DisruptOps sets the policy only to allow connections from authorized corporate IP ranges. Likewise, if an administrator account requires MFA and that’s turned off, as opposed to preventing all access (and taking the admin offline), DisruptOps will reset the policy to require MFA.