Umbrl is a UK-based home insurance startup on a mission to simplify how people protect their homes. With flexible, user-friendly policies tailored to individual lifestyles, Umbrl blends innovation and experience to deliver smart, transparent insurance products.
The Challenge
Before going to market, Umbrl needed expert support to establish a secure, compliant, and scalable Google Cloud foundation. As a regulated financial services provider, they had to meet strict requirements from day one—while keeping their lean engineering team focused on product development.
Umbrl had successfully built an MVP, but before launch, they needed a Google Cloud Landing Zone designed for:
- Regulatory compliance (including GDPR, ISO 27001, and Cyber Essentials Plus)
- Security best practices aligned to NIST Cybersecurity Framework
- Scalability and reproducibility
- Infrastructure as Code to support rapid iteration
- Developer-friendly defaults with minimal overhead
As a startup in a regulated industry, they needed a trusted Google Cloud partner to deliver a compliant setup—quickly and without compromise.
The Solution
A Compliant Google Cloud Landing Zone
MakeCloud delivered a fixed-scope engagement to design and implement a secure, scalable Google Cloud Landing Zone tailored to Umbrl’s business and compliance needs.
Key outcomes included:
Multi-project GCP structure for dev, test, and production environments.
Identity federation and IAM aligned to the principle of least privilege.
Centralised logging, monitoring, and billing for visibility and control.
Secure networking with private VPCs, firewall rules, and Cloud NAT.
Terraform automation for reproducibility and rapid onboarding.
Our solution followed Google Cloud best practices for regulated workloads, providing Umbrl with a production-ready cloud environment that meets both technical and compliance expectations.
The Result
Accelerated launch
Speed without compromising security or compliance.
Compliant from day one
Built to align with ISO 27001, NIST CSF, GDPR, and Cyber Essentials Plus.
Clear visibility and Control
Centralised cost tracking, access policies, and audit-ready logging.
Infrastructure-as-Code
Full automation with Terraform for repeatable, scalable deployments.
Built to scale
A flexible, modular Landing Zone designed to grow with Umbrl.
MakeCloud handled everything. We needed a secure setup that just worked — and they delivered exactly that.
Emmanuel Clement-Wilz | Founder at Umbrl
Looking for Google Cloud Compliance Support?
MakeCloud helps startups and scale-ups build secure, compliant environments on Google Cloud. Whether you need a GCP Landing Zone, help with ISO 27001 alignment or Terraform automation, we’re here to help. Click to learn more.
FAQs
Q: What is a Google Cloud Landing Zone?
A Landing Zone is a foundational GCP setup that includes secure networking, IAM, logging, and monitoring—configured according to cloud and compliance best practices. It helps companies scale safely and efficiently.
Q: Can MakeCloud help regulated companies with Google Cloud compliance?
Yes. We work with clients in regulated industries—including fintech, insurance, and healthcare, to deliver cloud infrastructure that meets standards like ISO 27001, GDPR, and Cyber Essentials Plus.
Q: Does MakeCloud use Infrastructure as Code for Landing Zones?
Absolutely. We use Terraform to automate all GCP resources, ensuring consistent, reproducible environments that grow with your business.