I do this at significant scale and you need a high tolerance for a lot of different negatives to last doing it for governments (and adjacent).

The only exception to this rule I would say is AWS GovCloud, which also might be one of the only chill teams to work at across Amazon. It turns out having "only one way to do it", a system proved through a rigorous vetting process and a thoroughly worked-through contracting process leads to a pretty fantastic work environment for practitioners.

Trying to reimplement that piecemeal is for tougher men than me though. I think I'd rather sit on hot nails.