Cloud security assessment
A point-in-time review of your AWS, Azure, or GCP posture, with a remediation plan and named owner per finding.
What we deliver
- Account discovery and inventory
We map subscriptions, accounts, projects, and regions in use, and build one view of the cloud estate before the assessment starts.
- CSPM posture scan
Misconfigurations across controls, networking, and storage are scanned with Tenable Cloud Security or Aikido Cloud, picked to fit the customer stack.
- Identity and access review
IAM roles, service accounts, and publicly accessible resources are reviewed against a least-privilege baseline.
- Workload posture on Falcon Cloud Security
Containers, serverless functions, and VMs are reviewed for runtime risk and known vulnerabilities with Falcon Cloud Security where the customer runs CrowdStrike.
- Data exposure check
Public buckets, missing encryption-at-rest, and open databases are identified and listed with a concrete action per finding.
- Remediation plan with ownership
Findings are prioritised by severity and business criticality, with a named owner and proposed date per line, ready for IT operations.
How we deliver this service
- In a project
Typically two to three weeks from discovery to delivered remediation plan, the primary delivery model.
- As part of a service
The cloud baseline inside Secured by FM CyberSecurity, or the starting point for a broader consulting engagement.
