AWACS.AI / Products / Compliance Assessment

Cloud Compliance
Assessment

AI-assisted infrastructure auditing against CIS Azure Foundations Benchmark v5.0. Evidence-backed findings. Resolution workflows. Delivered in days, not weeks.

Free 30-Min Consult View Pricing ↓
The Short Version

What This Is

You give me read-only access to your Azure subscription. I run 79+ CIS benchmark controls against your actual configurations, collect evidence for every finding, and deliver a report with your compliance score, what's passing, what's not, and exactly how to fix it.

No agents installed. No software deployed. No modifications to your environment. Just a thorough, evidence-backed assessment of your Azure security posture.

Deliverables

What You Get

%

Compliance Score

Overall percentage plus breakdowns by category: Identity & Access, Networking, Storage, Compute, Logging & Monitoring, Security Services. You know exactly where you stand.

Control Applicability Map

Every CIS v5.0 control evaluated and marked Pass, Fail, Warning, or Not Applicable. Your score reflects your environment, not a generic checklist.

>_

Resolution Workflows

Step-by-step remediation for every non-compliant finding. Azure CLI commands, Portal navigation, and policy recommendations. Prioritized by risk.

Evidence Package

Raw CLI output for every control evaluated. Auditor-ready. Suitable for SOC 2 evidence collection, internal governance reviews, or handing to your compliance team.

Executive Summary

One page for the people who approve budgets. Risk posture, key findings, compliance score, and what to do next. No jargon.

Process

How It Works

01

Scope

30-minute call. We define the target subscriptions, agree on what's in scope, and I explain exactly what access I need. No commitment.

02

Access

You assign Azure Reader role (read-only) to my credentials on the target subscription(s). Temporary — you revoke when the assessment is complete.

03

Assessment

79+ CIS Azure Foundations v5.0 controls evaluated against your live environment through direct Azure CLI queries. Every control produces captured evidence. This isn't a questionnaire — it's a technical inspection.

04

Delivery

Complete report, evidence package, and resolution workflows. Includes a 60-minute walkthrough of findings and remediation priorities.

Pricing

Transparent, Fixed Pricing

Custom scoping available for complex environments. Volume pricing for MSPs managing multiple client subscriptions.

Standard
$5,000
Single Azure subscription
The full assessment. Everything you need for a complete picture of your Azure security posture.
  • All 79+ CIS v5.0 controls evaluated
  • Compliance score + control applicability map
  • Resolution workflows for every finding
  • Evidence package (auditor-ready)
  • Executive summary
  • 60-minute walkthrough
  • 5-7 business day turnaround
Free 30-Min Consult
Comprehensive
From $12,000
Multi-subscription environments
Cross-domain analysis for organizations running multiple Azure subscriptions or complex environments.
  • Everything in Standard, all subscriptions
  • Cross-domain analysis (network, backup, identity)
  • 30-day follow-up re-scan included
  • 10-14 business day turnaround
Contact for Scoping
Continuous
$3,500
Per quarter
Quarterly re-assessments to catch configuration drift between annual audits and maintain ongoing compliance.
  • Full Standard assessment each quarter
  • Compliance trend tracking over time
  • Catch configuration drift
  • Priority scheduling
Contact for Details
Audience

Who This Is For

Mid-Market Azure Teams

Production workloads on Azure, SOC 2 or internal audit pressure, need evidence that configurations meet benchmarks without a six-figure consulting bill.

Healthcare & Financial Services

Regulated environments where CIS compliance maps to HIPAA technical safeguards or FFIEC/NYDFS requirements. Need documentation that satisfies auditors.

Pre-Audit & SOC 2 Prep

Building evidence packages for upcoming audits. CIS benchmark reports map directly to SOC 2 trust service criteria.

MSPs & Consultancies

Managing Azure for clients. Need repeatable compliance assessments across a portfolio. Volume pricing available.

Post-Migration Teams

Just moved to Azure. Need a security baseline before misconfigurations become audit findings or incidents.

Platform Engineering

Want to validate that your IaC templates and governance policies are actually producing compliant environments. Trust but verify.

Security

Data Handling

The assessment queries Azure resource configurations via read-only access. No proprietary business data, customer records, or application data is accessed. Scope is limited to infrastructure configuration metadata — the same information visible in the Azure Portal under resource settings.

All evidence is delivered to you. Nothing is retained beyond the engagement unless otherwise agreed.

Organizations with internal policies requiring sovereign processing can contact me for premium options where all analysis occurs within a dedicated Azure boundary.

Also Available

Beyond the Assessment

Remediation Support

Need help implementing the fixes? Scoped remediation engagements priced per finding or as a fixed project.

Architecture Review

Deeper analysis beyond CIS controls. Security design, cost optimization, operational best practices.

Custom Audit Development

Need controls beyond CIS? Custom audit rules for your organization's specific policies and standards.

Get Started

Ready to see where your Azure environment stands?

Free 30-minute scoping call. No commitment. I'll tell you what a CIS assessment would cover for your environment and you decide if it's worth doing.

dustin@awacs.ai Free 30-Min Consult