AWS Security

Audit-ready AWS in 30 days.

A 98-point security assessment mapped to ISO 27001, SOC 2, NIS2 and DORA — ranked by what an attacker would actually exploit, not by scanner noise. Built by engineers who have contained real AWS account compromises, cryptomining fleets and credential theft.

Book the security assessment — €8,000 fixed

The triggers that bring companies to us

  • An enterprise deal is blocked on a security questionnaire or SOC 2/ISO 27001 evidence you don't have yet.
  • A regulator or auditor set a date. NIS2 and DORA turned "we should improve security" into a deadline with fines attached.
  • Something already happened — an exposed key, a strange bill spike, a GuardDuty finding nobody triaged. (Read how these unfold in our incident war stories and our incident response playbook.)

What you get

98-point assessment

IAM, network, data, logging, detection and resilience — the full checklist we publish openly, executed against your accounts with evidence collected for each point.

Exploitability ranking

Findings ordered by real attack paths — public S3 with credentials beats a missing tag policy. You fix what matters first, with effort estimates per fix.

Compliance mapping

Every finding mapped to ISO 27001, SOC 2, NIS2 and DORA controls — the remediation roadmap doubles as your audit evidence plan.

Detection baseline

CloudTrail, GuardDuty, budget/anomaly alerts and root-account hardening configured or verified — the controls that turn a breach from a quarter-long forensics project into a 2-hour containment.

Pricing

Frequently asked questions

Is this a penetration test?

No — it's a configuration and architecture assessment, which for AWS estates finds more real risk per euro than a pentest. If you need a pentest for compliance, we scope and coordinate one with a specialized partner and fold the results into the same roadmap.

What access do you need?

Read-only security-audit IAM roles (AWS's SecurityAudit managed policy plus scoped additions), deployed via a CloudFormation/Terraform template you review. No write access; everything logged.

Can you actually get us through ISO 27001 or SOC 2?

We deliver the AWS technical controls and the evidence pack — configuration exports, policies, monitoring proof — that auditors ask for. For the organizational side (policies, HR processes) we work alongside your compliance lead or auditor.

What if you find something actively bad?

We tell you the same day, with a containment plan. We've contained live compromises — stolen credentials, cryptomining autoscaling fleets — and the difference between a bad day and a catastrophe is the first two hours. Active exploitation pauses the assessment and switches us to incident mode.

NIS2 / DORA — do they even apply to us?

If you're in financial services (DORA) or an essential/important entity under NIS2 (energy, transport, health, digital infrastructure, and their suppliers), some or all applies — often via your enterprise customers' supply-chain requirements even if you're not directly in scope. The assessment includes a scoping memo for your situation.

Book the security assessment