I perform manual-led cloud security posture assessments for AWS, GCP, and Azure — identifying misconfigurations that automated tools miss because they lack the context to understand when a combination of individually-acceptable settings creates a real exposure.
Audit coverage: IAM policy review (overly permissive policies, wildcard actions, privilege escalation paths, cross-account trust); network exposure (public-facing instances, unrestricted security groups, open S3 ACLs and bucket policies); encryption at rest and in transit; CloudTrail/Audit Log coverage gaps; monitoring and alerting blindspots; and resource-level privilege control gaps.
Deliverables: prioritized findings report with severity ratings (Critical/High/Medium/Low), evidence, risk explanation, and step-by-step remediation guidance for each finding. Executive summary for leadership. Optional compliance mapping to CIS Benchmark, SOC 2, PCI-DSS, HIPAA, or ISO 27001.
I need read-only rights only — I'll provide the exact IAM policy JSON before we start. Remediation implementation available as an add-on.