Assessments
Quick-hit architecture and risk reviews. You get a senior AWS engineer's read on your environment — scoped in days, delivered in a week, with a prioritized backlog you can action immediately.
Answers in days, not months
- Architecture review against WAF pillars
- Risk scoring by business impact
- Prioritized findings with evidence
- Target state recommendation for each finding
- Written report with executive summary
- 60-minute walkthrough call included
Assessment Types
Single assessment or bundled — we scope each engagement to match your priority.
From kickoff to report in 5–7 days
Kickoff & Scope Lock
60-minute call to agree on scope, access requirements, and success criteria. We don't start until we're aligned on what "done" looks like.
Data Collection & Analysis
CloudTrail logs, cost reports, security findings, architecture diagrams. We build the full picture before drawing conclusions.
Findings & Recommendations
Every finding is scored by impact × urgency. We write up the top findings with target-state recommendations — not generic best practices.
Report & Walkthrough
Written report with executive summary, detailed findings, and prioritized backlog. 60-minute call to walk you through it and answer questions.
Don't fix what you haven't measured
Most teams have a vague sense of what's wrong — but no structured data to prioritize. An assessment gives you that baseline. You stop guessing and start acting on evidence.
The assessment also tells you whether we're the right firm for what comes next. If your situation is more complex or simpler than expected, we'll say so — and point you to the right solution, even if that's not us.
What you walk away with
- A written report (PDF) with executive summary and detailed findings — defensible in front of leadership and engineering
- A prioritized backlog scored by impact × urgency — you can drop it straight into Jira or Linear
- A target-state recommendation per high-impact finding — not "implement best practices"
- A 60-minute walkthrough call to align your team on what was found and what to do about it
- A clear pointer to the next step — Professional Services, a Retainer, in-house remediation, or "you don't need us"
- A starting baseline you can re-measure against in 6 months — to know what actually improved
Frequently asked questions
How is an assessment different from the Well-Architected Review?
Scope and depth. An assessment is a focused, 5–7 day read on one dimension — cost, security posture, performance, or architecture. The Well-Architected Review is the full six-pillar audit over four weeks. Many clients start with an assessment and graduate to the full review.
What do you need from us?
Read-only access to the accounts in scope and a kickoff call to lock the scope. Data collection runs against CloudTrail, Config, cost reports, and existing diagrams — no agents, no production changes.
What exactly do we get at the end?
A written report with an executive summary, findings scored by impact and urgency, a target-state recommendation per finding, and a 60-minute walkthrough. The backlog is formatted so you can drop it straight into Jira or Linear.
Can you assess just our AWS bill? Just security?
Yes — that is the design. Pick one lens (cost scan, security posture, performance baseline, sustainability) or bundle several. Each is scoped to stay inside the 5–7 day window.
What happens after the assessment?
You own the findings. Remediate in-house, hand us the top items as fixed-scope work, or do both. If the situation calls for a different firm or no work at all, the report says so — the assessment is also how we both find out whether we are a fit.
What does it cost?
Fixed price per assessment type, quoted on the scoping call within 24 hours. No hourly billing.
Know where you actually stand
No commitment required. We'll scope the assessment over a 30-minute call and give you a clear proposal within 24 hours.
Request an Assessment