AWS account hygiene & cost
Resource inventory, tagging discipline, ghost resources, right-sizing, reserved capacity coverage.
Two weeks. One report. Real answers.
Fixed-price AWS infrastructure and CI/CD audits for production SaaS teams.
Who this is for
You run production on AWS. Your pipelines ship code, most of the time. The infrastructure has grown the way infrastructure grows — one project at a time, no master plan — and you have a nagging sense that you're paying for things nobody remembers turning on, that the IAM story would get awkward under scrutiny, and that the pipeline takes longer than it should. Nobody on the team has had two uninterrupted weeks to look at the whole thing end-to-end.
I do.
What you get
Two weeks, fixed scope:
- Written assessment of your AWS environment and delivery pipelines. Usually 15–25 pages.
- Prioritized remediation roadmap, scored by effort vs. impact.
- Quick-wins list — things you can fix inside the two-week window.
- 60–90 minute readout with your engineering team, Q&A included.
What I look at
Security posture
IAM structure, secrets handling, network segmentation, encryption at rest and in transit, logging and audit trail coverage.
CI/CD pipelines
Jenkins, GitHub Actions, whatever you're running. Build reliability, rollback paths, credential handling, parameterization, shared library hygiene.
Reliability & operations
Monitoring and alerting coverage, runbooks (or absence of them), backups, DR posture, incident response readiness.
Infrastructure-as-Code
Terraform / CloudFormation / CDK coverage, drift, modules vs. snowflakes.
How it works
Week 1
Kickoff, read-only access to AWS and CI/CD systems, 2–3 short interviews with engineering leads.
Week 2
Synthesis, written report, readout call.
Async-friendly. NDA standard.
Price
$5,995. Flat.
Two weeks. One written report. One readout call.
Multi-account environments quoted separately.
What's not included
Implementation of recommendations, ongoing retainer work, compliance certification (SOC 2, NIST 800-171, CMMC), or application code review. Any of those can be scoped separately after the audit if it makes sense.
Tell me about your setup.
A short description of your account count, team size, and primary workloads is enough to start. We'll set up a 30-minute scoping call. Most engagements begin within two weeks of that.