for AWS and Azure clouds
how we work
On the Pre-engagement phase we'll discus the type of testing you would like to get, the scope of testing (it is usually based on range of components used), schedule, reporting, contact points and so on.
During the Security Assessment phase we'll identify Cloud Infrastructure weaknesses.
Reporting phase embrace collecting all findings and formatting them for presenting. Depending on agreement on the first phase it might be document, presentation, or tickets in your bug tracking system (like JIRA). All findings will be risk and severity classified. Also we'll provide remediation and development best practices to eliminate such kind of issues in future. You can request a Cloud Security Assessment Sample Report using the contact form.
When all planed fixes will be ready (which could be made by our engineers), we'll schedule Verification phase. In this phase we'll verify security fixes implementation for discovered issues.