Outcome: A prioritized remediation plan aligned to Azure security best practices and your chosen standard (ISO 27001/SOC 2 “lite mapping”).
Deliverables
- Findings Matrix: IAM, network, data protection, logging/monitoring, backups/DR, policy.
- Prioritized Remediation Plan with effort, owner, dependencies.
- Control Mapping Summary: how current state aligns and gaps from security best practices.
- Executive Brief: Detailed report on findings and time-to-green roadmap.
Timeline: 2 weeks
Guardrails
- 2 subscriptions, 8 critical workloads, 1 identity provider (Entra ID).
Indicative fixed fees
- Essentials: €5,000
- Plus: €8,000 (add configuration of Azure policies for future compliance)
- Enterprise: €12,000 (adds DR pattern review, backup drills plan)