Skip to main content
Black Tyger Strategies

Cloud Readiness Assessment

Cloud Readiness Assessment — Free Assessment

Assessment Form

Contact Name(Required)
Are mandatory resource tagging standards enforced via policy (SCP / Azure Policy / Org Policy)?(Required)
Is the cloud environment organised into a logical account/subscription hierarchy?(Required)
Is MFA enforced on all human accounts including root/global admin — with no exceptions?(Required)
Is SSO integrated with all cloud platforms for centralised provisioning and deprovisioning?(Required)
Is a CSPM tool (Security Hub, Defender for Cloud, Security Command Center) running continuously?(Required)
Are application secrets stored in a secrets manager — not in code or environment variables?(Required)
Is infrastructure provisioned via IaC stored in version control — not applied manually?(Required)
Are production workloads deployed across multiple Availability Zones?(Required)
Are security groups and firewall rules reviewed quarterly for overly permissive rules?(Required)
Is the network architecture based on a documented VPC/VNet design with clear subnet segmentation?(Required)
Are budget thresholds defined per account/project with automated alerts at 80% and 100%?(Required)
Is cloud spend broken down by team, product, environment, and cost centre via tagging?(Required)
Is all storage encrypted at rest with key rotation policies defined and enforced?(Required)
Are all stateful workloads covered by automated backups with defined retention?(Required)
What percentage of application deployments are automated via a CI/CD pipeline?(Required)
How often are changes deployed to production? (Daily or more = high; monthly or less = low.)(Required)
Are application workloads containerised and orchestrated via a managed Kubernetes service?(Required)
Is there a unified observability stack (logs, metrics, traces) covering all containerised workloads?(Required)
Are RTO and RPO targets defined per workload based on actual business impact analysis?(Required)
Is the DR plan tested at least annually for Tier 1 workloads via full failover exercise?(Required)
Is audit logging enabled for all accounts covering management and data plane events?(Required)
Is a tool running continuous compliance checks against applicable frameworks?(Required)
Is connectivity to on-premises via a dedicated private link meeting latency and availability needs?(Required)
If multiple cloud providers are in use, is there a unified CSPM and cost management layer?(Required)