Thomas Ledger LLC
AWS Cloud Security Audits & Modernization

AWS security audits that turn risk into an action plan.

Independent, AWS-native assessments for regulated and high-growth teams. Clear findings, prioritized remediation, and optional hands-on execution.

Request a quick consult See what’s included
IAM and access review
Logging and detection
Network segmentation
Encryption and key mgmt
Policy-as-code guidance

Get the AWS Audit Starter Checklist

A concise checklist you can use to prep for SOC 2, HIPAA, PCI, or internal review.

No spam. One email with the checklist. You can unsubscribe anytime.

Services

Pick the engagement style that matches your environment and timeline. We can start with a fast snapshot and expand as needed.

Security Posture Snapshot

Best for quick risk visibility and prioritization.

  • High-impact findings in 5 to 10 business days
  • Top risks, quick wins, and owner-ready tasks
  • Ideal before an audit, renewal, or launch

AWS Cloud Security Audit

Deep configuration review with a clear remediation roadmap.

  • IAM, network, logging, encryption, and data controls
  • Evidence and screenshots where useful
  • Executive summary plus technical report

Compliance Readiness

Map controls to the framework you care about.

  • SOC 2, HIPAA, PCI, FedRAMP-style alignment
  • Control mapping and gaps
  • Remediation plan with sequencing
Want execution help after the audit? We can stay on to implement fixes, harden accounts, and improve guardrails.

How it works

1) Scope

Define accounts, regions, critical workloads, and the outcomes that matter.

2) Assess

Review configs, identity, logs, network controls, and security tooling.

3) Report

You get a prioritized findings list with risk, impact, and fix guidance.

4) Improve

Optional implementation support and follow-up validation.

What we focus on

The common failure points that create real incidents and audit pain.

Identity and access

Least privilege, role boundaries, and safe admin patterns.

Visibility

CloudTrail, config history, detections, and incident-ready logs.

Network controls

Segmentation, endpoints, routing, and security group hygiene.

Data protection

Encryption, KMS key practices, and sensitive data paths.

Guardrails

Policies, SCPs, and account standards that prevent drift.

Actionable outputs

Findings written so engineering teams can execute quickly.

Contact

Tell me what you’re trying to achieve and what framework or deadline you’re facing. I’ll respond with a practical next step.

Email
thomasledger8@gmail.com
Phone
240-424-2524
Services
AWS Security Audits, Compliance Readiness, Modernization

Send a message

This form is currently a placeholder. It can be wired to API Gateway + Lambda + SES in the next iteration.