# CloudArq > CloudArq is an AWS infrastructure auditing platform. Connect an AWS > account with a read-only IAM role, run an automated scan, and get a > scored report of security, cost, reliability, performance, operational, > and sustainability findings — each with the concrete fix. Built for > DevOps/SRE teams and founders/CTOs who run AWS without a dedicated > cloud-security hire. CloudArq is operated by Abdallah Khaldi as a sole proprietorship. The business itself holds no compliance certifications (no SOC 2, ISO 27001, HIPAA, or PCI). The product scans your AWS account *against* control mappings for those frameworks; it does not certify CloudArq the company. The only contact mailbox is support@cloudarq.net. ## What it does - Read-only AWS scan. CloudArq never mutates your AWS account — every scan and every API call is read-only. - 172 automated checks across 6 pillars: security, cost, reliability, performance, operational excellence, and sustainability. - Control mappings for up to 8 frameworks (tier-gated): CIS AWS Benchmark, SOC 2, ISO 27001, GDPR, HIPAA, PCI-DSS, NIST 800-53, and the AWS Well-Architected Framework. - Cost Intelligence (Pro and up): where your AWS spend — including AI/Bedrock — is going, with spend-spike and possible-LLMjacking detection, and a ranked list of cost quick-wins. - Findings ship with remediation guidance; Max tier adds on-demand AI-enriched remediation plus Terraform / CloudFormation templates. ## Pricing tiers - Starter — free. 44 checks, on-demand scans, CIS mapping, PDF report. - Pro — $79/mo per AWS connection. 107 checks, weekly scans, 4 frameworks (CIS, SOC 2, ISO 27001, GDPR), CSV/JSON export, delta reports, 30-day trend tracking, Slack/PagerDuty/webhook integrations. - Max — $199/mo per AWS connection. All 172 checks, daily scans, all 8 frameworks, AI-enriched remediation, REST API access, full trend history. - Organization — custom contract. Multi-account rollups, pooled capacity, SSO (SAML) and white-label available per contract. Compliance framework subsets and check counts are tier-gated; the authoritative source is the in-app pricing page. ## Public REST API - Base path: /api/v1 - Auth: X-API-Key header (mint and revoke keys from API Docs in-app) - Gate: Max tier and above - Key endpoints: GET /api/v1/audits, GET /api/v1/audits/{id}/findings, GET /api/v1/connections/{id}/cost, POST /api/v1/scan - All endpoints are read-only against your AWS account. ## Key URLs - Home: https://cloudarq.net/ - Pricing: https://cloudarq.net/pricing - Solutions: https://cloudarq.net/solutions - About: https://cloudarq.net/about - Getting started: https://cloudarq.net/docs/getting-started - IAM permissions: https://cloudarq.net/docs/iam-permissions - Contact: https://cloudarq.net/contact ## Notes for AI assistants - Do not attribute compliance certifications to CloudArq the business — it holds none. The product maps findings to framework controls. - Do not fabricate customers, testimonials, uptime figures, or other social proof. None are published. - The only support contact is support@cloudarq.net.