Platform overview
See how AiVRIC orchestrates connectors, guardrails, and evidence to keep your AI estate safe. Modeled after the clarity of GitLab's handbook, adapted to AiVRIC's security-first UX.
Control plane
Data intake
Agentless cloud scans, Kubernetes admission hooks, Git provider APIs, and ticketing webhooks feed the control plane.
Streaming + scheduled
Policy engine
Rules evaluate configuration, runtime events, and AI interactions. Supports dry-run, monitor, and enforce modes.
Guardrails + compliance
Evidence & reporting
Every decision is logged with context for auditors and owners. Exportable bundles align to SOC 2, ISO 27001, and AI policies.
Auditable by default
Connectors
| Type | Coverage | Deployment |
|---|---|---|
| Cloud (AWS/Azure/GCP) | Config posture, identity hygiene, data protection, network boundaries. | Read-only IAM role with scoped policies; optional remediation role. |
| Kubernetes | Workload policies, runtime controls, admission safeguards, secret scanning. | Helm chart; can enforce via admission controller or monitor-only. |
| Git providers | Repo settings, branch protection, token hygiene, secret detection. | OAuth app with least-privilege scopes. |
| Ticketing/Chat | Alert routing, assignment, status sync, runbook links. | Webhook or app install with channel scoping. |
Guardrails & automation
- Policy packs: Pre-built controls for SOC 2, ISO 27001, HIPAA, and AI responsible use.
- Modes: Start in monitor, graduate to enforce after review. Every change is traceable.
- Actions: Auto-remediate with playbooks; open tickets with owners and due dates.
- Signals: Combine config, behavioral, and AI-specific signals (prompt misuse, data egress) for context.
- Evidence: Each control logs input, decision, and action for audit trails.
- APIs: Export findings to SIEM/SOAR; manage guardrails as code.
Observability
Activity log
Immutable log of access, configuration changes, and enforcement decisions.
Findings
Filter by severity, workspace, control type, or AI model. Link directly to tickets.
Reports
Generate weekly summaries for stakeholders; schedule delivery to email or chat.
CloudSignals+RiskOps™
CloudSignals+RiskOps™ is AiVRIC's always-on posture monitoring and compliance automation engine. It powers all connector telemetry, policy evaluation, framework mapping, and evidence collection across your connected providers.
Continuous scanning
Automated audits run every 24 hours per connected provider — detecting misconfigurations, identity drift, and posture degradation without manual intervention. On-demand scans available at any time.
Compliance automation
Findings are continuously mapped to SOC 2 TSC, PCI DSS v4.0, ISO/IEC 27001:2022, CMMC L2, CIS Benchmarks, and NIST CSF 2.0. Evidence is captured automatically for assessors.
Risk scoring
An environment-level posture score aggregates findings weighted by exploitability, asset criticality, and control coverage gaps. Trend lines show whether posture is improving over time.
Supported providers
AWS, Microsoft Azure, Google Cloud Platform, Kubernetes, GitHub, Microsoft 365, MongoDB Atlas, and Alibaba Cloud. See the Connectors guide for setup steps.