Home / Services / Well-Architected Reviews

AWS Well-Architected Reviews

Comprehensive architecture reviews powered by CheckScan - our automated security and cost analysis platform. 4,000+ automated checks combined with expert assessment.

4,000+ Automated Checks
Security & Cost Analysis
6 Pillars Assessed
AWS Credits Available
Book Your Review Learn About CheckScan
Automated Security & Cost Intelligence for AWS

Every Well-Architected Review includes a full CheckScan analysis of your AWS environment. Our proprietary scanning platform combines multiple security tools to deliver comprehensive insights that manual reviews alone can't match.

4,000+
Security Checks
100+
IAM Checks
70+
EC2/EKS Checks
40+
S3 Checks

What CheckScan Analyses

Automated scanning across your entire AWS account, identifying security risks and Cost Optimisation opportunities.

IAM Security

100+ automated checks
  • Root account access keys and MFA
  • User MFA enforcement
  • Access key rotation (90+ day threshold)
  • Inactive user detection
  • Overly permissive policies
  • Password policy configuration
  • Service account console access

EC2 & Compute

70+ automated checks
  • Security group misconfigurations
  • Open ports (0.0.0.0/0 rules)
  • EBS volume encryption
  • IMDSv2 enforcement
  • VPC flow log configuration
  • Public IP assignment
  • Instance profile analysis

S3 Storage

40+ automated checks
  • Public bucket detection
  • Encryption status (SSE-S3/SSE-KMS)
  • Bucket versioning
  • Access logging configuration
  • MFA delete enablement
  • Lifecycle policies
  • Block Public Access settings

Cost Optimisation

Comprehensive analysis
  • Cost breakdown by service
  • RDS right-sizing opportunities
  • EC2 instance optimization
  • Savings Plan recommendations
  • Reserved Instance analysis
  • Unused resource detection
  • NAT Gateway cost analysis

Lambda Health

Function analysis
  • Runtime deprecation detection
  • Stale function identification
  • Never-invoked functions
  • Memory configuration analysis
  • Timeout optimization
  • Last invocation tracking

EKS & Containers

Kubernetes security
  • Cluster configuration review
  • Node group security
  • Container image vulnerabilities
  • Network policy assessment
  • RBAC configuration
  • Secrets management

The Six Pillars

CheckScan findings feed directly into our expert assessment of each Well-Architected pillar.

Operational Excellence

Running and monitoring systems to deliver business value and continually improve.

Security

Protecting information, systems, and assets while delivering business value.

Reliability

Ensuring workloads perform correctly and recover from failures.

Performance Efficiency

Using computing resources efficiently as demand changes.

Cost Optimisation

Avoiding unnecessary costs and understanding where money is spent.

Sustainability

Minimising environmental impacts of running cloud workloads.

Why CheckScan Makes the Difference

Capability Standard Review With CheckScan
Well-Architected Framework questions
Expert architecture assessment
4,000+ automated security checks
IAM policy deep analysis
Cost Optimisation with savings estimates
Lambda runtime deprecation tracking
Savings Plan & Reserved Instance recommendations
CIS benchmark compliance mapping
Exportable findings with evidence

How It Works

1

Scoping

Identify workloads to review and configure CheckScan access to your AWS account.

2

CheckScan Analysis

Automated scanning runs 4,000+ checks across security, cost, and compliance.

3

Expert Review

Our architects analyse CheckScan findings and assess against Well-Architected pillars.

4

Report & Debrief

Detailed findings with prioritised recommendations and a remediation roadmap.

5

Remediation Support

Optional support to implement recommendations and re-scan to verify fixes.

What You Receive

CheckScan Report

Complete automated scan results with 4,000+ checks, categorised by severity and service. Exportable in HTML, JSON, and PDF formats.

Cost Analysis

Detailed breakdown of your AWS spend with specific savings recommendations, including Savings Plan and Reserved Instance opportunities.

Well-Architected Report

Expert assessment across all six pillars, combining CheckScan findings with architectural analysis and business context.

Prioritised Roadmap

Actionable improvement plan with findings prioritised by risk and business impact. Clear next steps for your team.

Debrief Session

Walk-through of findings with your team, answering questions and helping prioritise remediation efforts.

AWS Credits Eligibility

As an AWS Partner, our reviews may qualify you for AWS credits to help implement the recommendations.

Packages

Limited Offer

CheckScan Security Review

£1,450 £950 one-time

Complete security review with hands-on remediation support. Perfect for security posture checks.

  • AWS best practice review (4,000+ checks)
  • 1 web application vulnerability test
  • Cost Optimisation analysis
  • 30-minute remediation call
  • 2-hour hands-on remediation session

Full Well-Architected Review

£1,299 per workload

Complete CheckScan analysis plus expert assessment against all six Well-Architected pillars.

  • Everything in Security Review
  • Six pillar expert assessment
  • Architecture deep-dive
  • Prioritised remediation roadmap
  • 2-hour debrief session
  • AWS credits eligibility

CheckScan Quarterly

£1,000 per quarter

Regular CheckScan assessments to track security posture and Cost Optimisation over time.

  • Quarterly Security Review
  • Quarterly web app testing
  • Trend analysis & reporting
  • 2 hours remediation per quarter
  • New finding alerts between scans

Ready to Scan Your AWS Environment?

Book a Well-Architected Review with CheckScan and discover security risks and cost savings you didn't know existed.

4,000+ automated checks
Cost Optimisation included
Expert assessment
AWS credits eligible
Book Your Review