PolicyDrift

PolicyDrift is a web app (with optional CLI) that continuously detects and explains cloud security policy drift across AWS, Azure, and GCP. Instead of dumping hundreds of findings, it focuses on what changed, who changed it, and the blast radius. It ingests cloud audit logs and config snapshots, builds a baseline of “known-good” controls (IAM, network exposure, storage/public access, encryption, logging), and alerts only on meaningful deviations. An AI layer summarizes the change in plain language, suggests the safest rollback or compensating control, and generates an audit-ready justification. The product is realistic for small teams because it avoids trying to be a full CSPM replacement: it’s a drift-and-change intelligence tool that plugs into existing SIEM/ticketing. The goal is fewer surprise exposures, faster incident triage, and cleaner compliance evidence without hiring more cloud security engineers.