GuardIT AI — Architecture v1

Proof-Ready Cloud Architecture

High-level view used for demos, partner calls, and executive briefings. Full implementation, verification logic, and export pipelines are reserved for clients, partners, and mentors under NDA.

GuardIT AI — Demo Dashboard

Static sample tiles for demonstration

These values are frozen for demos. In production, they update continuously from live evidence streams — ingestion, identity, drift, and ProofOps bundles.

Evidence
Signals Ingested (24h)
134,287

Read-only AWS and IdP events normalized into ProofOps for audit-ready evidence.

Identity
Least-Privilege Coverage
92%

Users, roles, and service accounts passing current access-policy checks.

Config Drift
Open Drift Findings
7

Pending review — all changes captured with traceable diffs and exportable evidence.

ProofOps
Bundles Generated
12

HIPAA, SOC 2, and internal policy packs assembled and ready for auditors or board use.

High-Level Flow

EDGE → INGESTION → CORE → PRESENTATION

A conceptual view of how GuardIT AI moves from noisy cloud signals to calm, export-ready evidence. This is the version used in demos and partner briefings; deeper implementation details stay under NDA.

01 · Edge
Workloads & Identity
Regulated apps, clinical workloads, IdPs, and cloud accounts that need to prove identity, access, and configuration.
AWS · IdP · Clinical Apps
02 · Ingestion
Read-Only Evidence Capture
Logs, IAM data, and configuration state are ingested in a controlled, read-only pattern for normalization and mapping.
Logs · Config · IAM
03 · Core
ProofOps Engine
Policies and controls are evaluated continuously to generate control status, drift findings, and framework-aligned results.
Policies · Controls · Drift
04 · Presentation
Bundles & Exports
Audit-ready bundles, dashboards, and JSON exports give auditors, leaders, and partners a single, coherent source of proof.
Bundles · Dashboards · JSON
Proof Bundle Preview

HIPAA / 405(d) Evidence Pack – Sample

Example of an automatically assembled bundle for a healthcare workload. For demo purposes only – all values below are static and anonymized.

HIPAA 405(d) – Clinical App (US-East)
HIPAA 405(d) | NIST CSF mapped subset
prod/clinical-app-01
2025-12-03 14:27 UTC
Passing – 27/30 controls satisfied
Download PDF (mock) ↓ View JSON Export View JSON Export
Control Description Status
AC-01 Unique user IDs with MFA enforced Pass
AU-04 Audit logs retained ≥ 1 year Pass
SC-07 Encrypted transport for PHI endpoints Pass
SC-13 Key management with rotation Pass
CM-02 Configuration drift detection Open
JSON Export

Sample Evidence Bundle Payload

Static example of the JSON payload produced for an evidence bundle. This is the type of export a team can provide to auditors, feed into internal tools, or store in an evidence vault. All values are anonymized and shown for demonstration only.