Quick Start
Guardian Pro is an AI-powered AWS governance platform that continuously monitors your cloud infrastructure for security risks, cost optimization opportunities, compliance gaps, and architectural weaknesses -- then helps you fix them.
This guide walks you through going from zero to your first actionable insights in under 30 minutes.
What Guardian Pro Does
Guardian Pro brings together six core capabilities into a single, unified platform:
| Capability | What It Delivers |
|---|---|
| Security Scanning | Hundreds of automated checks across your AWS services, identifying misconfigurations, vulnerabilities, and deviations from best practices |
| Cost Intelligence | Deep analysis of your AWS spending with anomaly detection, rightsizing recommendations, and savings projections |
| Compliance | Continuous assessment against industry frameworks including CIS AWS Foundations Benchmark, SOC 2, GDPR, and AWS Well-Architected |
| Architecture Advisory | Risk detection, failure simulation, and health scoring for your infrastructure topology |
| AI Assistant | A conversational AI that understands your infrastructure and can answer questions, explain risks, and guide remediation |
| Infrastructure Wizard | AI-powered CloudFormation template generation from natural language descriptions or existing code repositories |
Getting Started in 4 Steps
Step 1: Subscribe from AWS Marketplace
Guardian Pro is available through the AWS Marketplace. Subscribing through Marketplace handles billing automatically through your existing AWS account.
- Navigate to the Guardian Pro listing on AWS Marketplace.
- Choose your subscription tier (Starter, Business, or Enterprise).
- Complete the subscription process.
- You will be redirected to the Guardian Pro console to begin setup.
Your AWS Marketplace subscription is linked to your AWS management account. All billing flows through your consolidated AWS bill -- no separate invoices or payment methods required.
Step 2: Complete Onboarding
The guided onboarding wizard walks you through connecting your AWS environment:
- Deploy the management role -- A read-only IAM role in your management account that allows Guardian Pro to discover your AWS Organization structure.
- Discover your organization -- Guardian Pro automatically maps all accounts in your AWS Organization.
- Deploy member roles -- StackSets deploy lightweight IAM roles to each member account for scanning and optional remediation.
- Set up users and permissions -- Invite team members and assign role-based permissions.
The entire onboarding process typically takes 10-15 minutes. For detailed instructions, see the Onboarding Overview.
Don't have an AWS Organization? Guardian Pro also supports single-account setups. You can always add more accounts later.
Step 3: Run Your First Scan
Once onboarding is complete, Guardian Pro can immediately begin scanning your infrastructure:
- From the Dashboard, click Run Scan to initiate a full infrastructure discovery and security assessment.
- Guardian Pro discovers resources across all enabled regions, builds a dependency map, and then runs hundreds of security, cost, and best-practice checks.
- Monitor progress in real time from the dashboard -- you will see resources being discovered and checks being evaluated.
A typical first scan completes in 2-10 minutes depending on the size of your environment.
For more details, see Your First Scan.
Step 4: Review Your Findings
After the scan completes, head to the Action Centre to see prioritized results:
- Critical and High severity findings appear at the top, with clear explanations and remediation guidance.
- Cost recommendations highlight immediate savings opportunities.
- Compliance gaps show where your environment falls short of industry standards.
- Architecture risks reveal single points of failure and blast radius concerns.
Each finding includes a detailed explanation, the affected resources, and step-by-step remediation instructions. For many findings, Guardian Pro can apply the fix automatically with a single click.
Use the AI Assistant (the chat panel in the bottom-right corner) to ask questions about your findings. Try asking "What are my most critical security issues?" or "How can I reduce my AWS costs?"
What Happens Next
After your initial scan, Guardian Pro continues working for you:
- Continuous monitoring -- Scheduled scans run automatically to catch new issues and verify that previous fixes remain in place.
- Anomaly detection -- Cost anomalies are flagged as they occur, so unexpected spending spikes don't go unnoticed.
- Compliance tracking -- Your compliance posture is recalculated after every scan, with historical trends available for audit reporting.
- Architecture analysis -- The risk radar continuously evaluates your infrastructure topology for emerging risks.
Choosing Your Starting Point
Depending on your priorities, you might want to focus on a specific area first:
| Priority | Where to Start |
|---|---|
| Security hardening | Action Centre -- Filter by severity to tackle critical issues first |
| Cost reduction | Cost Analysis -- Review spending breakdowns and optimization recommendations |
| Compliance readiness | Compliance Dashboard -- Select your target framework and review control status |
| Architecture review | Architecture Advisor -- Explore your infrastructure map and run failure simulations |
| New infrastructure | Infrastructure Wizard -- Generate production-ready CloudFormation templates from a description |
Prerequisites
Before getting started, make sure you have everything in place. See the full Prerequisites checklist.
Need Help?
- AI Assistant -- Click the chat icon in the Guardian Pro console for instant, context-aware help.
- Documentation -- You are here. Use the sidebar to explore specific features.
- Support -- Reach out to the Guardian Pro support team through the Support page.