What We Offer

Three Pillars of Service.
Zero Hourly Billing.

Every Powell Technology Group service is built around proactive protection, flat-rate predictability, and documentation you can hand directly to auditors, insurers, or your internal compliance team — without any extra work on your end.

Book Free Assessment View Pricing
Pillar 01

Hardened AMI Images

CIS-benchmarked, pre-hardened machine images built with EC2 Image Builder and Ansible — available on AWS Marketplace and delivered directly to non-AWS environments. Every machine in your fleet launches from a known-good secure baseline, not a default OS install with months of unpatched vulnerabilities baked in.

  • CIS Level 1 & Level 2 hardened Ubuntu, RHEL, and Windows Server
  • Available on AWS Marketplace — subscribe and launch in minutes
  • On-premises delivery: VMware (.ova), Hyper-V (.vhdx), KVM (.qcow2)
  • Custom application stacks baked into the image at build time
  • Monthly maintenance — patch integration and CIS re-validation
  • Full version history, signed manifests, and rollback capability
  • CIS compliance report delivered with every image build
Available Formats
AWS Marketplace AMI
EC2 Image Builder pipeline — Ubuntu 24.04, RHEL 9. Direct subscribe and launch.
VMware (.ova)
vSphere, vCenter, ESXi. Packer-built, Ansible-hardened. Template-ready.
Hyper-V (.vhdx)
Windows Server 2019/2022 Hyper-V. Generation 2 VM compatible.
KVM / QEMU (.qcow2)
Proxmox, libvirt, OpenStack. Thin-provisioned. Ready to clone.
Pillar 02

Vulnerability Scanning

OpenVAS and Nessus scanning across your full host environment — monthly or bi-weekly. Every scan produces a branded PDF report with plain-English remediation steps, CVSS risk scoring, and a prioritized fix roadmap. Over 25,000 new CVEs were published in 2025 alone. A pentest from six months ago doesn't cover last Tuesday's critical vulnerability.

  • OpenVAS and Nessus — authenticated and unauthenticated scan modes
  • CVSS risk prioritization on every finding
  • Branded PDF with plain-English remediation checklist
  • 24-hour Critical and High CVE alert window
  • Month-over-month vulnerability trend analysis
  • CIS and NIST compliance alignment notes
  • Quarterly posture review call (Fortress tier)
Three Tiers
Recon
Up to 10 hosts — CVE scan, malware detection, branded PDF report
Sentinel — Most Popular
Up to 25 hosts — Adds Nessus, remediation checklist, trend analysis, quarterly call
Fortress
Up to 100 hosts — MITRE mapping, auto remediation, 24hr alert window, SLA
Pillar 03

Patch Governance

Ansible-automated patch management for Windows and Linux environments — executed on a defined schedule with full change logs, rollback capability, and compliance documentation. Patch Governance is the bridge between finding a vulnerability and closing it before it becomes an incident.

  • Ansible playbook-driven patch cycles — consistent, auditable, documented
  • Windows and Linux supported across all tiers
  • Maintenance window design to minimize business disruption
  • Pre-patch change notification and post-patch validation on every run
  • Emergency out-of-band patching for critical CVEs (Managed tier and above)
  • Detailed change log delivered after every cycle
  • Full patch SLA enforcement with complete audit trail (Enterprise tier)
Three Tiers
Advisory
Up to 10 hosts — Monthly patch cycles, change log delivery
Managed — Most Popular
Up to 25 hosts — Bi-weekly + emergency patching, compliance report
Enterprise
Up to 100 hosts — Weekly cycles, 3rd-party apps, full SLA enforcement
Available on AWS Marketplace
Hardened AMIs — subscribe and launch in minutes.
Powell Technology Group AMIs are listed directly on AWS Marketplace. No setup calls required for standard images. Search "Powell Technology Group" in AWS Marketplace to subscribe. Custom images and on-prem formats are available via direct engagement.
View All Image Options Request Custom Image
Get Started

Not sure which service is right for you?

Book a free 30-minute call. We'll walk through your environment, identify your biggest risks, and recommend the right starting point — no obligation to purchase.

Book Free Assessment
Loading

NVD ↗