crimson-owl-paa
by Crimson Owl Technologies
WAF-aligned Azure architecture assessment and compliance documentation. NIS2, DORA, ISO27001, ...
Your next NIS2 or DORA audit will ask for architectural evidence. Platform Architecture Authority generates it.
Dutch enterprises running Azure workloads face a compliance documentation problem. Architecture reviews that satisfy NIS2, DORA, and ISO27001 requirements take weeks of consultant time, cost €10,000–25,000 per engagement, and produce static reports that are outdated before the ink dries.
Platform Architecture Authority (PAA) is an AI-powered assessment platform aligned with the Microsoft Well-Architected Framework (WAF). It deploys 17 specialised agents — Cloud Architect, Security Architect, DevOps Architect, M365 Architect, and 13 others — against your Azure environment and produces structured, compliance-mapped assessment output in hours.
What PAA produces
- WAF pillar scoring across all five dimensions: Reliability, Security, Cost Optimisation, Operational Excellence, Performance Efficiency
- Compliance mapping to NIS2, DORA, ISO27001 Annex A, SOC 2, and GDPR
- Remediation recommendations with Terraform and Bicep code where applicable
- Architecture Decision Records (ADRs) generated automatically
- Architecture diagrams in Mermaid format
- Infrastructure drift detection — compare deployed state against documented architecture
- Full documentation synchronised to your GitHub repository and Confluence space
Key capabilities
- Azure Resource Graph scanning for live infrastructure state
- Microsoft Entra ID (Azure AD) authentication — no separate identity system required
- Real-time AI streaming for interactive architecture sessions
- Multi-tenant workspace management with role-based access control
- Audit logging with configurable retention (Team tier and above)
- EU West Europe data residency — all processing within the EU
Built for regulated Dutch enterprises
PAA is designed for organisations operating under NIS2 (Cyberbeveiligingswet), DORA ICT risk management obligations (Articles 5–16), and ISO27001 certification programmes. The compliance mapping output is structured to provide the architectural evidence that auditors request, without scheduling a consultant engagement.
Plans
- Free — Individual architects, 3 assessments/month, 50,000 tokens
- Team — €499/month, up to 5 users, GitHub sync, 15 assessments/month
- Business — €1,299/month, up to 25 users, Azure scanning, full API access
- Enterprise — €2,499/month, unlimited users, advanced compliance reporting
- Fractional Architect — €5,000/month, Enterprise features plus 8 hours/month dedicated architect access
Annual billing available with 20% discount. All prices exclude VAT. EU pricing in EUR.
Contact us to discuss your requirements or request a demonstration on your environment.