Beacon is multicloud compliance automation for Managed Service Providers, covering Azure, AWS, and Google Cloud. It scans every client account you manage on a fixed schedule, surfaces the gaps against recognised benchmarks, and turns them into report-ready findings. These pages explain what Beacon does and how to get your first cloud accounts connected.
Start here to understand Beacon at a high level. Once you have an account, the in-product help centre covers each workflow in step-by-step detail.
What Beacon does, the core concepts, and how to connect your first client account or try the demo.
Connect an AWS account with a read-only cross-account IAM role. CIS AWS Foundations coverage and region-drift detection.
Connect a Google Cloud organization or project with a read-only scanner service account. CIS GCP Foundation coverage and project-drift detection.
How Beacon protects client credentials: read-only least-privilege access, encryption at rest, and tamper-evident audit logs.
An honest look at Beacon versus manual audits, CIPP, and Microsoft Lighthouse for Azure compliance across client tenants.
Estimate the time and cost Beacon saves against running manual Azure compliance passes across your client base.
New checks, features, fixes, and security updates, released and dated as they ship.
Once you are signed in, the portal includes detailed guides for clients, Azure sync, compliance, teams, roles, webhooks, and the API.
Beacon is a hosted compliance platform built specifically for Managed Service Providers who manage Microsoft Azure, Amazon Web Services, and Google Cloud across many client accounts. Instead of logging into each account by hand, you set up one read-only connection per cloud and Beacon does the rest: it runs a full suite of security checks on a fixed schedule, reconciles the results into findings, and presents a single compliance view across your whole client base.
Every check maps to controls drawn from recognised benchmarks, including the CIS Microsoft 365 Benchmark, CIS AWS Foundations, CIS Google Cloud Foundations, NIST CSF, and ISO 27001:2022, so the posture you report is grounded in standards your clients and their auditors already recognise.
Nothing is installed inside client environments and no write permissions are ever requested. Read the getting started guide to see the core concepts, or follow the per-cloud setup guides for AWS and GCP, or review the security model first.
Explore a pre-loaded environment with sample MSP clients and real findings, no sign-up required, using demo code BEACON-DEMO.