Quzara Cloud Security Configuration Audit is a service that provides security configuration auditing for cloud environments including Azure, AWS, and GCP. The service performs change detection, configuration assessment, and reconciliation of detected changes against approved requests for changes and mitigation requirements. The service assesses configuration settings against company-specific policies or industry-recognized security configuration assessment templates for auditing and security hardening. It addresses cloud-based server containers, virtual machines, network components, applications, databases, and virtual infrastructures. The audit service includes Cloud Security Posture Management (CSPM) audits to monitor and discover if cloud services have been configured per industry best practices. For AWS and Azure environments, the service performs verification checks based on DISA STIGs or other hardening standards to validate security controls related to external access and network security. The service verifies operating systems for compliance hardening and configuration checks on services and port security. It validates audit logging alignment with organizational policies and procedures. Security incident response audits are performed to validate incident management controls for operational effectiveness. The service provides security visibility, system hardening, and continuous monitoring capabilities to reduce attack surface and detect malware across cloud deployments. It automates verification for misconfigurations across cloud virtual machines and helps prioritize vulnerable machines and compromised systems.