Ring Scan , Alpha

A continuous audit.
Every ring, every stack.
Free to start.

Ring Scan connects read-only to your cloud, SaaS, on-prem, and AI environments, runs 70 controls across the Ring methodology, and returns a ring-by-ring score with remediation playbooks. No data leaves your infrastructure except the score itself.

Read-only , no writes ever

No data exfiltration , only findings

Zero trust architecture , scoped tokens only

Live demo . sample tenant

Watch the connection, scan, and ring-by-ring findings on a frozen sample tenant. Use it to record a demo without provisioning anything.

Open demo

01 , Choose your stack

Ring Scan is infrastructure-agnostic.

Pick a stack to see the connection flow. You'll need 5 minutes and a read-only credential for each environment you want audited. All 6 stacks can run simultaneously - the ring scores merge into one unified dashboard.

Google Cloud connector , read-only role setup

# Create read-only role for Ring Scan
gcloud iam service-accounts create ifo4-ringscan \
  --display-name="IFO4 Ring Scan audit"

# Grant required read permissions
gcloud projects add-iam-policy-binding YOUR_PROJECT \
  --member="serviceAccount:ifo4-ringscan@YOUR_PROJECT.iam.gserviceaccount.com" \
  --role="roles/viewer"

gcloud projects add-iam-policy-binding YOUR_PROJECT \
  --member="serviceAccount:ifo4-ringscan@YOUR_PROJECT.iam.gserviceaccount.com" \
  --role="roles/iam.securityReviewer"

# Generate key + submit to Ring Scan
gcloud iam service-accounts keys create key.json \
  --iam-account=ifo4-ringscan@YOUR_PROJECT.iam.gserviceaccount.com

02 , Your first report

A sample of what lands in your inbox within 10 minutes.

Per-ring findings, severity-ranked, with remediation playbooks. Free tier delivers on weekly cadence. Pro tier runs hourly. Enterprise tier includes on-chain anchoring of the scan output for immutable audit trail.

Ring Scan Report , Sample Output

Ring Score

64/100

RingStackFindingSeverityCount

R6GCPOrg-policy constraint allowedPolicyMemberDomains not enforcedcritical12

R5GCP8 services with no anomaly detection baselinehigh8

R4GCP$14,280/mo spend attributed to no cost-center taghigh1

R3StripeWebhook secret reused across 3 environmentsmedium1

R2GCP47 idle instances running > 14 dayshigh47

R2Slack12 Slack seats inactive > 60 daysmedium12

R1GCP2 critical actions without dual-authlow2

Sample , your actual report will include 35 to 70 findings depending on tier, each with a remediation playbook and a one-click GitHub PR template for the top 3.

03 , The 70 controls

What Ring Scan audits, ring by ring.

Ten controls per ring. Free tier scans 35 of 70 - the most common and most critical. Pro tier scans all 70 continuously.

Ring 6

Environment & Denial

Org policy enforces account enrollment , Build pipeline blocks classified artifacts , Vendor contracts disallow uncapped services

Ring 5

Signal & Exposure

Asset discovery coverage ≥99% , Cost anomaly MTTD <15min , Shadow IT detection within 24h

Ring 4

Ownership & Attribution

Tag compliance ≥98% , Orphan cost <2% , Ownership assignment <4h

Ring 3

Policy & Control

Policy-as-code active , Pre-execution budget checks , IaC validation gates

Ring 2

Optimization & Efficiency

Idle reclamation <14d , Commitment utilization ≥85% , Right-sizing recommendations actioned

Ring 1

Execution Governance

Dual-auth on >$1K ops , Immutable audit logs , Quarterly tamper verification

Ring Core

Outcome & Value Realization

Every $ tied to revenue line , PoC value-gate midpoint reviews , Unit economics per feature

04 , How Ring Scan protects your data

Zero trust by design.

Read-only

Ring Scan requests only read permissions. It cannot create, modify, or delete any resource in your environment. Ever.

No data exfiltration

Only findings (control pass/fail + resource counts) leave your environment. No configuration details, secrets, data contents, or customer records ever reach Ring Scan.

Full audit trail

Every Ring Scan query is logged with a cryptographic signature. You can verify which controls we ran, when, and what responses we received. Enterprise tier anchors this on-chain.

Revocable in one click

Delete the service account / role at any time. Ring Scan stops instantly. Your score history remains with you via exportable reports.

The first scan is free.
Your ring score ships in 10 minutes.

Join the alpha. No credit card, no vendor contract. We'll email your dedicated Ring Scan URL + connector instructions within the hour.

IFO4

IFO4 , Ring

Back to Ring Methodology

Ring Scan , Alpha

A continuous audit.
Every ring, every stack.
Free to start.

Read-only , no writes ever

No data exfiltration , only findings

Zero trust architecture , scoped tokens only

Live demo . sample tenant

Watch the connection, scan, and ring-by-ring findings on a frozen sample tenant. Use it to record a demo without provisioning anything.

Open demo

01 , Choose your stack

Ring Scan is infrastructure-agnostic.

Google Cloud connector , read-only role setup

# Create read-only role for Ring Scan
gcloud iam service-accounts create ifo4-ringscan \
  --display-name="IFO4 Ring Scan audit"

# Grant required read permissions
gcloud projects add-iam-policy-binding YOUR_PROJECT \
  --member="serviceAccount:ifo4-ringscan@YOUR_PROJECT.iam.gserviceaccount.com" \
  --role="roles/viewer"

gcloud projects add-iam-policy-binding YOUR_PROJECT \
  --member="serviceAccount:ifo4-ringscan@YOUR_PROJECT.iam.gserviceaccount.com" \
  --role="roles/iam.securityReviewer"

# Generate key + submit to Ring Scan
gcloud iam service-accounts keys create key.json \
  --iam-account=ifo4-ringscan@YOUR_PROJECT.iam.gserviceaccount.com

02 , Your first report

A sample of what lands in your inbox within 10 minutes.

Ring Scan Report , Sample Output

Ring Score

64/100

RingStackFindingSeverityCount

R6GCPOrg-policy constraint allowedPolicyMemberDomains not enforcedcritical12

R5GCP8 services with no anomaly detection baselinehigh8

R4GCP$14,280/mo spend attributed to no cost-center taghigh1

R3StripeWebhook secret reused across 3 environmentsmedium1

R2GCP47 idle instances running > 14 dayshigh47

R2Slack12 Slack seats inactive > 60 daysmedium12

R1GCP2 critical actions without dual-authlow2

Sample , your actual report will include 35 to 70 findings depending on tier, each with a remediation playbook and a one-click GitHub PR template for the top 3.

03 , The 70 controls

What Ring Scan audits, ring by ring.

Ten controls per ring. Free tier scans 35 of 70 - the most common and most critical. Pro tier scans all 70 continuously.

Ring 6

Environment & Denial

Org policy enforces account enrollment , Build pipeline blocks classified artifacts , Vendor contracts disallow uncapped services

Ring 5

Signal & Exposure

Asset discovery coverage ≥99% , Cost anomaly MTTD <15min , Shadow IT detection within 24h

Ring 4

Ownership & Attribution

Tag compliance ≥98% , Orphan cost <2% , Ownership assignment <4h

Ring 3

Policy & Control

Policy-as-code active , Pre-execution budget checks , IaC validation gates

Ring 2

Optimization & Efficiency

Idle reclamation <14d , Commitment utilization ≥85% , Right-sizing recommendations actioned

Ring 1

Execution Governance

Dual-auth on >$1K ops , Immutable audit logs , Quarterly tamper verification

Ring Core

Outcome & Value Realization

Every $ tied to revenue line , PoC value-gate midpoint reviews , Unit economics per feature

04 , How Ring Scan protects your data

Zero trust by design.

Read-only

Ring Scan requests only read permissions. It cannot create, modify, or delete any resource in your environment. Ever.

No data exfiltration

Only findings (control pass/fail + resource counts) leave your environment. No configuration details, secrets, data contents, or customer records ever reach Ring Scan.

Full audit trail

Every Ring Scan query is logged with a cryptographic signature. You can verify which controls we ran, when, and what responses we received. Enterprise tier anchors this on-chain.

Revocable in one click

Delete the service account / role at any time. Ring Scan stops instantly. Your score history remains with you via exportable reports.

The first scan is free.
Your ring score ships in 10 minutes.

Join the alpha. No credit card, no vendor contract. We'll email your dedicated Ring Scan URL + connector instructions within the hour.

A continuous audit.Every ring, every stack.Free to start.

Ring Scan is infrastructure-agnostic.

A sample of what lands in your inbox within 10 minutes.

What Ring Scan audits, ring by ring.

Environment & Denial

Signal & Exposure

Ownership & Attribution

Policy & Control

Optimization & Efficiency

Execution Governance

Outcome & Value Realization

Zero trust by design.

Read-only

No data exfiltration

Full audit trail

Revocable in one click

The first scan is free.Your ring score ships in 10 minutes.

A continuous audit.Every ring, every stack.Free to start.

Ring Scan is infrastructure-agnostic.

A sample of what lands in your inbox within 10 minutes.

What Ring Scan audits, ring by ring.

Environment & Denial

Signal & Exposure

Ownership & Attribution

Policy & Control

Optimization & Efficiency

Execution Governance

Outcome & Value Realization

Zero trust by design.

Read-only

No data exfiltration

Full audit trail

Revocable in one click

The first scan is free.Your ring score ships in 10 minutes.

A continuous audit.
Every ring, every stack.
Free to start.

The first scan is free.
Your ring score ships in 10 minutes.

A continuous audit.
Every ring, every stack.
Free to start.

The first scan is free.
Your ring score ships in 10 minutes.