Gertin Sentinel AI: Cloud Compliance and Security Automation

Sentinel AI by Gertin - Enterprise Compliance and Security AI Platform

Sentinel is an enterprise grade compliance and security AI platform that automates labor intensive security and compliance workflows for AWS native organizations through a single, unified API deployed entirely inside your own AWS account.

Built for security engineering teams, compliance officers, and security operations centers, Sentinel integrates directly into existing toolchains with no external dependencies or data egress. All AI inference runs through AWS Bedrock within your VPC.

Five Compliance AI Engines

IAM Policy Analyzer: Submit any IAM policy document and receive a risk score (0 to 100), severity classified findings, privilege escalation path detection, and compliance mappings to SOC2, PCI DSS, HIPAA, and CIS AWS Foundations Benchmark, in under three seconds.

Cloud Misconfiguration Scanner

Scan S3, EC2, RDS, VPC, CloudTrail, and KMS configurations against CIS AWS Foundations Benchmark v3.0.0. Each finding includes severity, impact, step by step remediation, and compliance framework references.

SOC2 Evidence Assistant

Feed raw evidence into a control specific evaluator for any SOC2 Trust Services Criteria control. Receive a PASS/FAIL verdict, auditor ready narrative, gap analysis, and suggested artifact names ready for your next Type II audit.

AI Log Summarizer

Transform CloudTrail, VPC Flow Logs, GuardDuty, ALB access logs, and application logs into structured summaries with anomaly detection, security alerts, and prioritized recommendations.

Threat Explanation Copilot

Input any CVE ID, IOC, MITRE ATT&CK technique, or alert description. Receive audience tailored explanations (executive, analyst, or technical), immediate containment actions, mitigations, and MITRE references.

Key Outcomes for Your Team

Eliminate manual compliance work: Automate IAM reviews, misconfiguration scanning, and SOC2 evidence collection that previously took hours per finding Stay audit-ready: Generate auditor ready narratives and evidence evaluations on demand for SOC2 Type II audits Accelerate incident response: Transform raw logs into actionable summaries and get audience-appropriate threat explanations instantly Maintain zero data egress: All processing stays within your VPC with no external dependencies Integrate seamlessly: OpenAI compatible /v1/chat/completions endpoint works with existing tools and workflows

Platform Capabilities

OpenAI compatible /v1/chat/completions endpoint routed to AWS Bedrock Per-organization API key management with plan based rate limiting Immutable audit log of every compliance check stored in Amazon RDS Prometheus metrics at /metrics for CloudWatch or Grafana integration Streaming (SSE) support on all chat endpoints Zero egress architecture with all processing within your VPC

Deployment

Sentinel is delivered as a container image deployable to Amazon ECS Fargate, Amazon EKS, or EC2. The included AWS CDK TypeScript stack provisions all required infrastructure; VPC, ECS cluster, RDS PostgreSQL, ElastiCache Redis, ALB, Route 53 record, ACM certificate, and IAM roles; in a single cdk deploy command. Get operational in under 15 minutes.

AWS Integration Points

AWS Bedrock: All AI inference runs natively through Bedrock Amazon ECS/EKS/EC2: Flexible container deployment options Amazon RDS PostgreSQL: Persistent audit logging and state management ElastiCache Redis: Session and cache management CloudWatch: Native metrics and monitoring integration AWS CDK: Infrastructure as Code for reproducible deployments

Sentinel gives security and compliance teams a single API to automate the workflows that consume the most engineering hours, while keeping all data and inference within your AWS environment.