Sample Deliverable
Infrastructure Health Check: Sample Report
ID: HC-2025-01-EXAMPLE | Status: Finalized | Prepared for: [Client Name Redacted]
Executive Summary
The environment is functional but fragile. While core services are currently operational, several critical gaps in backup immutability, identity synchronization, and lifecycle management represent significant risks to business continuity.
Critical Risks
3
Operational Drift
Moderate
Recovery Readiness
Low
How we score risk & readiness
Risk Levels
- Critical: Immediate threat to data integrity or uptime.
- High: Significant gap likely to fail in disaster.
- Moderate: Functional but deviates from standard.
Recovery Readiness
- Low: No recent restore tests; backups unverified.
- Medium: Backups exist, restores are ad-hoc.
- High: Automated, verified restore evidence.
Findings Matrix
| Area | Finding | Risk | Recommendation |
|---|---|---|---|
| Backup & Recovery | Backup immutability is not enforced on primary repository. | High | Enable S3 Object Lock or hardened Linux repository for immutable storage. |
| Identity | Domain Controller time drift exceeding 5 minutes (NTP skew). | High | Re-sync PDC Emulator to reliable external stratum-1 source. |
| Virtualization | vSphere 6.7 hosts remaining in production (End of General Support). | High | Accelerate hardware refresh or migrate to vSphere 8.0. |
| Azure Foundation | Missing Resource Locks on 'Production-Core' networking resources. | Medium | Apply 'CanNotDelete' locks to critical VNets and Gateways. |
| Storage | SAN firmware is 3 versions behind manufacturer baseline. | Medium | Schedule rolling controller updates during next maintenance window. |
| Documentation | Site Recovery Plan (SRP) has not been tested in >12 months. | Medium | Execute a non-disruptive DR drill for Tier-1 applications. |
Next Steps
Immediate
Fix NTP skew and verify identity synchronization.
Q1
Implement immutable backup tier for ransomware protection.
Q1
Decommission or upgrade vSphere 6.7 legacy hosts.
Q2
Execute full DR test and update recovery runbooks.
Get this clarity for your environment.
Stop guessing about drift and recovery. Get a fixed-scope Health Check that provides evidence, not just opinions.