The Audiences

Two Roles. One Truth.

The roles stay distinct for good reasons. What goes is the friction at their handoff. BlueFennick is designed to offer a single continuous artifact viewed through two tailored lenses.

The Practitioner Lens

Practitioners already know something is wrong—they need to know what to do about it. It is designed to give practitioners three things: the research explaining the drift, the resolution path (code/CLI), and the alignment (who to contact).

DevOps / SecEng Workspace

Gap Resolution: GCP Kubernetes Audit Logs

❯ bfx drift analyze --gap=GCP-K8S-01
Analyzing GKE Cluster 'prod-cluster-us-east'...
DRIFT DETECTED: Master Authorized Networks disabled. Violates SOC 2 CC6.1.
❯ bfx generate-remediation --target=terraform
✓ Generated remediation patch:

+ master_authorized_networks_config {

+   cidr_blocks {

+     cidr_block   = "10.0.0.0/8"

+     display_name = "internal-vpc"

+   }

+ }
❯ bfx apply && bfx sign-evidence
✓ Fix applied. Evidence signed [Ed25519: 9a8f...]. Ledger updated.

The Compliance Officer Lens

Officers operate at the mercy of the information their colleagues provide. It is designed to replace reactive spreadsheet chasing with an executive view that tracks the exact same underlying segment stream as the practitioners — so that when a practitioner runs a fix, the officer's dashboard updates with audit-ready evidence.

Compliance & Risk Executive View

Framework Readiness

SOC 2 Type II

98% Covered

Pending Evidences

All signed & verified

Recent Auto-Signed Evidence

Just Now

GKE Master Auth Networks resolved by DevOps

CC6.1 VERIFIED

2 hrs ago

S3 Bucket ACL made private

CC6.6 VERIFIED