| Cloud assessment | Inventory, architecture review, risk findings, cost observations, dependency map, and prioritized actions | Report and workshop | Discovery | Access, billing data, diagrams, stakeholder interviews |
| Target architecture | Logical design, service selection, data flows, security boundaries, resilience approach, and assumptions | Diagrams and architecture record | Solution design | Business requirements, recovery needs, security constraints |
| Landing zone | Account model, identity, networking, logging, security baseline, tagging, budgets, and guardrails | Configured environment and IaC | Foundation setup | Organization ownership, domains, identity provider, policies |
| Migration package | Wave plan, runbooks, test cases, cutover steps, rollback plan, and migration evidence | Plan, scripts, records | Migration | Application owners, data validation, maintenance windows |
| CI/CD and IaC | Repositories, modules, pipeline definitions, environment promotion, tests, approvals, and deployment logs | Code and documentation | Implementation | Source access, branching policy, release requirements |
| Observability setup | Metrics, logs, dashboards, alerts, escalation paths, and service-health views | Configured tooling and runbook | Operations readiness | Service priorities, support contacts, alert thresholds |
| Security baseline | IAM review, MFA, encryption settings, network controls, logging, configuration checks, and remediation plan | Configuration and evidence | Build and review | Security standards, exception process, owner approvals |
| Operations handover | Runbooks, architecture, backup and recovery procedures, support model, known risks, and training | Knowledge base and sessions | Handover | Named owners, attendance, acceptance feedback |
| Managed service reporting | Incidents, changes, availability indicators, security actions, cost trends, capacity, and improvement backlog | Dashboard and report | Ongoing support | Agreed service levels, priorities, reporting cadence |