TurboFinOpsTurboFinOps
Docs/Remediate a Finding

How to

How to create and execute a remediation action

Convert a finding into an approved and auditable remediation with minimal risk.

Back to How To Guides

Roles and Guardrails

Allowed roles: Admin, FinOps, Security. Action requests go through conflict checks, and most actions default to manual approval mode.

Admin

Can approve or reject actions and override policy when explicitly allowed.

FinOps

Can request cost remediation and review projected savings.

Security

Can request exposure and control-gap remediation.

Execution Workflow

  1. 1. Open finding in `Findings` or `Cost Savings`.
  2. 2. Confirm the impacted resource, detection context, and recommended action type.
  3. 3. Submit action request (or execute now if policy allows).
  4. 4. Approve request if pending approval chain.
  5. 5. Track status in `Actions` until `completed` or `failed`.
  6. 6. Re-scan the scope when the provider action changes cloud state.

Conflict Checks

Before execution, TurboFinOps checks for IaC ownership tags, freeze windows, policy protection flags and ticket requirements. If a conflict is detected, the action is blocked or sent back for explicit Admin review depending on organization policy.

IaC ownership

Resources tagged as managed by Terraform, Pulumi or another IaC tool should usually be fixed in source control.

Freeze window

Production or audit freeze periods prevent accidental changes during sensitive windows.

Policy protection

Critical resources can be protected from automated mutation even when a finding exists.

Ticket requirement

Some actions may require a Jira or ServiceNow reference before approval.

Verification

  • Action execution contains provider response metadata.
  • Finding status updates according to remediation result.
  • Audit logs include actor, correlation ID, and execution timestamps.
  • Evidence artifacts or export records can be generated for audit review.

Rollback Path

For compatible actions, rollback plans are attached to execution records. Use rollback controls from `Actions` page to restore previous state when needed.

TurboFinOps

Start with one cloud scope. Prove savings fast.

Connect AWS, Azure, or GCP and get actionable findings, score trends, and auditable remediation paths in minutes.

Built for FinOps, governance and audit workflows
Book a DemoCompare Plans