Cloud Security
Without Blind Spots
Most CSPMs don't support Huawei Cloud. Nexora does. Continuous posture monitoring and automated compliance reporting built specifically for Huawei Cloud environments — with multi-cloud support on the roadmap.
No credit card required · Deploy in minutes · No agents required
Security Overview
Cloud Posture Dashboard
Posture Score
Critical
3
High
12
Passed
214
Why Nexora
Built for teams who treat
security as a first-class concern
Built for Huawei Cloud
Deep, native coverage of Huawei Cloud — the cloud most CSPMs ignore. Multi-cloud support for AWS, Azure, and GCP is on the roadmap.
Compliance on Autopilot
Map your Huawei Cloud posture to ISO 27001, NIST 800-53, SOC 2, Thai BOT IT, and Thai PDPA — automatically. Always audit-ready.
Agentless by Design
Background scans run via your existing cloud credentials. No scan agents to deploy, patch, or maintain. Zero operational overhead.
Role-Based Workflows
Purpose-built views for admins, cloud engineers, compliance officers, and external partners. Everyone sees exactly what they need.
Cloud Coverage
Built for Huawei Cloud.
Multi-cloud coming next.
Most CSPMs were built for AWS first and bolted on other providers later. Nexora started with Huawei Cloud — purpose-built for APAC enterprises and organisations where Huawei Cloud infrastructure is in scope. AWS, Azure, and GCP support is on our near-term roadmap.
See full feature list →80+ checks across ECS, IAM, VPC, OBS, RDS, ELB, WAF, CCE, and more
Full coverage · 16 resource typesCapabilities
Everything your cloud security team needs
Continuous posture scanning for Huawei Cloud
Nexora runs background scan jobs across your Huawei Cloud environment using read-only credentials. No agents, no network changes. 80+ checks across 16 resource types, surfacing misconfigurations in near real time.
- Background jobs via battle-tested Oban scheduler
- Read-only IAM — zero write permissions required
- 80+ security checks across 16 resource types
- ECS, IAM, VPC, OBS, RDS, ELB, WAF, CCE and more
// Scan job output
scan: huawei/ap-southeast-1 started
resources: 1,284
checks: 80
duration: 1m 23s
✗ critical: 3
! high : 12
~ medium : 28
✓ passed : 214
next scan in 14m 37s
Automated compliance reporting
Map your cloud posture to ISO 27001 and other frameworks automatically. Generate audit-ready reports for auditors, board-level summaries for executives, and drill-down evidence packages for internal reviews.
- ISO 27001:2022 — full control mapping
- NIST 800-53 — comprehensive control coverage
- SOC 2 Type II mapping
- Thai BOT IT Circular & Thai PDPA — SEA differentiator
Prioritised findings with guided remediation
Every finding includes context, risk scoring, impacted resources, and step-by-step remediation guidance. Assign to team members, track resolution, and close the loop with evidence.
- CVSS-based severity scoring
- Step-by-step remediation guidance
- Assign findings to team members
- Suppression with justification and expiry
OBS bucket ACL allows public read
CRITICALRoot account MFA not enabled
HIGHSecurity group allows SSH from 0.0.0.0/0
HIGHEnterprise access control built in
Fine-grained RBAC with four purpose-built roles. Single sign-on via WorkOS means you can plug Nexora into your existing identity provider in minutes.
- SSO via WorkOS — Okta, Azure AD, Google Workspace
- Admin, Cloud Engineer, Compliance Officer, Partner
- Org-level and environment-level permissions
- Audit log for every action
Admin
Full platform access
Cloud Engineer
Findings & remediation
Compliance Officer
Reports & audit trail
Partner
Client org read-only view
How it works
Live in minutes, not months
Connect Huawei Cloud
Grant read-only IAM access in under 5 minutes. Connect your Huawei Cloud account — no agents, no network changes required.
Scans run automatically
Background scan jobs kick off immediately, checking every resource against 80+ security controls across 16 resource types. No agents needed.
Fix, report, repeat
Prioritised findings land in your dashboard. Assign, remediate, and generate compliance reports — all in one place.
FAQ
Common questions
No. Nexora uses read-only cloud credentials to scan your infrastructure directly via provider APIs. There are no agents to deploy, no network routes to configure, and no security group changes required.
Huawei Cloud is fully supported today. AWS, Azure, and GCP are on our near-term roadmap. Nexora was purpose-built for Huawei Cloud — the provider most CSPMs ignore entirely.
We support 6 frameworks: ISO 27001:2022, NIST 800-53, SOC 2, Thai BOT IT Circular, and Thai PDPA. The Thai frameworks are a genuine differentiator for Southeast Asian enterprises. More frameworks are on the roadmap.
Nexora uses WorkOS for enterprise SSO. You can connect Okta, Azure Active Directory, Google Workspace, or any SAML 2.0 / OIDC compatible identity provider with a few clicks.
Yes. You can start a free trial at app.nexora-security.com — no credit card required. The trial gives full access to a single cloud account for 14 days.
Get started today
Ready to secure your cloud?
Book a personalised demo with a cloud security engineer, or jump straight into a free trial.