The idea

“What I'm building: Platform Architecture Authority (PAA) — always-on architecture intelligence for Microsoft environments. Azure + M365 + Zero Trust in one platform. 723 automated checks, AI synthesis that turns raw data into consultant-grade findings, IaC generation, ADRs, and board-ready evidence. Who it's for: Microsoft Gold Partners (MSPs) who need to deliver architecture intelligence continuously across their client base — without hiring a senior architect per client. Secondary: mid-market Azure tenants (50–500 employees) facing NIS2 or ISO 27001 pressure with no dedicated security team. Where I stand: Built and running. I spent 10 years at Microsoft in the Azure Engineering org doing exactly these engagements manually. PAA started as personal tooling — cut my own delivery time from 2 weeks to 2 days. Now productised. Why it might be stupid: Microsoft gives away WAF assessments for free. Defender for Cloud exists. Every CSPM vendor in the world is bolting AI onto their scanner and calling it intelligence. And I'm one person trying to sell into a partner ecosystem that moves slowly and buys on relationships. Why I think it isn't: Nobody starts from architecture. Every competitor starts from security and works backwards. The WAF free tool is a questionnaire — it doesn't touch your infrastructure. Defender finds what's wrong, not what to do. The MSP white-label model means the product sells through partners who already have the client relationships. And the 2-weeks-to-2-days proof exists — I lived it.”