AWS & Azure migrations, IAM and identity federation, cloud security governance, and AI-powered managed CloudOps — delivered to enterprises across the United States, Europe, and East Africa.
The Control Plane
The Bleu Nexus Control Plane (BNCP) uses specialized, domain-scoped AI agents — all coordinated through a central orchestration layer with mandatory human-in-loop review before any deployment.
Connects to Azure Cost Management APIs to detect anomalies, generate budget forecasts using GPT-4o, and produce actionable right-sizing recommendations. No autonomous cost changes — every output is a structured report for your review.
Azure Cost API · GPT-4o · Z-Score AnalyticsIntegrates with Microsoft Defender for Cloud, runs Checkov against all IaC before deployment, and maintains compliance gap registers for SOC2, ISO 27001, and Kenya's Data Protection Act 2019. Weekly security posture reports per tenant.
Checkov · Defender · Kenya DPA 2019Monitors AKS cluster health, generates Helm chart templates for client workloads, recommends HPA settings and resource limits based on observed metrics, and handles automated certificate rotation via cert-manager.
AKS · Helm 3 · cert-manager · KEDAMaintains a full audit log of every agent action, user interaction, and IaC deployment in Azure Log Analytics. Generates monthly executive compliance reports in PDF format per tenant and monitors Azure Policy compliance scores.
Azure Monitor · Log Analytics · PDF ReportsSystem Architecture
The v1 platform deploys on Azure Kubernetes Service (South Africa North region), with full AWS EKS expansion post-validation. Every AI action passes through a human-approved Review Queue before deployment.
Pricing
Competitive, penetration-first pricing in both USD and KES, with M-Pesa billing enabled at launch across all tiers.
Regions & Markets
From US fintechs and EU regulated enterprises to Kenyan banks under regulatory pressure — Bleu Nexus AI fills cloud architecture gaps no single provider addresses.
Series B–D fintechs need senior cloud architects without senior salaries. AWS Organizations migrations, IAM federation, SOC 2 readiness, and FinOps remediation — billed in USD, delivered remotely from Atlanta.
GDPR, DORA, and NIS2 have teeth. Bleu Nexus brings identity-first AWS Organizations design, audit-ready governance, and cross-border data architecture to financial services and healthcare across the EEA.
NBK, Family Bank, Equity Bank, KCB — regulatory pressure is driving cloud and security spend, yet most lack internal cloud teams. IFRS17 compliance requirements are forcing legacy system modernization now.
Kenya's digital government mandate is driving a massive cloud migration. Agencies including KNBS and eCitizen need locally-grounded managed service expertise that global providers cannot offer.
Maersk East Africa, Twiga, and regional logistics operators need real-time data infrastructure, containerization, and FinOps optimization. Cloud costs are ballooning without proper visibility.
World Bank, USAID, and AfDB-backed programs already deploy on AWS and Azure but lack local managed service expertise. Bleu Nexus AI provides the in-region support these organizations require.
East African telcos are building 5G cloud-native platforms and accelerating DevOps adoption. AKS management and CI/CD automation are immediate, billable needs across Safaricom and MTN East Africa.
M-KOPA, Twiga, Sendy, and the next generation of Nairobi-born tech companies are cloud-native from birth. They need managed Kubernetes, FinOps visibility, and security scanning without building internal teams.
Global Digital Product
The exact playbook a senior architect uses to migrate 30+ AWS accounts into a governed Organization with Entra ID-mapped permission sets — built for cloud teams in the US, EU, and East Africa. Buy once, ship anywhere, lifetime updates.
Five parts. ~120 pages. Ready-to-use Terraform modules and JSON catalogs included.
Inventory shadow accounts, run a Prisma Cloud security baseline, audit cost and identity posture.
OU structure, account-vending strategy, network topology, logging guardrails, SCPs that don't break developers.
Entra ID → IAM Identity Center mapping, 12 reusable permission sets, break-glass without holes, federated access migration.
Wave planning, end-user communication templates, cutover runbooks with rollback triggers, day-2 ops checklist.
Post-acquisition migrations, Power BI / Azure Data Gateway tenant recovery, compliance carryover for auditors.
Why We Built This
Bleu Nexus AI isn't a deck — it's a 21-year track record of cloud migrations, identity work, and infrastructure governance, productized for global teams.
Nathaniel played a key role in a 30-account AWS Organizations migration that required complex coordination across services, identity systems, and teams. His ownership mindset, persistence, and ability to carry work across the finish line made a meaningful difference in the outcome. I would highly recommend him for cloud infrastructure, platform engineering, or identity and access management roles.
Market Opportunity
Kenya is the fastest-growing cloud market in Sub-Saharan Africa, with a severe shortage of locally-grounded cloud architects. Nairobi as a hub gives access to Tanzania, Uganda, Rwanda, and Ethiopia — a 300M+ population market.
Roadmap
A focused, capital-efficient deployment plan — bootstrapped with Azure and AWS startup credits, designed to reach paying clients by Month 3.
AKS cluster, ACR, PostgreSQL, Azure Key Vault, Redis, and Event Hubs all live. CI/CD pipeline via GitHub Actions operational. All resources deployed to Azure South Africa North region.
API health endpoint running on AKS. FinOps Agent generating first cost reports. Review Queue functional — no IaC deploys without human approval in place.
React Dashboard live with RBAC and MFA via Azure AD. All four agents operational. Governance audit logs verified in Log Analytics. Billing integration with Stripe and M-Pesa tested.
Inaugural Nairobi CloudOps Summit hosted, inviting CTOs and CIOs from target banks, insurers, and logistics firms. AWS Partner Network and Microsoft CSP Partner applications submitted.
Target: 3 paying clients by end of Month 3. MRR confirmed. Pipeline of 5–8 clients by Month 6. First professional services engagement (Cloud Migration Assessment, $8K–$25K) by Month 9.
Start Today
Book a free Cloud Cost Audit — we'll identify immediate savings opportunities in your Azure or AWS environment at zero cost, zero commitment.