# Deliverable & Report Timeline

## Standard Deliverables
Each GrintOps service includes standardized outputs depending on the tier and scope.

### 🔐 Security Engineering
- **VAaaS (Vulnerability Assessment)**  
  PDF/HTML report with CVSS scoring, affected components, and remediation steps.

- **PTaaS (Penetration Testing)**  
  Technical & executive report, risk prioritization, attack path simulation (PDF/HTML), retesting summary (Pro+ only).

- **PSaaS (Phishing Simulation)**  
  Campaign summary, open/click report, awareness scoring, learning material download (PDF/CSV/JSON).

---

### ⚙️ Platform Engineering
- **DOaaS (DevOps as a Service)**  
  CI/CD architecture diagram, config audit summary, deployment logs (Pro+), IaC validation result.

- **DSOaaS (DevSecOps)**  
  Code scan results (SAST/DAST), container image scan, supply chain risk summary, GitOps security posture report.

- **COaaS (CloudOps)**  
  Infrastructure provisioning logs, resource inventory (PDF/Excel), monitoring config snapshot, policy enforcement summary.

---

### 🧩 Products
- **OSaaS (Open Source as a Service)**  
  - For Business Stack: Admin guide, initial config, permission matrix (PDF).  
  - For Infra Stack: Deployment log, user access notes, hardening checklist (Enterprise only).

---

## Timeline by Service

| Service     | Delivery SLA            |
|-------------|-------------------------|
| VAaaS       | 2–4 working days        |
| PTaaS       | 3–5 working days        |
| PSaaS       | 1–3 working days        |
| DOaaS       | 3–7 working days        |
| DSOaaS      | 5–7 working days        |
| COaaS       | 3–5 working days        |
| OSaaS       | 1–2 working days post-setup |

> Note: SLA applies after onboarding, provisioning, and access have been completed by the client.