How an IT Manager Uses Claude for Infra Audits

Farid Saïd, a Head of IT with 14 years of infrastructure experience, documents how he gave Claude Code read-only SSH access to network switches, SANs, and firewalls across a multi-site environment. A full network security audit that normally takes two to three weeks produced 100+ findings in a single day. The setup is deliberately constrained - read-only access only, no autonomous execution, human review on every action. Over three months he built out auto-generated infrastructure documentation stored in Git, migrated monitoring to Prometheus, Grafana, Loki, and Wazuh, and shifted his team from reactive incident response to proactive hardening. Infrastructure teams using AI as a force multiplier for auditing and documentation rather than autonomous remediation is becoming the pragmatic middle ground between full automation and doing nothing.