WH WHPS TransformationInvestment View
Broker / agent pathway investment view

Investment view for secure broker and agent pathway delivery.

A decision-ready cost view that separates incremental funding from owned WHPS capability already in service. The model distinguishes new spend from existing infrastructure, security tooling, AI SDLC delivery capacity, and annual operating support.

Review estimate Download workbook Download cost model Download estimate basis
Investment summary

Show the cash ask separately from the enterprise capability already consumed.

This view uses three treatments: incremental funding, owned capability showback, and annual run support. It keeps owned capability visible without implying that already-owned infrastructure requires new purchase.

Incremental funding $335K - $735K

New project funding concentrated in AppLogix support, Elevate audit and penetration testing, remediation, and procurement gaps.

External assurance $300K - $600K

Elevate audit and penetration testing planning range pending validated scope, statement of work, and purchasing confirmation.

Owned capability showback $150K - $360K

Estimated value of already-owned on-prem, network, WAF/F5, IAM, security platforms, monitoring, and AI SDLC capability consumed.

Annual operating support $35K - $90K

Annual production support, patching, certificate care, vulnerability scans, evidence refresh, access review, and release support.

Investment thesis

The investment profile is favorable because the pathway reuses enterprise platforms already owned and operated by WHPS. The funding request should focus on what must be newly funded while the showback view makes the consumed infrastructure, security, and delivery capability visible.

Funding and capability model

What requires funding versus what is already in service.

The model is intentionally simple: new project funding, owned capability showback, and recurring run support. Delivery efficiency can be discussed separately without turning it into a budget line.

Incremental funding Project-specific cash requirement
  • Specialized AppLogix contractor delivery support
  • Elevate audit and penetration testing
  • External remediation support where required
  • One-time procurement gaps not covered by enterprise licenses
Owned capability showback Existing WHPS platforms consumed by the pathway
  • Governed AI SDLC delivery model, engineering patterns, and release evidence workflow
  • On-prem servers, storage, data center, backup, and monitoring
  • Network, DNS, reverse proxy, F5 VIP, WAF, firewall, and certificates
  • IAM, SSO, MFA, IDM, role controls, privileged access, and audit logs
  • Tanium, Cortex, Qualys, SAST, DAST, SIEM, CI/CD, and endpoint controls
Annual operating support Production run capacity that should remain visible
  • Patch, certificate, access, scan, and vulnerability management cadence
  • Evidence refresh, release notes, incident support, and access reviews
  • Monitoring, backup, production readiness, and minor release support
  • Annual support is shown separately so one-time build economics are not overstated
Showback visual

The cost story is targeted new spend plus owned platform leverage.

The visual separates the funding request from the estimated value of capabilities already available inside WHPS. This is the clearest way to explain why the pathway is materially more efficient without treating enterprise assets as newly purchased.

New funding $335K - $735K AppLogix support, Elevate audit and penetration testing, remediation, and procurement gaps.
Showback value $150K - $360K Existing WHPS infrastructure, security tooling, delivery tooling, monitoring, and AI SDLC capability.
Run support $35K - $90K / year Recurring operational support, evidence refresh, release care, vulnerability management, and access governance.
AI SDLC delivery model On-prem compute and storage F5 VIP / WAF / firewall IAM / SSO / MFA / IDM Tanium / Cortex / Qualys SAST / DAST / SIEM Monitoring and backup CI/CD and release evidence
Detailed estimate

Estimate by cost category.

These ranges should be validated against actual loaded labor rates, contractor rates, security scope, and final Elevate assessment scope before being treated as a budget baseline.

Cost category Treatment Planning range Cash impact Basis
AI SDLC product, PM, and engineering delivery Showback $90K - $210K No new procurement assumed Existing WHPS delivery capacity, governed AI SDLC patterns, architecture, engineering, release support, and cadence.
QA, UAT, accessibility, and evidence package Showback $25K - $60K No new procurement assumed Focused validation, regression evidence, accessibility checks, traceability, screenshots, runbook, and release package.
On-prem infrastructure and network services Showback $18K - $45K Up to $5K if capacity gap appears Shared server capacity, storage, backup, DNS, reverse proxy, F5 VIP, WAF, firewall, certificates, and monitoring.
Enterprise security and delivery tooling Showback $15K - $40K Up to $5K if license gap appears Tanium, Cortex, Qualys, SAST, DAST, SIEM, CI/CD, endpoint controls, scanning, audit logging, and vulnerability workflow.
Security hardening and remediation reserve Mixed $20K - $65K $15K - $50K Remediation support, configuration work, control evidence, WAF/F5 tuning, IAM hardening, and gap closure.
AppLogix contractor delivery support New funding $20K - $75K $20K - $75K Specialized delivery support, readiness work, integration support, and implementation lift.
Elevate audit and penetration testing New funding $300K - $600K $300K - $600K External security assessment, penetration testing, evidence review, findings management, and retest planning.
Annual production support and evidence refresh Recurring $35K - $90K / year Up to $15K / year potential incremental cash Patch, certificate care, scanning, access review, production support, incident response, evidence refresh, and release support.
Decision packet

Estimate packet components.

A complete investment packet includes the estimate, basis of estimate, delivery model, security evidence, and open decisions. Existing infrastructure lowers incremental cash need, while showback keeps the consumed enterprise capability visible.

01 Investment workbook

Executive summary, showback view, funding model, run support, and assumption tabs in a shareable workbook.

 02 Cost model CSV

Simplified line-item planning ranges by category, treatment, cash impact, showback value, and assumptions.

 03 Estimate basis brief

Investment posture, estimate basis, open validation inputs, and recommended review treatment.

 04 Security architecture

Architecture, trust zones, access controls, network posture, monitoring, and evidence expectations.

 05 Security testing checklist

SAST, DAST, vulnerability scan, penetration testing, remediation, release, and audit readiness items.

 06 Traceability matrix

CMS/EDE requirements, implementation coverage, evidence references, and readiness disposition.

 07 Evidence vault

Screenshot evidence, controls, API evidence, packages, manifests, and reviewer-facing artifacts.
Estimate governance

Controls before converting the range into a budget baseline.

The estimate is ready for planning discussion. Finance should validate loaded labor rates, contractor rates, capitalization treatment, depreciation assumptions, and the final third-party audit scope.

Keep Elevate separate

The external audit and penetration test should remain a distinct line item until scope and procurement are confirmed.

Keep showback visible

Owned data center, security tooling, network services, and AI SDLC capability reduce new spend but still consume capacity.

Use ranges, not a single number

The estimate is still scope-sensitive. Present low and high ranges until actual time, scope, and audit inputs are validated.

Separate delivery efficiency from cost

Delivery speed and capacity leverage support the investment case, but they should not be treated as a budget line.