An apparatus includes a scanner and a cloud engine. The scanner determines that a first cloud environment is of a first type and that a second cloud environment is of a second type that is different from the first type. The cloud engine selects a first tool and a second tool. The cloud engine also sets a first parameter and a first configuration for the first tool and a second parameter and a second configuration for the second tool. The cloud engine further receives a first alert that a security vulnerability in the first cloud environment has been detected and a second alert that resource consumption in the second cloud environment has exceeded a threshold. The cloud engine communicates a first solution to resolve the security vulnerability in the first cloud environment and a second solution to lower resource consumption in the second cloud environment.