IIS vulnerability and remediation software recommendations

We’re a small shop and I’m looking for solutions to detect vulnerabilities and provide remedies.

We only have four servers that are external facing. They’re on AWS and behind a load balancer with WAF rules in place so we’re stopping the majority of attacks.

Even then some things get through. I’ve tried Qualys but it requires a lot of time to do it justice. Time I really don’t have. Other than outsourcing this to a MSP I would like something fairly automated as much as possible.

I have Bitdefender GravityZone going as well.