Use cases
Security and compliance
Security violations to be escalated to the Security team
Encryption related violation to be escalated to Security team
CIS Compliance violations to be escalated to networking or operations team
Available Critical patch vulnerabilities to be escalated to networking team
HIDS are not active on Production instances
Security related upgradable patches older than 30 days
Critical vulnerability scans on production instances
New publicly accessible S3 bucket
User without MFA
Billing
Notifications to Application owners with copy to finance team:
Billing anomalies to be escalated
MTD Spend reached 75% of Last Month Spend
Unused instance Reservation
Idling and underutilized resources alerts
Cost per transaction for S3 buckets higher than defined threshold
Operations
Overutilized resources
Scheduled AWS Instance and volume maintenance notifications
Missing backups or monitoring on production environment
Cloud accounts removal request
New resource spun up without required tag