As a Managed Service Provider for Amazon Web Services we work closely with our clients to ensure that every little detail is taken care of. However if you’re not our client and using AWS it may not be configured to ensure the best security, billing protections or transparency. Do these 3 things immediately –
1) Enable CloudTrail
CloudTrail is a web service that records AWS API calls for your account and delivers log files to you. This is very useful for Audit trail and tracking infrastructure changes. You can follow this link to enable CloudTrail. Please be aware that CloudTrail is a regional service and you must enable it across all the regions regardless if you have resources in that region or not.
2) Enable detail billing:
Simply put, this enables you to keep on top of costs and activate alerts if your bills reaches a certain threshold. There are plenty of stories of unexpected costs dues to poor management – Detail Billing can stop this.
3) Enable config service:
CloudConfig makes it easy to correlate resources changes. For example, you can see what changes has been made in VPC. This comes really handy if you are debugging issues.CloudConfig is also a regional service, you should enable it across all the regions. Here a link for enabling AWS config service: Set Up AWS Config Using the Console.