AWS Compute Analyzer
Analyzer: AWS Compute
The AWS Compute Analyzer provides critical insights into your compute infrastructure, including EC2, ECS, and their workloads, as well as spot instances. It serves as a pivotal tool for IT Ops and Sec Ops engineers by enhancing operational observability, compliance, and security. With this analyzer, engineers can efficiently monitor compute resources, identify vulnerabilities, and optimize resource usage. It streamlines decision-making processes, helps mitigate risks, and ensures adherence to compliance standards.
Sightlines and Widgets
EC2 Instance State
Significance: This sightline offers a comprehensive view of the state of EC2 instances across the environment. It helps Sec Ops engineers identify stopped or terminated instances and provides IT Ops engineers with a real-time snapshot of running resources to ensure efficient resource management.
Widgets:
EC2 Instance Type
Significance: Focused on understanding the types of EC2 instances in use, this sightline allows engineers to track reserved, spot, and scheduled instances for cost optimization and operational planning.
Widgets:
EC2 Network Connectivity
Significance: This sightline highlights network connectivity aspects, including security group configurations and public versus private instance distributions. It assists Sec Ops engineers in identifying misconfigurations and IT Ops engineers in maintaining secure and efficient network setups.
Widgets:
EC2 Instance Access
Significance: This sightline provides visibility into EC2 instance access configurations, such as IAM roles and key pairs. It supports engineers in identifying instances with exposed or unused access credentials, ensuring secure operations.
Widgets:
EC2 Instance AMIs
Significance: Focused on AMI (Amazon Machine Image) management, this sightline helps engineers monitor attached and unattached AMIs to optimize storage and improve resource utilization.
Widgets:
EC2 Instance Storage
Significance: This sightline provides insights into EC2 storage usage, highlighting unencrypted and unused volumes. It supports engineers in optimizing storage and enhancing security by identifying non-compliant volumes.
Widgets:
ECS Cluster
Significance: This sightline focuses on ECS cluster metrics, providing engineers with a detailed view of services, tasks, and regional distributions for efficient workload management and scaling.
Widgets:
Lambda Functions
Significance: This sightline highlights the usage and runtime of Lambda functions, helping engineers identify errors and optimize functions for better performance.
Widgets:
Elastic IP
Significance: This sightline monitors the usage of Elastic IPs, distinguishing between attached and detached IPs. It ensures efficient utilization and cost management.
Widgets:
EBS Snapshot
Significance: Focused on snapshot management, this sightline helps engineers identify privately shared, public, and unencrypted snapshots to maintain security and compliance.
Widgets:
Insight Feed Alerts
Public EC2 Instances Exposing Non-public S3 Buckets Count
Significance: This alert identifies public EC2 instances exposing non-public S3 buckets, a critical security risk. It enables Sec Ops engineers to quickly mitigate potential data breaches and ensures IT Ops engineers maintain strict access control and compliance.
Last updated
Was this helpful?