What AWS services does Vigilare monitor?

Vigilare monitors 7+ AWS services: Billing (cost anomalies and usage spikes), IAM (policy drift, root account usage, missing MFA), GuardDuty (threat findings), SES (sending reputation), CloudTrail (suspicious API patterns), Service Quotas (limit utilisation), and Account Health (AWS notifications). Coverage is continuously expanded.

How does Vigilare access my AWS account?

Vigilare uses a read-only cross-account IAM role that you provision using our open-source Terraform module. The role grants only the minimum permissions required for monitoring — no write access, no credential storage, and no data leaves your account except what is needed to display findings in your dashboard.

How quickly will I be alerted?

Depending on your plan, Vigilare scans every 1, 5, or 15 minutes. Alerts are delivered in real time via email, Slack, or PagerDuty the moment a threshold is crossed. The typical end-to-end latency from event to alert is under 90 seconds.

Can I monitor multiple AWS accounts?

Yes. The Solo plan covers 1 account, Team supports up to 10, Agency up to 50, and Enterprise is unlimited. All accounts appear in a single dashboard with per-account risk scores and consolidated alert feeds.

Is my AWS data secure?

All data is encrypted at rest with AES-256 and in transit with TLS 1.2+. Vigilare's control plane runs on AWS infrastructure in dedicated, isolated tenants. We never store raw AWS credentials. The platform is SOC 2 Type II compliant and we provide reports on request for Enterprise customers.

Is there a free trial?

Yes — all paid plans include a 14-day free trial. No credit card is required to get started. You can connect your first AWS account and see findings within 5 minutes of signing up.

What happens if I exceed my account limit?

We'll notify you as you approach your account limit and give you the option to upgrade. We won't stop monitoring your existing accounts without notice.

Can I cancel at any time?

Yes. There are no long-term contracts. You can cancel your subscription at any time from the billing settings page. Your access continues until the end of the current billing period.

AWS Billing Alerts in 5 Minutes: The Minimum Setup Every Startup Needs

There is no good reason to run an AWS account without billing alerts. Setup takes less time than making coffee, it's free for the first two budgets, and it's the difference between catching a $500 mistake on day one and discovering a $5,000 problem on your monthly invoice.

Here's the exact setup. No theory, no architecture diagrams — just the steps.

Step 1: Create an AWS Budget (2 minutes)

Open the AWS Billing console. Click "Budgets" in the left navigation. Click "Create a budget."

Choose "Cost budget — Recommended." Set the budget amount to your expected monthly spend. If you're not sure what that is, check last month's bill in Cost Explorer and add 50%. If this is a new account, set it to whatever amount would make you uncomfortable if you saw it on your credit card statement.

Configure three alert thresholds:

80% of budget — "Heads up, you're on track to spend more than usual"
100% of budget — "You've hit your expected spend, investigate if unexpected"
150% of budget — "Something is probably wrong, look at this now"

Enter your email address for each alert. If you have a team Slack channel, you can configure SNS integration later — for now, email is fine. Click "Create budget." Done.

Step 2: Enable Cost Anomaly Detection (2 minutes)

Still in the Billing console, click "Cost Anomaly Detection" in the left nav. Click "Create monitor."

Choose "AWS services" as the monitor type — this monitors spend across all services in the account. Name it something descriptive like "All services - anomaly detection."

Create an alert subscription: enter your email, set the threshold to "Individual anomaly" with a minimum impact of $10 (or whatever amount matters to you — this filters out noise from tiny deviations). Click "Create monitor." Done.

Cost Anomaly Detection uses machine learning to learn your normal spend patterns and alerts when something deviates. It's smarter than the flat-threshold budget alerts because it adapts to your actual usage. The downside: it has up to a 24-hour delay before anomalies are detected.

Step 3: Enable Billing Alerts in CloudWatch (1 minute)

Go to the Billing console preferences page. Check "Receive Billing Alerts." Save preferences.

This enables the EstimatedCharges metric in CloudWatch, which updates roughly every 6 hours. You can now create CloudWatch alarms on your estimated charges — a useful layer on top of Budgets because CloudWatch alarms can trigger Lambda functions, SNS topics, and other automated responses.

For now, just enabling it is enough. You can build on it later.

What These Three Layers Cover

Budget alerts give you fixed thresholds. Cost Anomaly Detection gives you ML-based pattern recognition. CloudWatch billing metrics give you programmable hooks for automation. Together, they cover the most common billing surprise scenarios:

Gradual cost creep from forgotten resources (budget alerts catch this at month-end)
Sudden spikes from misconfiguration or compromise (anomaly detection catches this with 24-hour delay)
Threshold-crossing events that need automated response (CloudWatch alarms enable this)

What These Three Layers Don't Cover

The 24-hour detection gap is real. If an attacker compromises your credentials and spins up GPU instances at 2 AM, you won't get an anomaly detection alert until the next day. By then, the bill could be $5,000+.

None of these tools correlate billing spikes with security signals. A $2,000 spike that coincides with a GuardDuty finding for credential compromise looks very different from a $2,000 spike that coincides with a marketing campaign driving traffic — but budget alerts treat them identically.

And none of them help you understand the account-level risk picture: billing health + security posture + compliance status + SES reputation, all in one place.

That's where real-time monitoring tools add value. Vigilare monitors billing at 5-minute intervals, correlates cost signals with security findings, and gives you a single risk score for your entire account. If 5-minute billing alerts and automatic cost-security correlation sound better than checking three separate dashboards, start a free 14-day trial.

Protect your AWS accounts before it's too late

Vigilare monitors your AWS accounts for suspension risks — billing anomalies, IAM issues, GuardDuty findings, and more — and alerts you before AWS takes action.

See Vigilare pricing Talk to us about securing your AWS Browse documentation →

Written by Viktor B.

Co-founder & CEO