GuardDuty pricing investigation

0

A customer is using S3 and Glue Job to combine all the files in their s3.
As it stands their s3 cost is almost half of guard duty and glue job.

Is there a way to find out what made the guard duty cost to go up? I mean it tells me the usage ie. this bucket but thats pretty much it, what was scan etc there is no informaiton on that, and why almost double the cost of the data that is there.

I can tell the customer not to use s3 data events for guard duty by turning it off, not something I want to do, but just trying to understand if there is a way to tell or visualize why the cost almost double of the data there.

1 個回答
0
已接受的答案

When enabling GuardDuty for S3, GD starts looking for S3 Data Events, e.g. GetObject, ListObjects, DeleteObject, and PutObject API operations. They are often high-volume activities, especially if used in the context of ETL processes.

You can find more details by creating a Cost Usage Report (CUR) and filter by product/group = Security Services - Amazon GuardDuty Paid S3 Data Events Processed. If you are using tags, you can get a more granular view of which buckets are contributing the most (this is also available from the Events section in the GD console)

AWS
專家
Luca_I
已回答 3 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南