What AWS services does Vigilare monitor?

Vigilare monitors 7+ AWS services: Billing (cost anomalies and usage spikes), IAM (policy drift, root account usage, missing MFA), GuardDuty (threat findings), SES (sending reputation), CloudTrail (suspicious API patterns), Service Quotas (limit utilisation), and Account Health (AWS notifications). Coverage is continuously expanded.

How does Vigilare access my AWS account?

Vigilare uses a read-only cross-account IAM role that you provision using our open-source Terraform module. The role grants only the minimum permissions required for monitoring — no write access, no credential storage, and no data leaves your account except what is needed to display findings in your dashboard.

How quickly will I be alerted?

Depending on your plan, Vigilare scans every 1, 5, or 15 minutes. Alerts are delivered in real time via email, Slack, or PagerDuty the moment a threshold is crossed. The typical end-to-end latency from event to alert is under 90 seconds.

Can I monitor multiple AWS accounts?

Yes. The Solo plan covers 1 account, Team supports up to 10, Agency up to 50, and Enterprise is unlimited. All accounts appear in a single dashboard with per-account risk scores and consolidated alert feeds.

Is my AWS data secure?

All data is encrypted at rest with AES-256 and in transit with TLS 1.2+. Vigilare's control plane runs on AWS infrastructure in dedicated, isolated tenants. We never store raw AWS credentials. The platform is SOC 2 Type II compliant and we provide reports on request for Enterprise customers.

Is there a free trial?

Yes — all paid plans include a 14-day free trial. No credit card is required to get started. You can connect your first AWS account and see findings within 5 minutes of signing up.

What happens if I exceed my account limit?

We'll notify you as you approach your account limit and give you the option to upgrade. We won't stop monitoring your existing accounts without notice.

Can I cancel at any time?

Yes. There are no long-term contracts. You can cancel your subscription at any time from the billing settings page. Your access continues until the end of the current billing period.

Getting Started with Vigilare: From Zero to Protected in 5 Minutes

Vigilare monitors your AWS account for security threats, billing anomalies, compliance drift, and the specific risk patterns that lead to account suspension. Setup takes under five minutes and requires no agents, no sidecars, and no changes to your existing infrastructure. Here's how.

What You'll Need

An AWS account with permissions to deploy IAM roles and a CloudFormation stack (or Terraform)
A Vigilare account — sign up at vigilare.io (14-day free trial, no credit card required)
About five minutes

Step 1: Sign Up and Create Your Organization

Go to vigilare.io/signup. Enter your email and create a password. You'll land on the organization setup page where you name your workspace. This is the container for all your AWS accounts — if you manage multiple accounts, they all live here.

Step 2: Connect Your First AWS Account

Click "Add Account" in the dashboard. Vigilare gives you two connection options:

Option A: Terraform (recommended)

Copy the Terraform module code from the dashboard. It looks like this:

module "vigilare" {
  source  = "vigilare/monitor/aws"
  version = "~> 2.0"

  external_id = "your-unique-external-id"
}

Run terraform init and terraform apply. The module creates a read-only IAM role that Vigilare assumes to collect monitoring data. It does not create any compute resources, does not modify your existing infrastructure, and does not have write access to anything in your account.

Option B: CloudFormation

Click the CloudFormation launch button in the dashboard. It opens the AWS CloudFormation console with a pre-filled template. Review the resources (one IAM role, one IAM policy), accept the capabilities acknowledgment, and click "Create stack." Done in about 90 seconds.

Step 3: Wait for the First Scan

After connecting, Vigilare performs an initial scan of your account. This typically takes 2-3 minutes. It discovers your resources, establishes billing baselines, evaluates your security configuration, and calculates your initial risk score.

When the scan completes, your dashboard populates with your account's current state: the risk score, any active findings, billing trends, and account health indicators.

Step 4: Set Up Notifications

Go to Settings → Notifications. Connect your preferred alert channels:

Email — enabled by default for your signup address
Slack — click "Connect Slack," authorize the integration, and choose a channel. Most teams use a dedicated #aws-alerts channel
PagerDuty / Opsgenie — paste your integration key for critical alerts that should page someone
Webhooks — for custom integrations with your existing tooling

Configure alert routing: critical findings (risk score drops, active security threats, billing anomalies) go to Slack and PagerDuty. Informational findings (compliance recommendations, optimization suggestions) go to email for weekly review.

Step 5: Review Your Risk Score

Your risk score is a number from 0 to 100 that reflects your account's overall health across four dimensions: security posture, billing health, compliance status, and operational risk. A score above 80 means your account is in good shape. Below 60 means there are issues worth addressing soon. Below 40 means something needs immediate attention.

Click into the risk score to see what's contributing to it. Each finding is actionable — it tells you what the issue is, why it matters, and how to fix it.

What Happens Next

Vigilare continuously monitors your account at 5-minute intervals. It watches for billing anomalies by comparing current spend against your rolling baseline. It detects security threats by analyzing GuardDuty findings, IAM changes, and CloudTrail activity. It tracks compliance by evaluating your Config rules and security group configurations. And it monitors the account health signals — SES reputation, service quotas, billing status — that determine whether your account is at risk of AWS enforcement.

If anything changes, you'll know within minutes. Not hours, not the next day — minutes.

Adding More Accounts

If you manage multiple AWS accounts — production, staging, a client account — add each one by repeating Step 2. The Vigilare dashboard shows all accounts in a single view with per-account risk scores and the ability to drill into any account's details.

Protect your AWS accounts before it's too late

Vigilare monitors your AWS accounts for suspension risks — billing anomalies, IAM issues, GuardDuty findings, and more — and alerts you before AWS takes action.

See Vigilare pricing Talk to us about securing your AWS Browse documentation →

Written by Vigilare Engineering

Platform Team