Fluid Attacks stackServicesCloudWatch

CloudWatch

Last updated: Mar 2, 2026

Rationale

We use CloudWatch for monitoring our entire AWS infrastructure. We can monitor our applications, react to performance changes within them, optimize resource utilization, and get a unified view of operational health. The main reasons why we chose it over other alternatives are the following:

  • It is a core AWS service. Once we start creating infrastructure, CloudWatch begins to monitor it.
  • It integrates seamlessly with most AWS services. Some examples are EC2, S3, and DynamoDB.
  • It complies with several certifications from ISO and CSA. Many of these certifications are focused on ensuring that the entity follows best practices regarding secure cloud-based environments and information security.
  • It supports custom dashboards for visualizing metrics using diagrams like bars, pies, and numbers, among others. Other customizations, such as timespans and resource metrics as axes, are also available.
  • It supports alarms using AWS SNS, allowing email notifications to be triggered when resource metric conditions are not met or when anomalies are detected.
  • Resources can be written as code using Terraform.

Alternatives

Usage

We use CloudWatch for monitoring

  • EC2 instance performance;
  • EBS disk usage and performance;
  • S3 bucket size and object number;
  • ELB load balancer performance;
  • Redshift database usage and performance;
  • DynamoDB tables usage and performance;
  • SQS sent, delayed, received and deleted messages;
  • ECS cluster resource reservation and utilization, and
  • Lambda invocations, errors, duration, among others.

We do not use CloudWatch for

Bedrock

Learn about Amazon Bedrock, the tool chosen by Fluid Attacks as main point of contact while interacting with LLMs.

DynamoDB

Learn about DynamoDB, an AWS service employed by Fluid Attacks to store business-related data in its platform.

On this page

RationaleAlternativesUsage