AWS Cloud Operations Blog
Category: Technical How-to
Transform AWS Support Case Workflows with Kiro CLI
Operations teams managing AWS infrastructure must resolve issues quickly while maintaining thorough documentation and following best practices. Traditional workflows create bottlenecks where valuable engineering time is consumed by administrative tasks rather than actual problem-solving, directly impacting system availability and customer experience. Kiro CLI removes this administrative overhead. Kiro CLI is an AI-powered command-line assistant for […]
Deploy OpenTelemetry Gateway on AWS: Monitoring Your Observability Pipeline
Deploy an OpenTelemetry gateway on Amazon EKS, export metrics to CloudWatch over native OTLP, and monitor the pipeline’s own health with PromQL dashboards and alarms.
Turn Your Amazon CloudWatch Alarms into Actionable Signals
Your alarm fires at 2 AM. You grab your phone, squint at the notification, and see: “ALARM: my-service-alarm has transitioned to ALARM state.” No context. No application. No hint about which of your 200 instances is the problem, or whether it even matters. I’ve been there. We’ve all been there. Alarm frustration often comes from […]
Using Amazon S3 Server Access Logs with Amazon CloudWatch Logs
TL;DR What if you could go from raw Amazon S3 server access logs to a complete security dashboard without building a custom pipeline? The dashboard below is deployed using the CloudFormation template provided in this post. Figure 1: Amazon S3 Server Access Logs Security, Compliance & Audit Dashboard Until now, getting security visibility from Amazon […]
Log analysis with facets, correlation, enrichment, and automation in Amazon CloudWatch Log Analytics
Teams working with distributed applications accumulate logs across multiple log groups, including application logs, access logs, and audit trails. When something needs investigating, an engineer opens the console and starts writing queries from scratch. The same query gets written differently by different people. The results lack context because the log event does not contain who […]
Analyzing Claude Code usage with CloudWatch and OpenTelemetry
If your engineering organization uses AI coding agents like Claude Code, usage is likely growing faster than your ability to track it. Token consumption, cost per team, and developer productivity are questions that existing dashboards don’t answer, because the telemetry never made it to your observability backend. With Amazon CloudWatch OpenTelemetry Protocol (OTLP) in General […]
Transfer AWS accounts between AWS Organizations while preserving AWS Lake Formation permissions
Many AWS customers move their AWS accounts between organizations When your company manages more than one organization, and whether you regularly move accounts between them; or you are consolidating accounts after a merger, acquisition, or divesture. Account migrations are part of operating on AWS. Previously, moving an account meant removing it from the source organization, making it standalone, then inviting it to the target organization. For accounts with AWS Resource Access […]
Build a Multi Account Patch Compliance Dashboard with Kiro Specs
Introduction Robust patch management is essential for maintaining system security, reliability, and compliance across your IT infrastructure. AWS Systems Manager Patch Manager provides a full-featured patching solution, enabling you to automate the deployment of operating system updates to managed nodes across AWS accounts, on-premises, and multicloud environments. However, as your organization scales across dozens or […]
Import Historical data from AWS CloudTrail Lake to Amazon CloudWatch
Organizations managing workloads on AWS rely on AWS CloudTrail to answer the fundamental questions: Who did what, where, and when? Since January 2022, customers have stored their CloudTrail activity logs in CloudTrail Lake, a managed data lake purpose-built for capturing, storing, querying user and API activity across their AWS environment. As organizations scale across multiple […]
Introducing OpenTelemetry and PromQL support in Amazon CloudWatch
Editor’s note (July 2026): This post has been updated to reflect the general availability of Amazon CloudWatch native OpenTelemetry metrics ingestion and PromQL support, including new capabilities and revised pricing. If you run Kubernetes or microservices workloads on AWS, your metrics likely carry dozens of labels: namespace, pod, container, node, deployment, replica set, and custom […]









