Sold by: Si Novi - Cloud-native Software
This professional service provides a turnkey deployment of a secure, multi-region, organisation-wide AWS CloudTrail solution. It ensures that all accounts in your AWS Organisation are automatically covered with centralised logging, enabling a strong audit trail for governance, compliance, and security investigations.
Overview
This professional service provides a turnkey deployment of a secure, multi-region, organisation-wide AWS CloudTrail solution. It ensures that all accounts in your AWS Organisation are automatically covered with centralised logging, enabling a strong audit trail for governance, compliance, and security investigations.
Our solution delivers CloudTrail logs into a dedicated Amazon S3 bucket, configured with server-side encryption (SSE-S3), versioning, and enforced TLS for tamper-resistant storage. Lifecycle policies automatically transition logs to S3 Standard-IA, S3 Glacier, and S3 Glacier Deep Archive, giving you multi-year retention at minimal cost. The deployment also enables log file validation to verify the integrity of logs, and applies strict bucket policies aligned with AWS best practices.
The service is built using AWS CloudFormation / AWS CDK, and leverages AWS Organisations trusted access to configure an Organisation Trail. This means every new account you add to your Organisation is automatically covered without additional setup. Optional integrations include Amazon CloudWatch Logs for near real-time monitoring and CloudTrail Insights for anomaly detection.
By implementing this service, customers gain:
Complete visibility into management events across all accounts and regions.
Compliance readiness with long-term, encrypted, immutable log storage.
Cost optimisation through automated tiering of log data to lower-cost S3 storage classes.
Security best practices including TLS enforcement, bucket owner control, and audit-proof log validation.
Future-proofing with a fully codified, repeatable deployment that scales as your organisation grows.
This professional service is ideal for organisations preparing for compliance audits (e.g., ISO, SOC 2, GDPR), implementing the AWS Well-Architected Framework (Security and Operational Excellence pillars), or simply ensuring that AWS activity across multiple accounts and regions is captured, centralised, and protected.
AWS Services used: AWS CloudTrail, AWS Organizations, Amazon S3, Amazon CloudWatch Logs (optional), AWS CloudFormation / AWS CDK, AWS Key Management Service (optional).
Highlights
- Organisation-wide coverage – captures management events from all accounts in your AWS Organisation and across all AWS regions.
- Cost-optimised retention – automated S3 lifecycle policies transition logs from Standard to Standard-IA, Glacier, and Deep Archive, enabling multi-year storage at minimal cost.
- Future-proof scaling – new accounts added to your AWS Organisation are automatically covered without additional configuration.
Details
Categories
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.