Sold by: Emdrtc
Deployed on AWS
Track LLM spend by team, project, and customer with budgets, anomaly alerts, and CSV export - self-hosted FinOps for the Aegis AI Gateway in your VPC. Aegis SpendOps from Emdrtc scrapes Aegis Prometheus metrics and optional usage_events, applies a model pricing catalog, and rolls up cost in a web dashboard. Set budgets per allocation dimension, get alerted on spend spikes, and export data for finance. No per-seat SaaS dependency - your cost data stays in your AWS account. Deploy on Amazon ECS Fargate in minutes with included CloudFormation templates. Pairs with Aegis AI Gateway and Aegis Data Shield for a complete LLM control plane.
Overview
Aegis SpendOps is a self-hosted LLM FinOps dashboard for engineering and platform teams running the Aegis AI Gateway. Deploy SpendOps as a single Docker container on Amazon ECS Fargate, EC2, or any Docker host in your VPC. All cost rollups, budgets, and audit history stay on infrastructure you control.
WHO IT'S FOR
Platform engineering, FinOps, and engineering leadership teams who need visibility into LLM API spend across teams, projects, and customers - especially organizations already using the Aegis AI Gateway for unified provider access and metering.
KEY CAPABILITIES
-
Cost rollups: Aggregate token usage and estimated spend by org, team, project, customer, model, and provider.
-
Prometheus scrape: Pull live metrics from one or more Aegis gateway instances at /metrics.
-
Usage events ingest: Optional direct read from Aegis Postgres usage_events for richer allocation drill-downs.
-
Pricing catalog: YAML-based model pricing with defaults for OpenAI, Anthropic, and Gemini; override for your contracts.
-
Budgets and alerts: Set monthly budgets per dimension; anomaly detection flags unexpected spend spikes.
-
Dashboard and export: Embedded web UI with allocation drill-downs and CSV export for finance workflows.
-
Multi-gateway: Register multiple Aegis targets for dev/staging/prod or regional gateways.
DEPLOYMENT ON AWS
SpendOps is designed for AWS Marketplace container delivery:
- Single container, default port 8080
- Health checks: GET /healthz (liveness), GET /readyz (readiness) for ALB target groups
- Persistent state on Amazon RDS PostgreSQL (buyer-provisioned)
- CloudFormation quick-start template included (ECS Fargate + ALB)
- CloudWatch Logs integration via awslogs driver
SECURITY AND DATA RESIDENCY
SpendOps runs entirely in your environment. Emdrtc does not operate a multi-tenant FinOps cloud. Outbound traffic is limited to Aegis /metrics endpoints you configure inside your VPC. Authentication uses bcrypt passwords and JWT sessions.
GETTING STARTED
Subscribe on AWS Marketplace, provision Amazon RDS PostgreSQL, deploy the included CloudFormation template, point SPENDOPS_AEGIS_TARGETS at your Aegis gateway, and sign in to the dashboard. Send allocation headers (x-aegis-team, x-aegis-project, x-aegis-customer) from client apps for cost attribution.
FROM EMDRTC
Aegis SpendOps complements the Aegis AI Gateway and Aegis Data Shield - deploy, protect, and optimize LLM workloads in your VPC.
Highlights
- Self-hosted LLM FinOps in your VPC - cost rollups by team, project, and customer with budgets, anomaly alerts, and CSV export without sending spend data to a third-party SaaS.
- Native Aegis AI Gateway integration scrapes /metrics and optional usage_events for real-time and historical spend attribution across models and providers.
- Deploy on Amazon ECS Fargate in minutes with included CloudFormation templates, ALB health checks, Amazon RDS PostgreSQL, and CloudWatch Logs.
Details
Sold by
Categories
Delivery method
Supported services
Delivery option
ECS Fargate Quick Start
Latest version
Operating system
Linux
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/month |
|---|---|---|
Aegis SpendOps Starter | Self-hosted LLM FinOps for small teams. Includes 1 Aegis gateway target, budgets, anomaly alerts, CSV export, and email support. | $200.00 |
Aegis SpendOps Professional | LLM FinOps for growing platform teams. Includes up to 5 Aegis targets, usage_events ingest, custom pricing catalog, multi-user dashboard, and 48-hour email support. | $500.00 |
Aegis SpendOps Business | Enterprise LLM FinOps. Unlimited Aegis targets, full allocation drill-downs, priority support with 24-hour response target for critical issues, and production deployment guidance. | $800.00 |
Vendor refund policy
Emdrtc offers a 30-day money-back guarantee on first-time Aegis SpendOps subscriptions purchased through AWS Marketplace. Refunds are not available for renewal charges, private offers already discounted, or accounts terminated for violation of the EULA. To request a refund, email support@emdrtc.com with your AWS account ID, Marketplace subscription ID, purchase date, and reason for the request. We will respond within 5 business days.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
ECS Fargate Quick Start
Supported services: Learn more
- Amazon ECS
- Amazon EKS
Container image
Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.
Version release notes
Initial public release of Aegis SpendOps on AWS Marketplace.
NEW IN 1.0.0
- LLM cost rollups by org, team, project, customer, model, and provider
- Prometheus scrape from Aegis AI Gateway /metrics endpoints
- Optional usage_events ingest from Aegis PostgreSQL for allocation drill-downs
- YAML pricing catalog with defaults for OpenAI, Anthropic, and Gemini
- Monthly budgets and anomaly detection alerts
- Embedded FinOps web dashboard with CSV export
- Multi-target support for dev, staging, and production Aegis gateways
- Single-container deployment on Amazon ECS Fargate, ECS, EC2, or Docker
- Health endpoints: GET /healthz (liveness) and GET /readyz (readiness)
- Amazon RDS PostgreSQL for persistent state (buyer-provisioned)
- Included CloudFormation quick-start template (ECS Fargate, ALB, CloudWatch Logs)
DEPLOYMENT
Subscribe on AWS Marketplace, provision Amazon RDS PostgreSQL, deploy using the CloudFormation template, set SPENDOPS_AEGIS_TARGETS to your Aegis gateway, and sign in to the dashboard.
UPGRADE PATH
Future versions use the same RDS database. Set SPENDOPS_MIGRATE_ON_START=true (default) for automatic schema migrations.
Additional details
Usage instructions
Aegis SpendOps: LLM FinOps for the Aegis AI Gateway. Port 8080, RDS PostgreSQL required. Docs: https://www.emdrtc.com/docs#spendops . Billing: AWS Marketplace only.
PREREQUISITES
- Active Marketplace subscription.
- AWS CLI v2; ECS Fargate or Docker.
- RDS PostgreSQL 16+; Aegis Gateway /metrics in same VPC.
- VPC: public ALB subnets, private task subnets.
- SG: ALB 443; ALB to task 8080; task to RDS 5432; task to Aegis 8080.
IMAGE: 709825985650.dkr.ecr.us-east-1.amazonaws.com/emdrtc/spendops:1.0.0 CFN: https://www.emdrtc.com/templates/spendops-fargate.yaml COMPOSE: https://www.emdrtc.com/templates/spendops-docker-compose.yml
STEP 1 PULL
export AWS_REGION=us-east-1 IMAGE_URI=709825985650.dkr.ecr.us-east-1.amazonaws.com/emdrtc/spendops:1.0.0 aws ecr get-login-password --region $AWS_REGION | docker login --username AWS --password-stdin $(echo $IMAGE_URI | cut -d/ -f1) docker pull $IMAGE_URI
STEP 2A DOCKER
curl -O https://www.emdrtc.com/templates/spendops-docker-compose.yml docker compose -f spendops-docker-compose.yml up -d Set SPENDOPS_AEGIS_TARGETS to Aegis /metrics URL.
STEP 2B FARGATE
CloudFormation Create stack with spendops-fargate.yaml. Set ImageURI, DatabaseURL, AdminEmail, AdminPassword, JWTSecret, AegisTargets, VpcId, subnets. Open DashboardURL output. ALB health: GET /readyz:8080. Logs: /ecs/aegis-spendops.
STEP 3 VERIFY
HOST=http://ALB_DNS curl -s $HOST/readyz curl -s -o /dev/null -w "%{http_code}" $HOST/healthz aws logs tail /ecs/aegis-spendops --follow
STEP 4 AUTH
JWT=$(curl -s -X POST $HOST/api/v1/auth/login -H "Content-Type: application/json" -d '{"email":"admin@example.com ","password":"PASS"}' | jq -r .token) curl -s "$HOST/api/v1/spend/summary?group_by=team" -H "Authorization: Bearer $JWT" Or sign in at $HOST web UI.
STEP 5 AEGIS
SPENDOPS_AEGIS_TARGETS=http://aegis:8080/metrics . Clients send x-aegis-team, x-aegis-project, x-aegis-customer to Gateway. Optional AegisDatabaseURL for usage_events. Confirm rollups after gateway traffic.
STEP 6 BUDGETS
POST /api/v1/budgets, GET /api/v1/alerts, GET /api/v1/spend/export (JWT). Configure pricing in UI.
STEP 7 MONITOR
CloudWatch: ECS RunningTaskCount, CPU, Memory; ALB UnHealthyHostCount, 5xx. Alarm if tasks<1 or unhealthy>0. External probe GET /readyz every 60s. Upgrade: new image tag, force ECS deploy, keep RDS.
ENV: DATABASE_URL, SPENDOPS_JWT_SECRET, SPENDOPS_AEGIS_TARGETS required. SPENDOPS_ADMIN_EMAIL, SPENDOPS_ADMIN_PASSWORD for bootstrap.
API: /healthz /readyz /api/v1/auth/login /api/v1/spend/summary /api/v1/budgets /api/v1/pricing /api/v1/targets /api/v1/alerts
TROUBLESHOOTING
ECR denied: subscription + login. readyz 503: DATABASE_URL, RDS SG. No costs: AegisTargets, traffic, /metrics labels.
SUPPORT: support@emdrtc.com | DOCS: https://www.emdrtc.com/docs#spendops
Support
Vendor support
Emdrtc provides email support for Aegis SpendOps subscribers.
Support email: support@emdrtc.com Documentation: https://emdrtc.com/docs AWS Marketplace install guide: included in fulfillment package
Privacy policy: https://emdrtc.com/privacy
Support scope:
- Deployment assistance (ECS, ALB, RDS, CloudFormation parameters)
- Aegis gateway integration (metrics scrape, usage_events, allocation headers)
- Budget and anomaly alert configuration
- Upgrade and migration guidance
- Troubleshooting health checks (/healthz, /readyz) and ALB target registration
Response times:
- Professional and Business tiers: email response within 2 business days
- Critical production outages (Business tier): best-effort response within 24 hours
Not included:
- Custom FinOps consulting beyond documented features
- Aegis AI Gateway or Data Shield support (separate Marketplace listings)
- Third-party LLM provider billing reconciliation
Before contacting support, include: AWS region, CloudFormation stack name or ECS cluster/service, output of GET /readyz, and relevant CloudWatch log excerpts (redact secrets).
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Through Aegis, apiphani offers supplemental support for RISE with SAP Private Cloud Edition (PCE) estates to address those services not covered by the base contract with SAP. These services include HANA configuration, HANA architecture, and HANA performance tuning, BTP Integration Suite development and support, BTP application Development and Automation, Functional Support, and SAP security role design and maintenance.
A 2-week engagement to audit your infrastructure observability gaps, reduce alert noise, and build a roadmap for AI-driven incident response.
Detect and redact PII and PHI in LLM requests and responses before data leaves your VPC - OpenAI-compatible gateway with audit logs and compliance reports. Aegis Data Shield from Emdrtc scans input and output for SSN, credit cards, emails, phone numbers, medical identifiers, and custom regex patterns. Block or redact sensitive content, store redacted audit trails only, and generate SOC2 and HIPAA-style compliance reports. Deploy as a single container in front of the Aegis AI Gateway or LLM providers directly. No per-seat SaaS dependency. Includes CloudFormation templates for Amazon ECS Fargate.
Aegis CX is a managed service for Amazon Connect contact centers, providing 24/7 monitoring, configuration management, and performance optimization. Designed for AWS-native environments, Aegis CX helps organizations improve customer experience, reduce downtime, and evolve their cloud contact center with support from IVI’s certified Amazon Connect engineering team. This co-managed service accelerates CX innovation through expert guidance, ongoing tuning, and full-stack visibility across voice, IVR, and routing workflows.
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.