Cloud services are bread and butter of today’s enterprise software development. They offer us flexibility and scalability for a reasonable price, compared to running your own data center and managing physical infrastructure. But as with all good things, there is an additional overhead related to ensuring that our cloud services are configured properly and don’t open potential security holes that maybe exploited, e.g. to run a cryptocurrency miner, that you are unwillingly paying for. Fortunately, these days we have some useful tools at our disposal, both from the open source community, as well as proprietary solutions from AWS, that should make the job of your IT Operations and Information Security teams easier. I will go over a few such projects, including CloudMapper from Duo, Scout Suite from NCC, and two solutions from Amazon: CloudTrail and GuardDuty. I will demonstrate how they can be utilized to detect a couple of common security vulnerabilities in your infrastructure. On top of that I will propose an example alerting pipeline, that should improve mean response time to the security threats in your infrastructure, should you wish to use it for your AWS account.