Introduction to CloudQuery | Amazon Web Services
Key Takeaways
CloudQuery provides AI-powered visibility and actionable insights across all cloud resources, addressing visibility problems in cloud environments by connecting to AWS environments and accounts using IAM roles and extracting data from multiple sources, including AWS accounts, GitHub, and Datadog.
Full Transcript
Hi everyone, my name is Keegan Morazzi. Thanks for joining us. I'm a partner solutions architect here at AWS where my team's mission is to discover, develop, and deliver solutions with our partners. Today here I'm joined with Joe Carlson. He's a senior cloud developer advocate at Cloud Query. Uh say hi Joe. >> Hi Keegan. Thanks for having me. Okay. Uh Keegan, today we're going to be introducing Cloud Query as a cloud asset inventory for AWS and we're going to be digging into what it is, what problems it addresses, and then give a overview of its architecture. You can see here a little spoiler alert. Um so Keegan, I actually wanted to ask you a quick question, completely rhetorical. Um how many cloud resources are publicly available in environments you manage? How many are currently unencrypted? Which one of those costs the most? And Keegan, if you can't answer any of those questions, no problem. Um, you probably have a visibility problem with your cloud and not a cloud problem. >> So, we have these questions about our cloud environments. What can we really do to address them and get that visibility that you're talking about? >> Yeah. And and don't worry, like most teams can't and most teams don't have a ton of visibility into their cloud resources. Um, and oftentimes we find visibility can be pretty pretty fragmented. Getting data about your cloud can be kind of messy and siloed and most tools only solve a slice of the questions you have around that like security cost or just giving you a basic list of your inventory. Uh, and that's the problem that cloud query actually solves. So with cloud query teams actually get an AI powered visibility and actionable insights across all of their cloud resources and it can help you find things like what cloud resources exist. You can get complete cloud coverage or coverage across AWS including all your accounts and regions. So not just your EC2 and S3 buckets but Lambda functions, RDS snapshots and all the random cloud for stacks that you put together 6 months ago and forgot. multicloud account, multi-reion visibility, all in single queries. And you can get real-time updates every time someone spins up a new resource. You can also find things like how your cloud is currently configured. It makes it easy to get deep metadata from AWS and like configuration settings, relationships, who owns what resource and where and when they set it up. Uh and you can see things like EC2 instances plus the security groups, VPC, IM roles, who launched it and when. Uh complete network topology across your resources showing which resources talk to which and you can also govern different tags across your resources so you can know which team owns what and which environment they're you're currently looking at. The last thing too it can help you with is spotting risks and finding opportunities in your cloud. So things like security misconfigurations you can identify before they get exploited. So public S3 buckets, expired SSLerts, etc. Uh and it can also do things like find costs that are could be wasteful. So unused EBS volumes, idle RDS instances, wasted reserve capacity. It can help you find and build automated compliance monitoring for SOCK 2, PCI, CIS, whatever. Um, and it basically just helps you find operational trends before they become problems. >> Awesome. So, I feel like I have a good idea of what cloud query does. Can we talk a little bit about how it works? >> Yeah, let's dig into it. We have this uh beautiful drawing that I put together. Thank you very much. Um, but let's dig into it. So, um, first and foremost, cloud query is read only with your AWS environment, which means you don't have to make any envir or like modifications to your your infrastructure. There's no agents, no security access or nothing that's going to be edited or changed on there. And it connects to your AWS environments and accounts using IM roles um with describe and list permissions only. Um but the thing that makes it powerful, it's not just your AWS environments connects to can also connect multiple data sources like other SAS environments. Um, cloud query is able to extract data from multiple source different sources including you know AWS accounts but things like wise data dog github gitlab um can get like you can import things like your wise for security finding splunk for log analytics and data dog for monitoring metrics. So you can enrich your cloud configuration data with data from other sources to really get a holistic view of what's going on in your cloud and why things happened. And then here is where the magic happens in cloud query. So cloudquery takes all your data from these cloud sources. It transforms and normalizes them into a unified schema. So that means your EC2 instances, your GitLab projects, all your wise vulnerabilities and data dog metrics all get the same treatment. So it makes that you have consistent uh field names, standardized relationships, and unified timestamps to make it easy to query and analyze across everything. This isn't just about data collection. It's data normalization and everything gets transformed to format that makes it easy for you to analyze it. Okay, so we're going to move deeper down a ladder here. There are basically two options for managing and using cloud query. You can manage it on your own using the CLI. uh CLI is useful if you want to persist that data into your own data lake data warehouse postgres database whatever um or in the cloud where that gets managed so you can do automated syncs uh and our backend is built in click house so you have super speedy massively scalable uh analysis you can do on that that back end too but either way you end up with a unified view of your entire techn technology stack, AWS resources, application code, security findings, operational metrics, all queryable all through a single place. Um, and this architecture really solves a fundamental problem of visibility fragmentation in the cloud. So instead of having to jump between all these different dashboards and all these different places, it can all be in one single place for a single source of truth. That's a lot, but okay, let's wrap up what we covered here today. So, Cloud Query solves the cloud visibility problem that's been plaguing infrastructure teams. Cloud Query makes it easy for you to see everything across all your accounts, all your regions, and all your SAS platforms. That means no more blind spots, no more surprises when you're building in the cloud. It also helps you create and maintain a unified data model with consistent schemas across your entire cloud infrastructure. Whether it's an AWS EC2 instance or a GitLab project, the data is predictable and queryable. And it's more than just collecting that data. It makes it easy for you to make intelligent decisions and take action on that data.
Original Description
How many of your cloud resources are publicly accessible? Unencrypted? Costing the most? If you can't answer these questions in minutes, you have a visibility problem, not a cloud problem.
Join AWS Partner Solutions Architect Keagan Mirazee and CloudQuery Senior Developer Advocate Joe Karlsson for an in-depth look at CloudQuery—the developer-first cloud asset inventory platform that transforms fragmented infrastructure data into actionable intelligence.
View and purchase CloudQuery’s solution on the AWS Marketplace:
https://go.aws/48hxKTv
Learn more about CloudQuery: https://www.cloudquery.io/
Subscribe to AWS: https://go.aws/subscribe
Create a free AWS account: https://go.aws/signup
Try AWS for free: https://go.aws/free
Connect with an expert: https://go.aws/contact
Explore more: https://go.aws/more
Next steps:
Explore on AWS in Analyst Research: https://go.aws/reports
Discover, deploy, and manage software that runs on AWS: https://go.aws/marketplace
Join the AWS Partner Network: https://go.aws/partners
Learn more on how Amazon builds and operates software: https://go.aws/library
Do you have technical AWS questions?
Ask the community of experts on AWS re:Post: https://go.aws/3lPaoPb
Why AWS?
Amazon Web Services is the world’s most comprehensive and broadly adopted cloud, enabling customers to build anything they can imagine. We offer the greatest choice of innovative cloud capabilities and expertise, on the most extensive global infrastructure with industry-leading security, reliability, and performance.
#CloudQuery #AWSInventory #CloudVisibility #MultiCloud #SecurityCompliance #CostOptimization #DataNormalization #CloudSecurity #InfrastructureMonitoring #DevSecOps #CloudGovernance #AWSIntegration #ClickHouse #CloudDataPlatform #OpenSource #AWS #AmazonWebServices #CloudComputing
Watch on YouTube ↗
(saves to browser)
Sign in to unlock AI tutor explanation · ⚡30
Playlist
Uploads from Amazon Web Services · Amazon Web Services · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
Agentic AI Design Patterns Introduction and walkthrough | Amazon Web Services
Amazon Web Services
Galileo on modernizing on banking infrastructure | Amazon Web Services
Amazon Web Services
Alliander Speeds Innovation and Energy Transition Using AWS | Amazon Web Services
Amazon Web Services
AWS and Scuderia Ferrari HP streamline F1 power unit assembly | Amazon Web Services
Amazon Web Services
How AWS machine learning supports Scuderia Ferrari HP pit stops | Amazon Web Services
Amazon Web Services
Nasdaq Builds Market Infrastructure of the Future with AWS | Amazon Web Services
Amazon Web Services
AWS Security Hub Exposure Findings | Amazon Web Services
Amazon Web Services
How do I use Session Manager port forwarding to connect to my EC2 instance through RDP?
Amazon Web Services
How do I extend an EBS volume with LVM partitions?
Amazon Web Services
AWS Graviton makes it easy to optimize performance, cost, and sustainability | Amazon Web Services
Amazon Web Services
Run Cloud Adoption Framework workshops with Miro | Amazon Web Services
Amazon Web Services
Getting Started with AWS Cost Optimization Hub | Amazon Web Services
Amazon Web Services
Why did my Amazon SQS messages get sent to a dead-letter queue?
Amazon Web Services
Declarative Policies for EC2 | Amazon Web Services
Amazon Web Services
How do I troubleshoot IAM permission issues for the Billing and Cost Management console?
Amazon Web Services
Integrity at Scale: Inside the Flo Health Mission | Amazon Web Services
Amazon Web Services
Fueling Success: Small shifts, powerful performance | Amazon Web Services
Amazon Web Services
WEX enhances customer experience with AI-powered chatbot | Amazon Web Services
Amazon Web Services
Accelerate troubleshooting with Amazon CloudWatch investigations | Amazon Web Services
Amazon Web Services
Why is my Windows WorkSpace stuck in the starting, rebooting, or stopping status?
Amazon Web Services
Telemetry Pipelines for AI | Amazon Web Services
Amazon Web Services
Getting Control over Security and Observability Data | Amazon Web Services
Amazon Web Services
The Problem with Telemetry Data Volume | Amazon Web Services
Amazon Web Services
Telemetry Pipelines on AWS | Amazon Web Services
Amazon Web Services
What are Telemetry Pipelines? | Amazon Web Services
Amazon Web Services
Using AI for RegEx on Telemetry Pipelines | Amazon Web Services
Amazon Web Services
Multi-Session Support in the AWS Console | Amazon Web Services
Amazon Web Services
How CloudHedge delivers assessment with AWS ISV Tooling Program at no cost?
Amazon Web Services
How customers speed up migration and modernization to AWS with CloudHedge | Amazon Web Services
Amazon Web Services
Chaos Experiment with Amazon ElastiCache | Amazon Web Services
Amazon Web Services
Amazon S3 Access Points: Easily manage access for shared datasets on S3 | Amazon Web Services
Amazon Web Services
ElastiCache Valkey 8.0 - Savings and Efficiency | Amazon Web Services
Amazon Web Services
Pennymac scales document processing with AWS | Amazon Web Services
Amazon Web Services
AWS | Next Level Innovation | Amazon Web Services
Amazon Web Services
Driving Cloud Innovation: Mindtickle's Partnership with AWS Enterprise Support | Amazon Web Services
Amazon Web Services
A Leader's Edge from Executive Insights | Amazon Web Services
Amazon Web Services
How do I create a custom Amazon WorkSpaces image?
Amazon Web Services
Charles Leclerc tests his AI-generated race track | Amazon Web Services
Amazon Web Services
Redington Scales India’s Cloud Access with AWS Partnership | Amazon Web Services
Amazon Web Services
How do I prevent the resources in my CloudFormation stack from getting deleted or updated?
Amazon Web Services
How do I troubleshoot authentication errors when I use RDP to connect to an EC2 Windows instance?
Amazon Web Services
Exploring the Possibilities of Digital Twin & AI at the Edge | Amazon Web Services
Amazon Web Services
Exploring the Possibilities of Digital Twin & AI at the Edge | Amazon Web Services
Amazon Web Services
AWS at the FORMULA 1 AWS GRAN PREMIO DELL'EMILIA-ROMAGNA 2025 | Amazon Web Services
Amazon Web Services
What's new in RCPs | Amazon Web Services
Amazon Web Services
API Caching using Amazon ElastiCache | Amazon Web Services
Amazon Web Services
Pendula: Amazon Nova Customer Testimonial | Amazon Web Services
Amazon Web Services
InDebted : Amazon Nova Customer Testimonial | Amazon Web Services
Amazon Web Services
Amazon DynamoDB global tables with multi-Region strong consistency | Amazon Web Services
Amazon Web Services
Siemens Mobility uses AWS to operate securely, efficiently on a global scale | Amazon Web Services
Amazon Web Services
How do I reuse a knowledge base session in Amazon Bedrock?
Amazon Web Services
EP5: MBZUAI, CMU : Causal AI, Answering The “Why“ and “What if“ Questions | AWS for AI Podcast
Amazon Web Services
Hema scales time to market developing a data mesh on AWS (Technical) - Cloud Adventures
Amazon Web Services
Hema scales time to market developing a data mesh on AWS (Business) - Cloud Adventures
Amazon Web Services
How Langfuse Scaled Their AI Platform with AWS: From Open-Source to Enterprise | Amazon Web Services
Amazon Web Services
SLMs and LLMs: What’s the Difference? | Amazon Web Services
Amazon Web Services
SLMs and LLMs: When to use them? | Amazon Web Services
Amazon Web Services
SLMs on CPU | Amazon Web Services
Amazon Web Services
Intelligent Model Routing | Amazon Web Services
Amazon Web Services
SLMs, LLMs, and Model Routing in Agents | Amazon Web Services
Amazon Web Services
More on: Systems Design Basics
View skill →Related Reads
📰
📰
📰
📰
Every Build Tells a Story: Integrating Harness CI with Splunk
Medium · DevOps
Securing Your Terraform Infrastructure with Checkov and GitHub Actions
Dev.to · Cristhian Carlos MAMANI CORI
Title: The Signal Nobody Tells You About: Thread Dumps via SIGQUIT During a Production Outage in…
Medium · DevOps
Stop running a JVM just to mock an API in your CI pipeline
Dev.to · Amazia Gur
🎓
Tutor Explanation
DeepCamp AI