CloudQuery is now SOC 2 Type II Certified! Learn more ❯

CloudQuery

Back to reports list
aws
architecture
security
cost
finops

AWS Well-Architected

Evaluate your architecture across AWS Well-Architected pillars to uncover misconfigurations and opportunities for improvement.

Report logo

About this report

Measure your AWS environment against industry best practices across security, reliability, performance, and cost pillars. Cloud architects and security leaders can identify specific improvements that will strengthen your infrastructure against the Well-Architected Framework.

AWS Well-Architected

Key questions

  • How well does our AWS environment follow architectural best practices?
  • Which AWS resources violate security best practices?
  • Where can we improve our AWS infrastructure reliability?
  • What immediate actions would improve our cloud architecture?

Visualizations in the report

Publicly accessible resources: EC2 instances

Identifies compute resources directly accessible from the internet. These servers often represent the highest-risk components in your environment.

Publicly accessible resources: RDS instances

Shows database servers with public exposure. These misconfigurations create unnecessary data breach risks that violate best practices.

Publicly accessible resources: RDS instances
Publicly accessible resources: S3 buckets

Maps storage buckets accessible without authentication. Quickly find and secure these vulnerable resources before data exposure occurs.

Publicly accessible resources: S3 buckets
AWS Config compliance

Evaluates your adherence to defined configuration rules. This visualization helps maintain governance standards and best practices.

AWS Config compliance
MFA adoption

Measures multi-factor authentication implementation across accounts. Track this crucial security control that dramatically reduces account compromise risk.

MFA adoption
Active GuardDuty findings

Highlights current security threats detected by AWS. See real-time security issues requiring immediate attention.

Active GuardDuty findings
Unencrypted data stores

Lists databases and storage without proper data protection. Ensure sensitive information is secured against unauthorized access.

RDS databases without automated backups

Identifies database instances missing critical data protection mechanisms. Improve resilience by highlighting recovery gaps before data loss occurs.

RDS databases without automated backups
Load Balancer health

Tracks the operational status of your application delivery infrastructure. Maintain reliability by quickly identifying problematic load balancers.

Underutilized instances

Finds compute resources with low usage patterns. This visualization identifies easy cost-saving opportunities without performance impact.

Underutilized instances

Get a personalized demo

Book a demo and see how easy it is to get started with CloudQuery Reports. We'll walk you through connecting your data sources and show you the information that's available. Book a demo today for a complete overview of CloudQuery's Reporting tools.

Video thumbnail

© 2025 CloudQuery, Inc. All rights reserved.