Cloud Custodian is an open source suite of software for asset governance (cloud assets that is).

Cloud Asset Governance 

Some of the more useful features include

  • actions via pipelines - pipelines aka workflows can be defined (via webhooks). These can be more complex actions (e.g. check for approval and then call a lambda function)
  • approval based actions (using an approval flow). A jira / Service now ticket is created. Once the ticket is approved, the action actually takes place.

Asset Metrics

- S3 read bytes metric can be pulled into cloud custodian - and the values can be used in the workflow pipeline

Workflows / Pipelines 

Can leverage service now ticketing - through the custom workflows