⭐ Repository → 📁 Compliance Engine → 📁 CloudAware → 📁 AWS → 📁 S3

🛡️ AWS S3 Bucket is located in a less cost-effective region🟢

Contextual name: 🛡️ Bucket is located in a less cost-effective region🟢
ID: /ce/ca/aws/s3/bucket-cost-effective-region
Tags:
- 🟢 Policy with categories
- 🟢 Policy with type
- 🟢 Production policy
Policy Type: BEST_PRACTICE
Policy Categories: COST

Logic

🧠 prod.logic.yaml🟢
- 📗 AWS S3 Bucket
- 🔌 AWS S3 Bucket - object.extracts.yaml
- 🧪 test-data.json

Description

Description

This policy identifies AWS S3 Buckets that are storing objects in regions with higher pricing compared to nearby alternatives.

Rationale

Storage costs vary across AWS regions. Buckets located in higher-cost regions may significantly increase expenses without providing additional benefits, unless required for specific use cases such as latency optimization, compliance, or data residency. Identifying these buckets enables organizations to evaluate whether migrating them to a more cost-effective region is feasible, potentially resulting in substantial savings.

Impact

Migrating S3 buckets to different regions requires careful planning to ensure that performance, compliance, and data sovereignty requirements are maintained.

Audit

This policy flagged an AWS S3 Bucket as INCOMPLIANT if it resides in one of the following regions identified as less cost-efficient:

Region Recommended Alternative
us-west-1 us-west-2

... see more

Region	Recommended Alternative
us-west-1	us-west-2

Remediation

Open File

Remediation

To reduce storage costs, migrate S3 buckets from higher-cost regions to more cost-efficient alternatives. Since S3 buckets cannot be moved directly between regions, the recommended approach is to replicate or copy objects into a new bucket in the desired region and then decommission the original bucket once migration is complete.

From Command Line

Create a new bucket in a lower-cost region:
aws s3api create-bucket \
    --bucket {{new-bucket-name}} \
    --region {{target-region}} \
    --create-bucket-configuration LocationConstraint={{target-region}}
Synchronize objects from the existing bucket to the new bucket:
aws s3 sync s3://{{source-bucket}} s3://{{new-bucket-name}} \
    --source-region {{source-region}} \
    --region {{target-region}}
Update applications or services to use the new bucket.

Empty and decommission the old bucket once migration is validated:
aws s3 rm s3://{{source-bucket}} --recursive
aws s3 rb s3://{{source-bucket}} --force

policy.yaml

Open File

Linked Framework Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 Cloudaware Framework → 💼 Resource Optimization			23		no data

Logic​

Description​

Description​

Rationale​

Impact​

Audit​

Remediation​

Remediation​

From Command Line​

policy.yaml​

Linked Framework Sections​

Logic

Description

Description

Rationale

Impact

Audit

Remediation

Remediation

From Command Line

policy.yaml

Linked Framework Sections