Cloud bill rises due to data transfer costs we did not know about
Storage and compute are predictable; egress (data leaving the cloud, or moving between regions or AZs) rarely is. For SMB workloads with video, backups, or multi-region this is often where the bill leaves the trend.
Try this first
- 1Open Cost Explorer (AWS), Cost Management (Azure), or Billing > Reports (GCP) and group by service category. Look for 'Data Transfer', 'Bandwidth', or 'Network'. Above 10-15% of total: worth digging in.
- 2Identify flows: cross-region replication, NAT gateway to internet, users downloading from outside the region. Inter-region replication especially is a quiet but continuous cost.
- 3For S3/GCS: do not set every bucket to cross-region replication 'just in case'. Regional is enough for most backups; cross-region only when RTO/RPO requires it.
- 4For outbound traffic to users: put a CDN in front (CloudFront, Cloud CDN, Azure Front Door). Origin egress shrinks and CDN egress is cheaper. For video or large downloads this is almost always sensible.
- 5Set a budget alert on the data-transfer category specifically, not only on total. You want to spot a spike in days, not at month-end.
When to bring us in
A one-off spike unexplainably large (say tenfold), or structural growth without user growth: hints at misconfiguration or even unwanted activity. We are happy to run a short audit.
See also
- Everyone logs in with the AWS root accountRoot is for emergencies and billing. Day-to-day work belongs in IAM users or SSO.
- Every developer has AdministratorAccessAdministratorAccess everywhere is convenient now, painful later. Start with role-based policies.
- Everyone has individual IAM users with their own passwordIdentity Center (formerly AWS SSO) links to your IdP and issues temporary credentials per session.
None of the above fits?
Describe your situation below. We pass your input plus the steps you already saw to our AI and return tailored next-step advice. If it's too risky to DIY, we'll say so.
Or skip the DIY entirely
Our Managed IT clients do not look these things up. One point of contact, a fixed monthly price, resolved within working hours.