IT infrastructure costs are the second-largest operational expense for most organizations after salaries — yet they are also among the least visible and most poorly managed. Cloud bills grow unchecked, software licenses accumulate for applications nobody uses, servers run at 5% utilization, and internet contracts auto-renew at above-market rates year after year.
This guide provides a structured approach to identifying and eliminating IT waste — starting with a complete cost audit, moving through specific optimization actions for cloud, licensing, hardware, and connectivity, and establishing the governance processes to prevent costs from growing out of control again.
1 IT Cost Audit Framework
You cannot optimize what you cannot see. The first step is building a complete, categorized inventory of every IT cost — many organizations discover 15–25% of their IT spend on resources they did not even know they were paying for.
IT Cost Category Inventory
| Category | What to Inventory | Typical % of IT Budget | Optimization Potential |
|---|
| Cloud Infrastructure |
AWS, Azure, GCP — all services, all accounts |
25–40% |
High — 20–35% savings common |
| Software Licenses |
Microsoft 365, security tools, SaaS apps, OS licenses |
20–30% |
High — 15–30% via rationalization |
| Hardware (on-prem) |
Servers, storage, networking equipment, PCs |
15–25% |
Medium — 10–20% via virtualization |
| Network / Connectivity |
ILL, broadband, MPLS, SIP trunks, leased lines |
10–20% |
Medium — 10–25% via renegotiation |
| Support Contracts |
AMC, vendor support, maintenance agreements |
8–15% |
Medium — audit unused coverage |
| Managed Services |
Outsourced IT, NOC, helpdesk contracts |
5–15% |
Medium — scope alignment |
Cost Audit Process — Step by Step
- Pull all invoices: Last 12 months of IT invoices from finance — cloud bills, software subscriptions, ISP bills, hardware purchases, AMC contracts
- Categorize and tag: Map every line item to a category, department, and project — build a spreadsheet with vendor, service, monthly cost, contract end date, and owner
- Identify auto-renewals: Flag all contracts renewing in the next 6 months — these are renegotiation windows
- Find orphaned resources: Resources with no identifiable owner or active project — these are prime candidates for immediate termination
- Benchmark against market rates: Compare current ISP rates, cloud pricing, and license costs against current market — vendors rarely proactively offer better rates
- Prioritize by impact: Sort opportunities by annual savings potential — tackle the highest-value items first
✅ Quick Win: Before any technical optimization, simply pull your credit card or bank statements and search for recurring IT charges. In most organizations, this 30-minute exercise reveals 3–5 forgotten subscriptions — SaaS tools from past projects, individual developer accounts, trial accounts that converted to paid — totalling ₹20,000–₹1,50,000/year. Cancel them immediately. This is the fastest money-back action in IT cost management.
2 Cloud Cost Optimization
Cloud costs are the fastest-growing IT expense category and the highest-potential optimization opportunity. The pay-as-you-go model that makes cloud flexible also makes it easy to accumulate resources that are never cleaned up — idle VMs, forgotten load balancers, over-provisioned databases, and unattached storage volumes.
AWS Cost Reduction Actions
Save 30–40%
Reserved Instances / Savings Plans: Commit to 1-year (no upfront) for any EC2 instance running 24/7 in production. A 1-year No Upfront Savings Plan reduces EC2 costs by 30–40% vs On-Demand. Use Compute Savings Plans (most flexible) rather than EC2 Instance Savings Plans — they cover any instance family and region automatically.
Save 20%
Switch to Graviton (ARM) instances: AWS Graviton3 instances (m7g, c7g, r7g, t4g) are 20% cheaper than equivalent x86 instances AND deliver better performance on most workloads. Migration requires OS compatibility check (Amazon Linux 2023, Ubuntu 22.04+, RHEL 8+ all support ARM natively). Most applications run without any code changes.
Save 70–90%
Spot Instances for non-critical workloads: AWS Spot Instances use spare EC2 capacity at 70–90% discount vs On-Demand. Ideal for: batch processing jobs, dev/test environments, CI/CD build servers, data processing pipelines. Use Spot with Auto Scaling Groups and diversify across instance types — 2-minute interruption notice gives enough time to drain gracefully.
Save ₹5k–₹50k/mo
Delete unattached EBS volumes and old snapshots: Every terminated EC2 instance leaves behind EBS volumes and snapshots if not explicitly deleted. Run this monthly: aws ec2 describe-volumes --filters Name=status,Values=available — any volume in "available" state is unattached and billing silently. Snapshots older than 90 days with no active AMI reference can usually be deleted safely.
AWS Cost Cleanup Script
# Find all unattached EBS volumes (costing money, attached to nothing)
aws ec2 describe-volumes \
--filters Name=status,Values=available \
--query 'Volumes[*].{ID:VolumeId,Size:Size,Type:VolumeType,Cost:Size}' \
--output table
# Find stopped EC2 instances (still paying for EBS storage)
aws ec2 describe-instances \
--filters Name=instance-state-name,Values=stopped \
--query 'Reservations[*].Instances[*].{ID:InstanceId,Type:InstanceType,Stopped:StateTransitionReason}' \
--output table
# Find EBS snapshots older than 180 days
aws ec2 describe-snapshots --owner-ids self \
--query 'Snapshots[?StartTime<=`2025-09-08`].{ID:SnapshotId,Size:VolumeSize,Date:StartTime}' \
--output table
# Find unused Elastic IPs (charged when not associated)
aws ec2 describe-addresses \
--query 'Addresses[?AssociationId==null].{IP:PublicIp,AllocationId:AllocationId}' \
--output table
# Find idle load balancers (no healthy targets)
aws elbv2 describe-load-balancers \
--query 'LoadBalancers[*].{Name:LoadBalancerName,DNS:DNSName,Created:CreatedTime}' \
--output table
Azure Cost Reduction Actions
Save 40%
Azure Hybrid Benefit: If your organization has existing Windows Server or SQL Server licenses with Software Assurance — apply Azure Hybrid Benefit to Azure VMs running Windows or SQL. This eliminates the OS/SQL license component from the VM price — saving up to 40% on Windows VMs and up to 55% on SQL Server VMs. Enable in the Azure portal under VM → Configuration → Azure Hybrid Benefit.
Save 30–35%
Azure Reserved VM Instances: 1-year reserved instances for production VMs save 30–35% vs pay-as-you-go. Use the Azure Cost Management → Reservations → Recommendations section — it analyzes your actual usage and recommends exactly which VMs to reserve and for how long, with calculated savings shown before you commit.
✅ Pro Tip: Enable AWS Cost Anomaly Detection (free service) and Azure Cost Anomaly Alerts immediately — before doing any other optimization. Both services use ML to detect unusual spending patterns and send email alerts within hours of a cost spike. This safety net catches accidental resource creation, runaway auto-scaling, and data transfer surprises before they become large bills — and takes under 5 minutes to configure.
3 Software License Rationalization
Software licensing is often the most opaque category of IT spend — licenses accumulate over years, overlap in functionality, and continue billing long after the use case disappears. A structured license audit typically identifies 20–30% of software spend as unnecessary.
Microsoft 365 License Optimization
| License Tier | Monthly Cost/User (India) | Key Included Features | Right For |
|---|
| M365 Business Basic | ₹125 | Web/mobile Office, Teams, Exchange, SharePoint, 1TB OneDrive | Users who only need web access, no desktop apps |
| M365 Business Standard | ₹660 | All Basic + Desktop Office apps (Word/Excel/PowerPoint) | Most knowledge workers |
| M365 Business Premium | ₹1,320 | All Standard + Intune MDM + Defender for Business + Entra P1 | All users — best value when security tools needed |
| M365 E3 | ₹2,700 | All Premium + Compliance tools, advanced eDiscovery | Compliance-heavy organizations |
| M365 E5 | ₹4,500 | All E3 + Defender for Endpoint P2, Purview, Power BI Pro | Enterprise security and analytics requirements |
Microsoft 365 License Audit via PowerShell
# Connect to Microsoft Graph
Connect-MgGraph -Scopes "User.Read.All","Organization.Read.All","Reports.Read.All"
# Get all licensed users and their assigned licenses
Get-MgUser -All -Property DisplayName,UserPrincipalName,AssignedLicenses,SignInActivity |
Select-Object DisplayName, UserPrincipalName,
@{N='LastSignIn'; E={$_.SignInActivity.LastSignInDateTime}},
@{N='LicenseCount'; E={$_.AssignedLicenses.Count}} |
Where-Object { $_.LicenseCount -gt 0 } |
Sort-Object LastSignIn |
Export-Csv "m365-license-audit.csv" -NoTypeInformation
# Flag users who haven't signed in for 90+ days
$cutoff = (Get-Date).AddDays(-90)
Get-MgUser -All -Property DisplayName,UserPrincipalName,SignInActivity,AssignedLicenses |
Where-Object {
$_.SignInActivity.LastSignInDateTime -lt $cutoff -and
$_.AssignedLicenses.Count -gt 0
} |
Select-Object DisplayName, UserPrincipalName,
@{N='LastSignIn'; E={$_.SignInActivity.LastSignInDateTime}} |
Export-Csv "inactive-licensed-users.csv" -NoTypeInformation
Write-Host "Inactive licensed users exported. Review before removing licenses."
SaaS Application Rationalization
- Identify all SaaS tools: Use a Cloud Access Security Broker (CASB) or review credit card statements — most organizations have 40–60 SaaS applications, many unknown to IT
- Measure actual usage: Most SaaS platforms provide usage dashboards — any tool with less than 30% active users is a consolidation candidate
- Identify functional overlaps: Do you pay for Zoom AND Teams AND Google Meet? Dropbox AND OneDrive AND Box? Pick one per function and consolidate
- Negotiate annual vs monthly: Switching from monthly to annual billing typically saves 15–20% — negotiate further at renewal time, especially if usage grew
- Right-size user counts: Audit actual user counts vs licensed seats — reduce seats to match actual active users at the next renewal
- Evaluate open-source alternatives: LibreOffice instead of Microsoft Office for non-power users, Nextcloud instead of SharePoint for file storage, Zabbix instead of PRTG for monitoring
⚠️ Warning: Before removing software licenses from users or cancelling SaaS subscriptions — always verify with department managers that the tool is truly unused. IT usage logs show login activity but not business-critical workflows. A user who logs in once a month to export a compliance report still needs that license. Send a 2-week advance notice email before removing any license, giving users time to raise objections before access is cut off.
4 Server Virtualization & Consolidation
Many organizations run multiple physical servers at 5–15% average CPU utilization — each consuming electricity, cooling, rack space, and maintenance budget year-round. Server virtualization consolidates these workloads onto fewer physical hosts, dramatically reducing all associated costs.
Virtualization Platform Comparison
| Platform | Licensing | Best For | Management |
|---|
| VMware vSphere (Broadcom) | Expensive — now subscription only post-Broadcom acquisition | Large enterprises with existing VMware investment | vCenter Server |
| Microsoft Hyper-V | Free — included in Windows Server | Windows-heavy environments, Microsoft shops | Hyper-V Manager / SCVMM |
| Proxmox VE | Free (open-source) — paid support optional | SMB to mid-market replacing VMware | Web UI — excellent for the price |
| KVM (Linux) | Free — built into Linux kernel | Linux-heavy environments, DevOps teams | virt-manager / Cockpit |
| Nutanix AHV | Included with Nutanix hardware/subscription | HCI (hyperconverged) deployments | Prism Central |
Proxmox VE — Quick Deployment
# Proxmox VE Installation
# 1. Download ISO from proxmox.com/downloads
# 2. Boot from USB — installer is graphical
# 3. Select target disk, set timezone (Asia/Kolkata), hostname, root password
# 4. Access web UI: https://[server-ip]:8006
# Default login: root / [password set during install]
# Post-install optimization (/etc/apt/sources.list.d/pve-no-subscription.list)
# Add no-subscription repository (removes paid subscription nag):
deb http://download.proxmox.com/debian/pve bookworm pve-no-subscription
# Update system
apt update && apt dist-upgrade -y
# Create VM from web UI:
# Datacenter → [Node] → Create VM
# General: Name, VM ID
# OS: Upload ISO or use existing in storage
# System: BIOS=OVMF(UEFI), Machine=q35
# Disks: VirtIO SCSI, thin provisioning
# CPU: Type=host (best performance), cores=4
# Memory: 8192 MB
# Network: VirtIO, bridge=vmbr0
# Create Linux container (LXC — lighter than VM):
# Datacenter → [Node] → Create CT
# Use Ubuntu 22.04 template → assign resources → start
# LXC containers use ~10% of VM overhead — ideal for services
Save ₹2L–₹10L/yr
Physical to Virtual (P2V) consolidation: Typical consolidation ratio is 10:1 to 20:1 — replace 10–20 physical servers with one well-specified host (Dual Xeon, 512GB RAM, NVMe storage). Eliminates: per-server electricity (₹3,000–₹8,000/month each), rack space rental, per-server AMC contracts, per-server OS licensing. Proxmox VE makes this achievable with zero hypervisor licensing cost.
5 Network & Connectivity Cost Reduction
Internet and connectivity costs are among the most negotiable IT expenses — ISPs offer significantly better rates to customers who ask, especially at renewal time. Most organizations overpay for connectivity simply because they have never challenged their current rates.
ILL (Internet Lease Line) Cost Optimization
- Benchmark current rates: Get competing quotes from Tata Communications, Airtel Business, Reliance Jio Business, and BSNL for your current bandwidth tier — even just getting competing quotes gives you leverage at renewal
- Right-size bandwidth: Pull bandwidth utilization data from monitoring — if your 100 Mbps ILL averages 30 Mbps with 60 Mbps peaks, downgrade to 50 Mbps and save 30–40% on the monthly bill
- Negotiate at contract end: ISP rates drop 15–25% year-over-year for the same bandwidth tier — always renegotiate rather than auto-renewing. Reference competitor quotes explicitly in negotiation
- Consider SD-WAN with broadband backup: Replace a single expensive 100 Mbps ILL with a 100 Mbps ILL (primary) + 200 Mbps broadband (backup) — same effective resilience at 40–50% lower cost for the backup path
- Audit SIP trunk capacity: Count actual concurrent calls during peak hours — many organizations pay for 2–3× more SIP channels than they use. Reduce channel count at next renewal
MPLS to SD-WAN Migration Savings
| Scenario | Traditional MPLS | SD-WAN Alternative | Monthly Saving |
|---|
| HQ + 5 branches, 10 Mbps each |
₹2,50,000/month (MPLS) |
₹80,000/month (broadband + SD-WAN) |
₹1,70,000/month |
| HQ + 10 branches, mixed BW |
₹5,00,000/month |
₹1,50,000/month (ILL HQ + broadband branches) |
₹3,50,000/month |
✅ Pro Tip: When negotiating ILL rates in India, always get quotes from at least 3 ISPs in writing before your contract renewal date — ideally 3 months before expiry. Present competitor quotes directly to your incumbent ISP's account manager and ask for a matching or better rate. ISPs consistently offer 15–30% discounts to retain existing customers that they never proactively advertise. A 30-minute effort can save ₹50,000–₹2,00,000 per year on a single ILL circuit.
6 Hardware Lifecycle Management
Poor hardware lifecycle management creates two cost problems simultaneously — keeping aging hardware too long (increasing support costs, energy inefficiency, reliability risk) and refreshing too frequently (unnecessary capital expenditure). A structured lifecycle policy balances both.
Recommended Hardware Lifecycles
| Device Type | Standard Lifecycle | Extended Lifecycle | Replacement Trigger |
|---|
| Laptops / Desktops | 4 years | 5 years (if performance adequate) | Battery <50%, frequent failures, cannot run current OS |
| Physical Servers | 5 years | 7 years (with extended support contract) | Out of vendor support, reliability incidents increasing, power inefficiency |
| Network Switches | 7 years | 10 years (if no feature gaps) | End of software support, port requirements changed, performance bottleneck |
| Firewalls | 5 years | 7 years | End of security support, throughput insufficient, missing SD-WAN/ZTNA features |
| Access Points | 5 years | 7 years | WiFi 6E or 7 requirements, coverage gaps, end of security support |
| UPS Systems | 5 years (batteries) | 10 years (unit) | Battery runtime drops below 50% of spec — replace batteries at 5 years |
Total Cost of Ownership (TCO) Analysis
# TCO Calculation Framework for Server Purchase Decision
# Compare: Keep aging server vs Replace vs Migrate to Cloud
# Current aging server (5-year-old Dell PowerEdge R720):
Annual electricity cost: ₹36,000 (300W average × 8760hrs × ₹8/kWh)
Annual AMC cost: ₹45,000 (post-warranty extended support)
Annual downtime risk: ₹25,000 (estimated cost of 4hrs downtime/year)
Annual admin overhead: ₹15,000 (additional maintenance time)
Total annual cost: ₹1,21,000
# New server (Dell PowerEdge R660 — 3-year depreciation):
Hardware cost: ₹4,50,000 (÷3 = ₹1,50,000/year depreciation)
Annual electricity: ₹18,000 (150W average — 50% more efficient)
Annual warranty included: ₹0 (3-year ProSupport included)
Annual downtime risk: ₹5,000 (modern hardware = fewer failures)
Total annual cost: ₹1,73,000 (Year 1-3) / ₹23,000 (Year 4-5)
# AWS EC2 equivalent (m6i.2xlarge, 8 vCPU, 32GB, Reserved 1yr):
Annual compute cost: ₹1,20,000
Annual storage (500GB EBS): ₹24,000
Annual data transfer: ₹12,000
Total annual cost: ₹1,56,000 (predictable, no HW management)
# Decision: Cloud wins for variable workloads; new HW wins for consistent 24/7 loads
7 FinOps Practice & Governance
FinOps (Financial Operations for cloud) is the discipline of bringing financial accountability to cloud spending — creating shared ownership between IT, finance, and business teams so that cost visibility, optimization, and forecasting become continuous practices rather than annual fire drills.
FinOps Implementation Steps
- Enable cost allocation tags: Tag every cloud resource with
Environment, Project, Team, and CostCenter — untagged resources cannot be attributed to a budget owner
- Assign budget owners: Each department or project lead owns their cloud budget — receives a weekly cost report and is accountable for overruns
- Set budgets with actions: In AWS Budgets and Azure Cost Management — create budgets that alert at 80% and automatically notify budget owners at 100%
- Weekly cost review meeting: 30-minute weekly review — top 5 cost drivers, anomalies, optimization actions completed, new recommendations
- Monthly optimization sprint: Dedicate 4 hours/month to acting on AWS Trusted Advisor and Azure Advisor recommendations — idle resources, right-sizing, Reserved Instance coverage gaps
- Quarterly forecast vs actual: Compare cloud spend to quarterly forecast — investigate and document variances >10%
Mandatory Cloud Governance Policies
- No untagged resources: AWS Service Control Policy or Azure Policy to deny creation of untagged resources — enforces accountability from day one
- Approved regions only: Restrict resource creation to approved regions (ap-south-1 for India) — prevents accidental deployment in expensive regions like us-east-1
- Instance type restrictions: Deny deployment of large/xlarge instances without approval — prevents developers from accidentally spinning up GPU instances
- Automatic resource expiry: Dev/test resources auto-tagged with expiry date — Lambda function or Azure Automation deletes unextended resources after 30 days
- S3 intelligent tiering mandatory: Enforce S3 Intelligent Tiering on all buckets via AWS Config rule — prevents data sitting in expensive STANDARD class indefinitely
✅ Pro Tip: Schedule a monthly "Cloud Cleanup Friday" — the last Friday of each month, your team spends 2 hours reviewing and acting on cost recommendations. Use AWS Trusted Advisor → Cost Optimization and Azure Advisor → Cost tabs as the agenda. Track the cumulative savings on a shared dashboard — making savings visible and attributable to the team creates engagement and accountability that ad-hoc optimization never achieves.
8 Quick Win Checklist
These 20 actions can be completed within 30 days and typically deliver 15–25% IT cost reduction with minimal risk. Work through them in order — each is independent and does not require waiting for the others.
🏃 30-Day Quick Win Checklist
☁️ Cloud (Complete in Week 1)
- Enable AWS Cost Anomaly Detection and Azure Cost Anomaly Alerts
- Delete all unattached EBS volumes and unassociated Elastic IPs
- Delete EBS snapshots older than 180 days with no active AMI
- Stop all Dev/Test EC2 instances outside business hours using AWS Instance Scheduler
- Apply Reserved Instance recommendations from AWS Cost Explorer
📋 Licensing (Complete in Week 2)
- Audit Microsoft 365 — remove licenses from inactive users (90+ days no login)
- Cancel SaaS subscriptions not used in the last 60 days
- Downgrade M365 licenses where E3/E5 features are not being used
- Apply Azure Hybrid Benefit to all eligible Windows VMs
- Consolidate duplicate-function SaaS tools — pick one video conferencing, one file sync
🌐 Connectivity (Complete in Week 3)
- Pull bandwidth utilization reports for all ILL circuits — flag under-utilized links
- Request competing quotes from 3 ISPs before next ILL renewal
- Audit SIP trunk concurrent call usage — identify channels to reduce
- Review and cancel unused static IP assignments
🖥️ Infrastructure (Complete in Week 4)
- Identify servers running below 10% average CPU — candidates for consolidation
- Review AMC contracts expiring in 6 months — get competing quotes now
- Identify hardware past its lifecycle — plan replacement budget
- Enable S3 Intelligent Tiering on all buckets older than 30 days
- Set up monthly cost report email to IT management and finance
Want to Reduce Your IT Costs?
EnterWeb IT Firm conducts IT cost audits, cloud optimization assessments, license rationalization reviews, and connectivity renegotiation support for organizations across India. Our typical engagement delivers 20–35% IT cost reduction within 90 days.