IFO4
Loading...
Tier 2
Datadog
End-to-end observability platform with strong cost-management module and security signals.
Vendor: Datadog · Domain: Observability & SRE · Standard: TGS:001:2026 · Last reviewed: 2026-04-25
Datadog spans infrastructure monitoring, APM, log management, RUM, security, and cost management. Their Cloud Cost Management module integrates with multi-cloud billing.
Deployment
saas
Pricing
Contact for pricing
Clouds
MULTI
Target customers
midmarket, enterprise
TGS:001:2026 scorecard
Every IFO4 MATRIX vendor is graded against the same 90 items. Below are the items that apply to Datadog, grouped by area. Items without a grade are awaiting evidence review.
Financial Visibility 12 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-FIN-V-01 | Multi-Cloud Cost Ingestion Ingest billing + usage data from AWS, Azure, GCP, OCI into a single normalized data model. Enterprise expectation: All four major hyperscalers ingested with documented schema and sub-24hr refresh. | 3 | ⚫ pending |
| TGS-FIN-V-02 | Usage Data Completeness All cost lines come paired with usage data sufficient to drive optimization recommendations. Enterprise expectation: 95%+ of cost has joined usage data; coverage report exposed to user. | 3 | ⚫ pending |
| TGS-FIN-V-03 | SaaS Spend Ingestion Ingest SaaS subscription cost + usage from finance, SSO, and direct vendor integrations. Enterprise expectation: Top-200 enterprise SaaS apps covered with per-license utilization. | 2 | ⚫ pending |
| TGS-FIN-V-04 | Kubernetes Cost Visibility Per-namespace, per-workload, per-pod cost attribution inside K8s clusters across cloud and on-prem. Enterprise expectation: Pod-level granularity, label-based allocation, multi-cluster aggregation. | 3 | ⚫ pending |
| TGS-FIN-V-05 | On-Prem / DC Cost Modeling Datacenter, private cloud, and colo cost modeling unified with public cloud cost. Enterprise expectation: On-prem modeled with documented allocation methodology. | 2 | ⚫ pending |
| TGS-FIN-V-06 | Real-Time Reporting Sub-day cost telemetry rather than batch refresh. Enterprise expectation: At least daily refresh; ideally hourly for cost anomalies. | 2 | ⚫ pending |
| TGS-FIN-V-07 | Data Freshness Transparency User can see exactly when each cost line was last refreshed. Enterprise expectation: Per-line freshness exposed; auto-alerts when >2x expected interval. | 1 | ⚫ pending |
| TGS-FIN-V-08 | Invoice Reconciliation Match ingested cost to actual cloud invoices and surface deltas. Enterprise expectation: Auto-reconciliation with anomaly thresholds and audit log. | 2 | ⚫ pending |
| TGS-FIN-V-09 | Resource-Level Visibility Drill from invoice down to individual resource (instance, bucket, function, pod). Enterprise expectation: Two-click drill from any service line to the underlying resource. | 2 | ⚫ pending |
| TGS-FIN-V-10 | Service-Level Breakdown Cost split by cloud service (EC2, S3, Lambda, BigQuery, etc.) with deep service taxonomy. Enterprise expectation: Hierarchical service taxonomy across all ingested clouds. | 1 | ⚫ pending |
| TGS-FIN-V-11 | Region / Account Visibility Multi-region, multi-account, multi-subscription views with org-aware hierarchy. Enterprise expectation: Native ingestion of cloud-org hierarchy with multi-level rollup. | 2 | ⚫ pending |
| TGS-FIN-V-12 | Cross-Environment Aggregation Roll up dev / staging / prod or business-unit views with consistent allocation. Enterprise expectation: Custom views with consistent allocation across environments and BUs. | 1 | ⚫ pending |
Allocation & Attribution 10 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-FIN-A-01 | Tag-Based Allocation Group cost by cloud-resource tags / labels. Enterprise expectation: Multi-tag combinations with virtual tags / business mapping. | 3 | ⚫ pending |
| TGS-FIN-A-02 | Label-Based Allocation (K8s) K8s / cluster label allocation distinct from cloud tags. Enterprise expectation: Multi-label combinations with virtual / fallback handling. | 2 | ⚫ pending |
| TGS-FIN-A-03 | Account / Subscription Allocation Allocate by AWS account / Azure subscription / GCP project. Enterprise expectation: Account-based allocation aligned to org-hierarchy rules. | 1 | ⚫ pending |
| TGS-FIN-A-04 | Shared Cost Allocation Distribute platform / network / shared cost across consumers using configurable rules. Enterprise expectation: Multi-method allocation, configurable rules, audit log. | 3 | ⚫ pending |
| TGS-FIN-A-05 | Platform Allocation (K8s / Network) Per-consumer allocation of K8s control-plane and network costs. Enterprise expectation: Configurable platform-cost rules with documented methodology. | 2 | ⚫ pending |
| TGS-FIN-A-06 | Proportional Allocation Distribute costs by configurable ratios. Enterprise expectation: Multi-driver proportional allocation with combined-driver support. | 1 | ⚫ pending |
| TGS-FIN-A-07 | Fixed Allocation Static dollar amounts assigned to consumers. Enterprise expectation: Date-bounded fixed allocation rules with audit trail. | 1 | ⚫ pending |
| TGS-FIN-A-08 | Untagged Cost Handling Surface and route untagged / unallocated cost. Enterprise expectation: Untagged % below 5% across all cost; explicit fallback owner. | 2 | ⚫ pending |
| TGS-FIN-A-09 | Chargeback Readiness Generate invoices to internal cost-centers in finance-grade format. Enterprise expectation: ERP-ready statement export, configurable cost-center taxonomy. | 2 | ⚫ pending |
| TGS-FIN-A-10 | Allocation Audit Trail Log every change to allocation rules with attribution and effective dates. Enterprise expectation: Tamper-resistant log; ability to reproduce historical allocations. | 1 | ⚫ pending |
Optimization 12 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-FIN-O-01 | Orphaned Resource Detection Detect unattached storage, unused IPs, orphaned snapshots. Enterprise expectation: <5% orphan share in production; full multi-region visibility. | 2 | ⚫ pending |
| TGS-FIN-O-02 | Idle vs Underutilized Separation Distinguish "doing nothing" from "doing too little". Enterprise expectation: Documented thresholds, configurable, surfaced separately. | 2 | ⚫ pending |
| TGS-FIN-O-03 | Storage Waste Classification Tier storage by access pattern, identify cold-on-hot waste. Enterprise expectation: Multi-cloud tier optimization with lifecycle automation. | 1 | ⚫ pending |
| TGS-FIN-O-04 | Compute Rightsizing CPU / memory / network analysis driving instance recommendations. Enterprise expectation: Continuous coverage; >10-20% savings realization on accepted recs. | 3 | ⚫ pending |
| TGS-FIN-O-05 | Storage Rightsizing Volume / tier recommendations. Enterprise expectation: IOPS and throughput aware recommendations. | 1 | ⚫ pending |
| TGS-FIN-O-06 | Instance Family Upgrades Recommend newer-generation families for cost / perf gains. Enterprise expectation: Coverage across all major instance families and ARM transitions. | 1 | ⚫ pending |
| TGS-FIN-O-07 | Architecture-Level Inefficiency Detect inefficient design patterns, not just resource sizing. Enterprise expectation: Detected patterns linked to remediation playbooks. | 2 | ⚫ pending |
| TGS-FIN-O-08 | RI / SP / CUD Recommendations Recommend reserved capacity / savings plans / committed use discounts. Enterprise expectation: Multi-cloud commitment optimization with risk-aware modeling. | 3 | ⚫ pending |
| TGS-FIN-O-09 | Commitment Coverage Analysis Track how much of spend is covered by commitments. Enterprise expectation: >70% coverage tracked with ESR transparency. | 2 | ⚫ pending |
| TGS-FIN-O-10 | Spot / Preemptible Viability Classify workloads as spot-suitable. Enterprise expectation: 20-50% of eligible workloads optimized; controlled interruption handling. | 2 | ⚫ pending |
| TGS-FIN-O-11 | Auto-Remediation Programmatically apply fixes (terminate, resize, retire). Enterprise expectation: Multi-step approval, audit trail, rollback within 24hr. | 3 | ⚫ pending |
| TGS-FIN-O-12 | Savings Validation Verify recommended savings actually realized. Enterprise expectation: +/-15% accuracy of estimates vs realized within 90 days. | 2 | ⚫ pending |
Forecasting 8 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-FIN-F-01 | Spend Forecasting Project future spend across horizons. Enterprise expectation: Confidence intervals, BU-level forecasts, scenario inputs. | 2 | ⚫ pending |
| TGS-FIN-F-02 | Usage Forecasting Project future consumption (vCPU-hours, GB-months, tokens). Enterprise expectation: Usage-unit forecasts at primary cost-driver granularity. | 1 | ⚫ pending |
| TGS-FIN-F-03 | Forecast vs Actual Tracking Track and explain forecast accuracy over time. Enterprise expectation: +/-5% accuracy at 30 days; +/-15% at 365 days. | 1 | ⚫ pending |
| TGS-FIN-F-04 | Budget Integration Connect to FP&A budgets, enforce limits. Enterprise expectation: Bidirectional integration with major FP&A platforms. | 2 | ⚫ pending |
| TGS-FIN-F-05 | Scenario Modeling What-if cost simulations. Enterprise expectation: Multi-scenario comparison with narrative explanations. | 1 | ⚫ pending |
| TGS-FIN-F-06 | Business Driver Modeling Tie cost forecasts to business drivers (orders, users, transactions). Enterprise expectation: Multi-driver models with elasticity calibration. | 1 | ⚫ pending |
| TGS-FIN-F-07 | ERP Alignment Sync to NetSuite / SAP / Workday / Oracle ERP. Enterprise expectation: Bidirectional sync with audit log. | 1 | ⚫ pending |
| TGS-FIN-F-08 | Renewal Forecasting Project SaaS / commitment / license renewals. Enterprise expectation: Coverage of all major SaaS + cloud commitments with negotiation insights. | 1 | ⚫ pending |
Automation 6 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-FIN-AU-01 | Event-Driven Automation Webhook / event-bus triggers for cost actions. Enterprise expectation: HMAC-signed events, retry logic, deliverability metrics. | 2 | ⚫ pending |
| TGS-FIN-AU-02 | Workflow / Ticketing Integration Jira / ServiceNow / Asana / Linear integrations. Enterprise expectation: Bidirectional sync with status and resolution tracking. | 2 | ⚫ pending |
| TGS-FIN-AU-03 | API Completeness Public REST / GraphQL covering all UI features. Enterprise expectation: OpenAPI / GraphQL schema, versioning, deprecation policy. | 1 | ⚫ pending |
| TGS-FIN-AU-04 | IaC Integration Terraform / Pulumi / CloudFormation integration for cost gating. Enterprise expectation: Coverage of major IaC tools with policy enforcement. | 1 | ⚫ pending |
| TGS-FIN-AU-05 | Auto-Termination Programmatic shutdown of idle / orphaned resources. Enterprise expectation: Multi-step approval, scheduled execution, rollback log. | 2 | ⚫ pending |
| TGS-FIN-AU-06 | Auto-Resize w/ Guardrails Automatic resizing under safety policies. Enterprise expectation: Workload-aware guardrails, change windows, instant rollback. | 2 | ⚫ pending |
Governance 6 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-FIN-G-01 | Policy Enforcement Codified rules that block / quarantine non-compliant cost. Enterprise expectation: Multi-action policies, version control, audit log. | 3 | ⚫ pending |
| TGS-FIN-G-02 | RBAC Role-based access control with org-hierarchy support. Enterprise expectation: SAML/SCIM, attribute-based access, custom roles. | 2 | ⚫ pending |
| TGS-FIN-G-03 | Approval Workflows Multi-step approval flows for actions / budget overrides. Enterprise expectation: Multi-stage with delegation, reminders, escalation policies. | 2 | ⚫ pending |
| TGS-FIN-G-04 | Audit Logs Immutable record of all user / system actions. Enterprise expectation: Tamper-resistance, SIEM integration, retention policy. | 2 | ⚫ pending |
| TGS-FIN-G-05 | Anomaly Detection ML / heuristic detection of cost anomalies. Enterprise expectation: Multi-dimensional anomaly detection, owner routing, deduplication. | 2 | ⚫ pending |
| TGS-FIN-G-06 | Compliance Alignment Mapping to SOC 2 / ISO 27001 / FedRAMP / HIPAA. Enterprise expectation: SOC 2 Type II minimum; FedRAMP if public sector targeted. | 2 | ⚫ pending |
AI Economics 6 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-FIN-AI-01 | Token Cost Tracking Per-call token-cost telemetry across LLM providers. Enterprise expectation: OpenAI, Anthropic, AWS Bedrock, Azure OpenAI, GCP Gemini coverage minimum. | 3 | ⚫ pending |
| TGS-FIN-AI-02 | Model-Level Attribution Cost attributed per model version / variant. Enterprise expectation: Granular model-version tracking with version transitions captured. | 2 | ⚫ pending |
| TGS-FIN-AI-03 | GPU Utilization Tracking GPU memory / SM utilization with cost overlay. Enterprise expectation: Per-job, per-cluster GPU utilization with cost overlay. | 2 | ⚫ pending |
| TGS-FIN-AI-04 | Training vs Inference Separation Split training cost from inference cost cleanly. Enterprise expectation: Auto-classification with manual override. | 1 | ⚫ pending |
| TGS-FIN-AI-05 | Agent Cost Tracking Per-agent / per-task cost for autonomous AI workflows. Enterprise expectation: Multi-step traces with retry / fallback cost included. | 2 | ⚫ pending |
| TGS-FIN-AI-06 | AI ROI Measurement Tie model cost to business outcomes (deflection, retention, automation). Enterprise expectation: Outcome-bound ROI tracking with auditable methodology. | 2 | ⚫ pending |
Threat Detection 8 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-SEC-T-01 | SIEM Ingestion Breadth Range of sources / formats the SIEM ingests cleanly. Enterprise expectation: 500+ connectors with parsing modules. | 2 | ⚫ pending |
| TGS-SEC-T-02 | Detection Rule Coverage Out-of-the-box and custom detection rule library. Enterprise expectation: 1000+ OOTB rules; documented update cadence. | 3 | ⚫ pending |
| TGS-SEC-T-03 | MITRE ATT&CK Mapping Detections mapped to MITRE ATT&CK techniques. Enterprise expectation: Sub-technique granularity with current MITRE version. | 2 | ⚫ pending |
| TGS-SEC-T-04 | Behavioral Analytics (UEBA) User / entity behavioral anomaly detection. Enterprise expectation: Multi-entity baselining, configurable sensitivity. | 2 | ⚫ pending |
| TGS-SEC-T-05 | Cross-Source Correlation Correlate signals across multiple data sources. Enterprise expectation: Configurable correlation graphs with deduplication. | 2 | ⚫ pending |
| TGS-SEC-T-06 | MTTD / MTTR Tracking Mean time to detect / respond reporting. Enterprise expectation: Auto-tracked, broken down by severity, exportable. | 1 | ⚫ pending |
| TGS-SEC-T-07 | Auto-Response Playbooks SOAR-style automated response playbooks. Enterprise expectation: 50+ OOTB playbooks; visual editor; approval gates. | 2 | ⚫ pending |
| TGS-SEC-T-08 | Forensics Depth Deep historical telemetry and replayable timelines. Enterprise expectation: 12-month retention with searchable timelines. | 2 | ⚫ pending |
Cloud Posture 6 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-SEC-C-01 | Misconfiguration Detection Detect cloud misconfigurations against benchmarks. Enterprise expectation: Multi-benchmark coverage; auto-remediation workflows. | 3 | ⚫ pending |
| TGS-SEC-C-02 | Configuration Drift Detection Detect drift from approved baselines. Enterprise expectation: Real-time detection with attribution to the change source. | 2 | ⚫ pending |
| TGS-SEC-C-03 | Multi-Cloud Posture Coverage Single pane across AWS / Azure / GCP / OCI. Enterprise expectation: Equal depth across AWS / Azure / GCP / OCI. | 3 | ⚫ pending |
| TGS-SEC-C-04 | IaC Scanning Pre-deploy scanning of Terraform / CloudFormation / Helm. Enterprise expectation: Major IaC tools covered; policy gating supported. | 2 | ⚫ pending |
| TGS-SEC-C-05 | Compliance Frameworks Pre-built mappings to common compliance frameworks (CIS / NIST / PCI / HIPAA / FedRAMP). Enterprise expectation: Auto-updated framework versions; gap reports. | 2 | ⚫ pending |
| TGS-SEC-C-06 | Risk-Based Prioritization Surface findings by exploitability + asset criticality. Enterprise expectation: Multi-factor scoring with documented methodology. | 2 | ⚫ pending |
Identity & Access 5 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-SEC-I-01 | SSO Breadth Number of integrated SaaS apps via SAML / OIDC / SCIM. Enterprise expectation: 7,000+ apps with template + custom support. | 2 | ⚫ pending |
| TGS-SEC-I-02 | MFA Enforcement Policy-driven MFA enforcement at scale. Enterprise expectation: Phishing-resistant factors (FIDO2) supported and prioritized. | 3 | ⚫ pending |
| TGS-SEC-I-03 | Privileged Access Management (PAM) Vaulting, session recording, just-in-time elevation. Enterprise expectation: Full session recording, replay, JIT, break-glass workflow. | 3 | ⚫ pending |
| TGS-SEC-I-04 | Identity Threat Detection Detect identity-based attacks (token theft, OAuth abuse). Enterprise expectation: Token replay, OAuth, MFA fatigue patterns covered. | 2 | ⚫ pending |
| TGS-SEC-I-05 | Session Monitoring Live session telemetry for high-risk users / actions. Enterprise expectation: Live + retroactive session monitoring with replay. | 1 | ⚫ pending |
Vulnerability Management 4 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-SEC-V-01 | Asset Coverage Breadth of asset types scanned (cloud, on-prem, OT, container). Enterprise expectation: OT and IoT supported in addition to IT. | 2 | ⚫ pending |
| TGS-SEC-V-02 | Authenticated Scanning Authenticated / agent-based scanning depth. Enterprise expectation: Agent + agentless options with documented depth differences. | 2 | ⚫ pending |
| TGS-SEC-V-03 | Patch Tracking Track patch state and SLAs across the fleet. Enterprise expectation: SLA tracking with auto-escalation and exception workflow. | 2 | ⚫ pending |
| TGS-SEC-V-04 | Risk-Based Vuln Prioritization EPSS / CVSS / asset-criticality combined. Enterprise expectation: Multi-source threat intel with documented model. | 2 | ⚫ pending |
SecFinOps 7 items
| Code | Item | Weight | Status |
|---|---|---|---|
| TGS-SEC-SF-01 | Security Tool Cost Visibility Cost of each security tool surfaced to FinOps view. Enterprise expectation: Multi-tool consumption with budget alerts. | 2 | ⚫ pending |
| TGS-SEC-SF-02 | License Utilization (Security Tools) Track seat / capacity utilization for security platforms. Enterprise expectation: Auto-reclamation with dispute path. | 1 | ⚫ pending |
| TGS-SEC-SF-03 | Alert Volume vs Cost Cost-per-alert / cost-per-true-positive metrics. Enterprise expectation: Trend tracking with anomaly detection. | 1 | ⚫ pending |
| TGS-SEC-SF-04 | Coverage vs Risk-Spend Ratio Coverage outcome divided by tool spend. Enterprise expectation: Multi-control views; benchmarking against peers. | 1 | ⚫ pending |
| TGS-SEC-SF-05 | Tool Overlap Detection Detect overlapping capabilities across security tools. Enterprise expectation: Capability-level overlap with recommendation engine. | 1 | ⚫ pending |
| TGS-SEC-SF-06 | ROI Per Security Control Quantified return per security control / category. Enterprise expectation: Outcome-bound ROI with audit defense. | 1 | ⚫ pending |
| TGS-SEC-SF-07 | Insurance Premium Impact Tools that demonstrably affect cyber-insurance premiums. Enterprise expectation: Direct insurer partnerships with documented premium credits. | 1 | ⚫ pending |
Strengths
Vendor profile pending IFO4 review. Datadog has not yet submitted evidence against TGS:001:2026. Strengths surface only after grades are recorded.
Gaps
Vendor profile pending IFO4 review. Gaps are surfaced from the TGS scorecard once grading completes.
Alternatives to Datadog
Other tools in Observability & SRE graded against TGS:001:2026.
Datadog LLM Observability
Datadog
LLM observability inside Datadog with cost, latency, quality, and trace context.
⚫ pendingVIEW SCORECARD →
New Relic
New Relic
Observability with consumption-based pricing and cost analytics.
⚫ pendingVIEW SCORECARD →
Dynatrace
Dynatrace
Enterprise observability with AI-driven causation and emerging cost insights.
⚫ pendingVIEW SCORECARD →
Compare head-to-head: Datadog vs Datadog LLM Observability · Datadog vs New Relic · Datadog vs Dynatrace
IFO4 is the International Financial Operations Federation. Independent, evidence-based grading. Vendors may claim profiles and submit evidence at tools/submit. Read the full standard at tools/standard.