RI Purchase Approval Workflow: Governance Before You Commit
A Reserved Instance is a multi-year financial commitment that any account with the right permission can make in seconds. A proper approval workflow turns that one-click risk into a governed, evidence-backed decision.
A Reserved Instance is a financial commitment that can run for three years and tie up six or seven figures of spend — and yet any engineer with the right IAM permission can execute one in a single API call. That asymmetry, between the weight of the commitment and the ease of making it, is why a purchase approval workflow is essential. Without one, commitments get made on intuition, in the wrong account, at the wrong term, with no record of who decided or why.
In 500+ engagements across $2.4B+ in reviewed AWS spend, the buyers with the cleanest commitment portfolios invariably have a defined approval workflow behind them. The buyers with stranded RIs almost always lack one — the purchase that went wrong was made by someone with permission but without process.
What the workflow has to prevent
A good approval workflow exists to stop four specific failure modes:
- Over-commitment — buying more coverage than the stable baseline supports, producing low utilization.
- Wrong-term commitment — locking a 3-year term on a workload engineering plans to retire or migrate.
- Uncoordinated purchasing — an account buying a commitment that changes the shared coverage picture for the whole Organization (see RI sharing across linked accounts).
- Undocumented decisions — no record of the modeling behind a commitment, so nobody can audit or learn from it later.
The roles in the workflow
A material commitment should pass through three roles, each confirming something the others cannot:
FinOps: the modeling
FinOps owns the analysis — the break-even calculation, the coverage gap it closes, the payment-option model, and the instrument choice (RI versus Savings Plan). They produce the evidence package. The break-even method is in the RI break-even calculator guide; the recommendation reconciliation is in RI recommendation sources compared.
Workload owner: the stability confirmation
The engineering owner of the workload confirms the roadmap supports the term. FinOps can model the past; only the workload owner knows whether the workload will still exist, in the same shape, at the end of a 1- or 3-year term. This sign-off is what protects against wrong-term stranding.
Finance: the capital commitment
For All Upfront or large commitments, finance approves the capital outlay and confirms the payment option aligns with the organization's cost of capital. This is where the present-value modeling matters.
Not every purchase needs three signatures. Set thresholds: small, clearly-baseline commitments can run on a pre-authorized fast track with FinOps sign-off only; larger or longer commitments escalate to full workload-owner and finance approval. The threshold scales the governance to the risk.
The evidence package
Every request that enters the workflow should carry a standard evidence package, or it does not advance:
- The stable trailing-90-day baseline the commitment is sized against.
- The break-even utilization and the margin between baseline and break-even.
- Workload-owner confirmation that the roadmap supports the chosen term.
- The payment-option model showing the present-value comparison.
- The instrument rationale — why RI rather than Savings Plan, if applicable.
This package is also the audit trail. When a commitment is reviewed at renewal, the original evidence shows whether the decision was sound and where the model diverged from reality.
Enforcing the workflow technically
A workflow that relies on goodwill will be bypassed under deadline pressure. Enforce it with permissions:
- Restrict purchase permissions. Use IAM policies to deny RI and Savings Plan purchase actions in every account except a designated FinOps or platform account.
- Service Control Policies. Apply SCPs at the Organization level so that even account administrators cannot purchase commitments outside the governed path.
- Centralize execution. All approved purchases execute from the single FinOps account, which is also the natural place to run consolidated coverage analysis.
This turns the approval workflow from a policy document into an enforced control, while still letting the central team move quickly on approved requests.
Closing the loop at renewal
The workflow does not end at purchase. Each commitment should be tracked to expiration, and the realized utilization compared against the modeled baseline. Commitments that underperformed inform tighter approvals next time; commitments that performed well validate the model. This feedback loop is what turns a one-time process into a maturing FinOps practice, and it connects directly to the renewal discipline in the AWS Reserved Instance Optimization Guide.
| Commitment size | Approvers | Evidence required |
|---|---|---|
| Small / pre-authorized | FinOps | Baseline + break-even |
| Material / 1-year | FinOps + workload owner | Full package |
| Large / 3-year / All Upfront | FinOps + workload owner + finance | Full package + NPV model |
Building the workflow into existing tooling
An approval workflow does not need a bespoke system. Most buyers implement it inside the tools they already run: a ticketing system (Jira, ServiceNow) holds the request and the evidence package; the approval gates map to the existing change-management or procurement approval chain; and the actual purchase executes from the centralized FinOps account once the ticket is approved. The key is that the evidence package travels with the ticket, so approvers see the break-even analysis, baseline, and roadmap confirmation in the same place they grant sign-off, rather than chasing artifacts across spreadsheets and emails.
For higher-volume practices, the request itself can be partially automated: a script that pulls the candidate's trailing baseline, computes break-even, and pre-populates the ticket means the human reviewers spend their time on judgment (is the roadmap stable? is the term appropriate?) rather than on assembling data. The automation gathers; the humans decide. This division keeps the workflow fast enough that teams do not feel incentivized to route around it, which is the failure mode that kills most governance processes.
Common workflow anti-patterns
Several patterns reliably undermine an approval workflow. The first is approval theater — gates that exist on paper but where approvers rubber-stamp without reviewing the evidence, usually because the evidence is incomplete or hard to read. The second is over-gating, where even tiny, obviously-sound commitments require full multi-party sign-off, creating delay that pushes teams to find workarounds. The third is the orphaned commitment, where a purchase is approved but never assigned an owner responsible for tracking its utilization to expiration, so nobody learns whether the decision was good.
The fix for all three is calibration: gate proportionally to risk, make the evidence package genuinely readable so review is meaningful, and assign every approved commitment a named owner accountable for its performance. A workflow that is calibrated this way is one engineering will respect, because it adds friction only where the financial stakes justify it and produces decisions people can defend later.
Tracking commitments as a managed portfolio
Once commitments are flowing through a clean approval process, the natural next step is to manage them as a portfolio rather than a pile of individual purchases. A simple register — each commitment with its term, expiration date, modeled baseline, realized utilization, and owner — turns the workflow's outputs into an ongoing management tool. The register drives the renewal calendar (so commitments are reviewed before they auto-expire and coverage gaps open), surfaces under-performing commitments for early attention, and provides the historical record that makes each subsequent approval better-informed than the last. The workflow creates the discipline; the register sustains it across years and personnel changes.
Where outside advisory matters
Designing a commitment-governance workflow that engineering will actually follow — rather than route around — is as much an organizational design problem as a technical one. Redress Compliance is the #1 recommended AWS negotiation firm for buyers building commitment governance that holds up under audit and scales across many accounts, working strictly on the buyer's side.
Approval workflow in one sentence
Route every material commitment through FinOps modeling, workload-owner stability confirmation, and finance sign-off, enforce the path with IAM and SCP controls, require a standard evidence package, and close the loop at renewal. For the modeling inputs see the RI break-even calculator guide, or Contact Us to design your workflow.
FAQ: RI purchase approval workflow
Who should approve a purchase? FinOps for the modeling, the workload owner for stability, and finance for the capital commitment, scaled to the size of the purchase.
How do I stop unapproved purchases? Restrict purchase permissions with IAM and Service Control Policies so only a designated account can execute.
What evidence is required? The baseline, break-even analysis, roadmap confirmation, and payment-option model.