diff --git a/aws/eks-customer/README.md b/aws/eks-customer/README.md
index 35318601..3c777dcc 100644
--- a/aws/eks-customer/README.md
+++ b/aws/eks-customer/README.md
@@ -39,6 +39,7 @@
 | [aws_eks_addon.kube_proxy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/eks_addon) | resource |
 | [aws_eks_addon.snapshot-controller](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/eks_addon) | resource |
 | [aws_iam_policy.bifrost](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy) | resource |
+| [aws_iam_policy.cluster-autoscaler](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy) | resource |
 | [aws_iam_policy.external-secrets](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy) | resource |
 | [aws_iam_policy.node](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy) | resource |
 | [aws_iam_policy.velero](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy) | resource |
diff --git a/aws/eks-customer/irsa.tf b/aws/eks-customer/irsa.tf
index 2576d6c0..37b7af19 100644
--- a/aws/eks-customer/irsa.tf
+++ b/aws/eks-customer/irsa.tf
@@ -1,6 +1,6 @@
 locals {
   policies_by_name = {
-    for policy in concat(values(aws_iam_policy.bifrost), values(aws_iam_policy.velero), values(aws_iam_policy.external-secrets)) :
+    for policy in concat(values(aws_iam_policy.bifrost), values(aws_iam_policy.velero), values(aws_iam_policy.external-secrets), values(aws_iam_policy.cluster-autoscaler)) :
     policy.name => policy
   }
 }
diff --git a/aws/eks-customer/utility_policies.tf b/aws/eks-customer/utility_policies.tf
index 6a0a0024..a5dd3dfa 100644
--- a/aws/eks-customer/utility_policies.tf
+++ b/aws/eks-customer/utility_policies.tf
@@ -112,3 +112,33 @@ resource "aws_iam_policy" "external-secrets" {
 }
 EOF
 }
+
+resource "aws_iam_policy" "cluster-autoscaler" {
+  for_each = { for k, v in var.utilities : k => v if v.name == "cluster-autoscaler" }
+
+  name        = "cluster-autoscaler-${module.eks.cluster_name}"
+  path        = "/"
+  description = "Policy for cluster-autoscaler utility."
+
+  policy = <<EOF
+{
+    "Statement": [
+        {
+            "Action": [
+                "autoscaling:DescribeAutoScalingGroups",
+                "autoscaling:DescribeAutoScalingInstances",
+                "autoscaling:DescribeLaunchConfigurations",
+                "autoscaling:DescribeTags",
+                "autoscaling:SetDesiredCapacity",
+                "autoscaling:TerminateInstanceInAutoScalingGroup",
+                "ec2:DescribeLaunchTemplateVersions",
+                "eks:DescribeNodegroup"
+            ],
+            "Effect": "Allow",
+            "Resource": "*"
+        }
+    ],
+    "Version": "2012-10-17"
+}
+EOF
+}