reading(the aws(compliance(framework - amazon web...
TRANSCRIPT
Reading the AWS Compliance FrameworkBertram DornSpecialized Solutions Architect EMEAFor Security and Compliance
Agenda:• Overview• ISO• SOC• Documents• A Demo
Certifications/Audits: Overview
Shared Responsibility
Cross-service Controls
Service-specific Controls
Managed by AWS
Managed by Customer
Security of the Cloud
Security in the Cloud
Cloud Service Provider Controls
Optimized Network/OS/App Controls
Request reports at:aws.amazon.com/compliance/#contact
ISO27000
ISO9001
The main AWS Compliance Frameworks of todayCertificates: Programmes:
ISO9001
ISO27000
MPAA
Point-in-time, or continuous compliance assessments?
ISO27001/27017
270189001
Certifications/Audits: Scope
Scope
• By Service (not only Datacenter)• By Region• By Certification• Global• Scalable
Certifications/Audits: Demo Scope
Compliance Mapping: How to do that
Mapping
Compliance Mapping: Demo
Thank You