of 14 /14
Reading the AWS Compliance Framework Bertram Dorn Specialized Solutions Architect EMEA For Security and Compliance

Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

  • Author
    others

  • View
    6

  • Download
    0

Embed Size (px)

Text of Reading(the AWS(Compliance(Framework - Amazon Web...

  • Reading  the AWS  Compliance  FrameworkBertram  DornSpecialized Solutions  Architect EMEAFor Security  and Compliance

  • Agenda:• Overview• ISO• SOC• Documents• A  Demo

  • Certifications/Audits:  Overview

  • Shared Responsibility

    Cross-service Controls

    Service-specific Controls

    Managed by AWS

    Managed by Customer

    Security of the Cloud

    Security in the Cloud

    Cloud Service Provider Controls

    Optimized Network/OS/App Controls

    Request reports at:aws.amazon.com/compliance/#contact

    ISO27000

    ISO9001

  • The main AWS Compliance Frameworks of todayCertificates: Programmes:

    ISO9001

    ISO27000

    MPAA

  • Point-in-time,  or  continuous  compliance  assessments?

    ISO27001/27017

    270189001

  • Certifications/Audits:  Scope

  • Scope

    • By Service  (not  only Datacenter)• By Region• By Certification• Global• Scalable

  • Certifications/Audits:  Demo  Scope

  • Compliance  Mapping:  How to do  that

  • Mapping

  • Compliance  Mapping:  Demo

  • Thank  You