Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3. 2016-01-27آ  IT-Grundschutz

  • View
    1

  • Download
    0

Embed Size (px)

Text of Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3. 2016-01-27آ ...

  • Reading  the AWS  Compliance  Framework Bertram  Dorn Specialized Solutions  Architect EMEA For Security  and Compliance

  • Agenda: • Overview • ISO • SOC • Documents • A  Demo

  • Certifications/Audits:  Overview

  • Shared Responsibility

    Cross-service Controls

    Service-specific Controls

    Managed by AWS

    Managed by Customer

    Security of the Cloud

    Security in the Cloud

    Cloud Service Provider Controls

    Optimized Network/OS/App Controls

    Request reports at: aws.amazon.com/compliance/#contact

    ISO 27000

    ISO 9001

  • The main AWS Compliance Frameworks of today Certificates: Programmes:

    ISO 9001

    ISO 27000

    MPAA

  • Point-­in-­time,  or  continuous  compliance  assessments?

    ISO 27001/27017

    27018 9001

  • Certifications/Audits:  Scope

  • Scope

    • By Service  (not  only Datacenter) • By Region • By Certification • Global • Scalable

  • Certifications/Audits:  Demo  Scope

  • Compliance  Mapping:  How to do  that

  • Mapping

  • Compliance  Mapping:  Demo

  • Thank  You