Download pdf - Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Transcript
Page 1: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Reading  the AWS  Compliance  FrameworkBertram  DornSpecialized Solutions  Architect EMEAFor Security  and Compliance

Page 2: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Agenda:• Overview• ISO• SOC• Documents• A  Demo

Page 3: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Certifications/Audits:  Overview

Page 4: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Shared Responsibility

Cross-service Controls

Service-specific Controls

Managed by AWS

Managed by Customer

Security of the Cloud

Security in the Cloud

Cloud Service Provider Controls

Optimized Network/OS/App Controls

Request reports at:aws.amazon.com/compliance/#contact

ISO27000

ISO9001

Page 5: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

The main AWS Compliance Frameworks of todayCertificates: Programmes:

ISO9001

ISO27000

MPAA

Page 6: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Point-­in-­time,  or  continuous  compliance  assessments?

ISO27001/27017

270189001

Page 7: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Certifications/Audits:  Scope

Page 8: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Scope

• By Service  (not  only Datacenter)• By Region• By Certification• Global• Scalable

Page 9: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Certifications/Audits:  Demo  Scope

Page 10: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Compliance  Mapping:  How to do  that

Page 11: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Mapping

Page 12: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Compliance  Mapping:  Demo

Page 13: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services
Page 14: Reading(the AWS(Compliance(Framework - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/2016-01-28... · 2016-01-27 · IT-Grundschutz Compliance on Amazon Web Services

Thank  You


Recommended

BERLIN 2015 - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/AWS Summit Berlin 2015... · Solution: • Stack membership - serfdom. • Gossip based cluster membership. •
BERLIN 2015 - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/AWS Summit Berlin 2015... · Solution: • Stack membership - serfdom. • Gossip based cluster membership. • Documents
IN SEARCH OF RELEVANCE - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Media_Entertainment_Roundtable/... · munich, 11.10.2016 michael muckel in search of relevance modern
IN SEARCH OF RELEVANCE - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Media_Entertainment_Roundtable/... · munich, 11.10.2016 michael muckel in search of relevance modern Documents
IT Grundschutz - nullPC · 2013-04-30 · ist er weitgehend unbekannt, die meisten IT-Leiter hingegen kennen den IT-Grundschutz. Allerdings wird er viel zu selten genutzt und die
IT Grundschutz - nullPC · 2013-04-30 · ist er weitgehend unbekannt, die meisten IT-Leiter hingegen kennen den IT-Grundschutz. Allerdings wird er viel zu selten genutzt und die Documents
IT-Grundschutz-Profil Basis-Absicherung Kommunalverwaltung
IT-Grundschutz-Profil Basis-Absicherung Kommunalverwaltung Documents
Telemedizin WS 03/04 Datenschutz 1 Worzyk FH Anhalt Datensicherheit und Kryptographie Rechtlicher Datenschutz Risikoanalyse und IT-Grundschutz Datensicherheit
Telemedizin WS 03/04 Datenschutz 1 Worzyk FH Anhalt Datensicherheit und Kryptographie Rechtlicher Datenschutz Risikoanalyse und IT-Grundschutz Datensicherheit Documents
Compliance - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/AWS_Summit_2018/June… · © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved. Chapter
Compliance - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/AWS_Summit_2018/June… · © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved. Chapter Documents
BSI-Standard 100-2 - IT-Grundschutz Methodology - Bundesamt f¼r
BSI-Standard 100-2 - IT-Grundschutz Methodology - Bundesamt f¼r Documents
IT -Grundschutz-Methodik
IT -Grundschutz-Methodik Documents
It Grundschutz Kataloge 2005 En
It Grundschutz Kataloge 2005 En Documents
AWS Meeting - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/Life... · •Cognizant internal applications run on AWS •Transformational work across industries and
AWS Meeting - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Webinar/Life... · •Cognizant internal applications run on AWS •Transformational work across industries and Documents
DS-GVO und IT-Grundschutz
DS-GVO und IT-Grundschutz Documents
Introducing Amazon Kinesis - Amazon Web Servicesaws-de-media.s3.amazonaws.com/...1130-Bate-Introducing_Amazon_K… · Introducing Amazon Kinesis Mark Bate, ... Developing the ‘Right
Introducing Amazon Kinesis - Amazon Web Servicesaws-de-media.s3.amazonaws.com/...1130-Bate-Introducing_Amazon_K… · Introducing Amazon Kinesis Mark Bate, ... Developing the ‘Right Documents
Einführung in die Vorgehensweise nach IT-Grundschutz Bundesamt für Sicherheit in der Informationstechnik (BSI) Musterfolien für Schulungen zur
Einführung in die Vorgehensweise nach IT-Grundschutz Bundesamt für Sicherheit in der Informationstechnik (BSI) Musterfolien für Schulungen zur Documents
€¦  · Web viewVerstöße gegen das Fernmeldegeheimnis können nach § 206 Strafgesetzbuch (StGB), ggf. auch nach anderen Gesetzen, mit Bußgeld, ... (z.B. nach BSI-Grundschutz)
€¦  · Web viewVerstöße gegen das Fernmeldegeheimnis können nach § 206 Strafgesetzbuch (StGB), ggf. auch nach anderen Gesetzen, mit Bußgeld, ... (z.B. nach BSI-Grundschutz) Documents
IT-Grundschutz-Profile for a Small Organisation - Bundesamt f¼r
IT-Grundschutz-Profile for a Small Organisation - Bundesamt f¼r Documents
BSI Standard 100-3 - Risk analysis based on IT-Grundschutz
BSI Standard 100-3 - Risk analysis based on IT-Grundschutz Documents
Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance
Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance Documents
Schulungsunterlagen IT-Grundschutz nach BSImichael-uwe-lohr.de/download/BSI-Grundschutz.pdf · • Beschreibt, wie ein Information Security Management System (ISMS) aussieht: •
Schulungsunterlagen IT-Grundschutz nach BSImichael-uwe-lohr.de/download/BSI-Grundschutz.pdf · • Beschreibt, wie ein Information Security Management System (ISMS) aussieht: • Documents