compliance on aws - amazon web servicesaws-de-media.s3.amazonaws.com/images/sec web day... ·...
TRANSCRIPT
![Page 1: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/1.jpg)
Compliance on AWS
Bertram Dorn – Specialized Solutions Architect
Security/Compliance
Network/Databases
Amazon Web Services Germany GmbH
©Amazon.com, Inc. and its affiliates. All rights reserved.
![Page 2: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/2.jpg)
Compliance to find the right Security Position
![Page 3: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/3.jpg)
Compliance to find the right Security Position
• A common language• A common framework• A common baseline and point
of reference
![Page 4: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/4.jpg)
Compliance to find the right Security Position
Compliance helps to find the right security setting(s)Compliance frameworks tell you what you have to do as a minimumA (e.g. Customer) does want to check on which level B (e.g. AWS) is doing somethingBut:
“Security = Compliance, if and only if your only threat actor is your auditor”
Get the auditing party involved early)
![Page 5: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/5.jpg)
Layers of security controls in AWS
Cross-service Controls
Service-specific Controls
Managed by AWS
Managed by Customer
Security of the Cloud
Security in the Cloud
Cloud Service Provider Controls
Optimized Network/OS/App Controls
Request reports at:aws.amazon.com/compliance/#contact
![Page 6: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/6.jpg)
In Combination
AWS Security
Measurements And
Certification
Security of the Customer
Environment
IT-GrundschutzEU Data PrivacySarbanes-Oxley (SOX) HIPAA (healthcare)…etc
![Page 7: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/7.jpg)
The main AWS Compliance Frameworks of today
Certificates: Programmes:
![Page 8: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/8.jpg)
Go Global in Minutes and Maintain a Single Security Standard
![Page 9: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/9.jpg)
AWS Region
US-WEST (Oregon)
ASIA PAC
(Tokyo)
ASIA PAC
(Singapore)
US-WEST (North
California)
SOUTH AMERICA (Sao
Paulo)
US-EAST (Virginia)
GOV CLOUD
ASIA PAC
(Sydney)
decide where you put your data and applications
China (Beijing)
EU-
CENTRAL(Frankfurt)EU-WEST (Dublin)
![Page 10: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/10.jpg)
Availability Zone
On a global footprint 5 AZs in Europe Low Latency in Europe Data Resides in Europe Multi Timezone Security Concepts Backup/Restore/DR only in Europe
![Page 11: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/11.jpg)
The main AWS Compliance Frameworks of today
Certificates: Programmes:
![Page 12: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/12.jpg)
When?
![Page 13: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/13.jpg)
Supervisory Duties…
![Page 14: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/14.jpg)
Demo:
![Page 15: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/15.jpg)
Others?
Further Standards in AWSPrivacy ProtectionWho else is looking into this?
![Page 16: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/16.jpg)
Bertram DornAmazon Web Services Germany [email protected]
Additional Ressources:
http://aws.amazon.com/documentationhttp://aws.amazon.com/compliancehttp://aws.amazon.com/security
![Page 17: Compliance on AWS - Amazon Web Servicesaws-de-media.s3.amazonaws.com/images/Sec Web Day... · Compliance on AWS Bertram Dorn –Specialized Solutions Architect Security/Compliance](https://reader031.vdocuments.net/reader031/viewer/2022022605/5b74959f7f8b9ac94a8c374b/html5/thumbnails/17.jpg)