SlideShare una empresa de Scribd logo

AWS Webcast - AWS Compliance Forum Introduction Oct 2013

Amazon Web Services
Amazon Web Services

Amazon Web Services (AWS) has developed a customer compliance forum to facilitate in-depth compliance discussions between you and with AWS Compliance. The webinar focuses on the AWS shared responsibility security model and how your organization can achieve security and compliance within your use of AWS services. This initial AWS Compliance Forum webinar will provide an overview of AWS compliance programs, use cases, and the various compliance verticals AWS can support both through current certification and attestations (i.e., PCI, SOC, FedRAMP, and ISO) as well as areas AWS can illustrate use cases for workloads related to Life Sciences, Financial Services, and state/federal government compliance requirements. From there we will discuss the goals of the AWS Compliance Forum and plans for future webinars and small-group compliance discussions.

TecnologíaEmpresariales
1 de 29
Descargar para leer sin conexión
AWS Compliance Forum Introduction October 31, 2013 © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Session Agenda (Very) brief overview: Compliance of AWS AWS Compliance Forum detail: Compliance in AWS – Who, What, When, Where, Why, and How What’s Next for your AWS Compliance Forum Additional Q&A © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Compliance of AWS Start with our AWS Compliance whitepapers AWS Compliance Programs Want to learn more about AWS compliance? – AWS Compliance Website: Programs and Whitepapers: https://aws.amazon.com/compliance – Ask a question and/or request a certification or report by reaching out to awscompliance@amazon.com © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Now for the main event AWS COMPLIANCE FORUM © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Want to connect with other AWS customers? 100% 90% 80% 70% 60% AWS Compliance Forum THE WHO 50% 98% Yes! 40% 30% 20% 10% 0% © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. 2% No thanks
Customers like you Customers in roles like yours Chief Operations Officer © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Customers like you Customers in roles like yours Customers in industries like yours Aerospace & Defense Insurance Agriculture and Mining Manufacturing Banking Media and Publishing Consumer Goods Non-Profits Education Pharmaceuticals & Biotech Energy & Utilities Retail Finance Technology Government Telecommunications Healthcare & Medical Transportation and Logistics © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Customers like you Customers in roles like yours Customers in industries like yours Customers adhering to standards/regulations like yours Internal policies and security standards PCI DSS v2.0 ISO 27001:2005 HIPAA SOX; Requires a SOC report International privacy or breach disclosure laws FISMA State privacy or breach disclosure laws FedRAMP Other ISO 9001:2008 ITAR GLBA DIACAP ISO 14001:2004 CJIS Security Policy FERPA NERC-CIP 56% 51% 42% 42% 34% 33% 32% 31% 29% 17% 15% 14% 11% 11% 6% 6% 5% 3% 0% © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. 20% 40% 60%
POLLING QUESTION #1 PLACEHOLDER I am most interested in connecting with customers who are: • In roles like mine • In my industry • Adhere to similar standards/regulations © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Want to connect with AWS specialists? 100% 90% 80% 70% 60% AWS Compliance Forum THE WHO (PART 2) 50% 97% Yes! 40% 30% 20% 10% 0% © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. 3% No thanks
AWS resources AWS Architecture Center AWS Documentation That’s nice, but how about some two-way interaction… – AWS Compliance Architects – AWS Security Solutions Architects – AWS Professionals Services © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
POLLING QUESTION #2 PLACEHOLDER Which AWS specialists is most useful to you right now? • AWS Compliance Architects • AWS Security Solutions Architects • AWS Professional Services Consultants © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
AWS Specialists wanting to help you Chris Whalley AWS Compliance Architect Max Ramsay AWS Principal Security Solutions Architect Chris Gile AWS Compliance Architect © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. Tom Sheehan AWS Senior Consultant
Questions about customers or AWS specialists in the AWS Compliance Forum? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Do you want support in interpreting and implementing control requirements in the cloud? 99% Yes! AWS Compliance Forum THE WHAT… AND THE WHY… AND THE HOW © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. 1% No thanks
AWS Compliance Forum mission To enable you to easily and effectively interpret and implement control requirements in the cloud by connecting you with fellow AWS customers, AWS compliance specialists, and specialized content Are you comfortable interpreting and implementing control requirements in the cloud? 100% 100% 90% 80% 23% No…Help! 90% 80% 70% 70% 60% 60% 50% 40% 66% Not really 100% Yes!! 50% 40% 30% 30% 20% 20% 10% 0% 11% yes, but… Current State 10% 0% Future State © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Getting to ‘future state’: Your content Industry- and regulation-specific workbooks – FFIEC, HIPAA, PCI, etc. Changes to standards (and interpretation guidance) – PCI DSS v3.0, ISO 27001:2013, etc. Compliance whitepapers – Governance features, logging features, etc. Compliance case studies – Customers sharing their experiences, lessons learned and reference architectures (HIPAA, PCI, etc.) © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Customized depth of content Summary-level An overview of security and compliance considerations for your industry ‘Anonymized’ stories about others’ successes and challenges with compliance A mapping to your existing compliance programs and associated controls A discussion around how to architect to adhere to standards or regulations A discussion around your control implementation concerns © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. Detailed-level
POLLING QUESTION #3 PLACEHOLDER Think of the standard/policy for which compliance is top-ofmind to you right now. What would be most helpful to you? • An overview of security & compliance considerations • ‘Anonymized’ stories about others’ successes/challenges • A mapping to your existing compliance programs/controls • A discussion around how to architect to adhere • A discussion around your implementation concerns © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Your content medium Compliance whitepapers and case studies Webinars Industry-focused discussion groups Standard-focused discussion groups (i.e. PCI DSS) Live presentations with AWS Compliance © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
POLLING QUESTION #4 PLACEHOLDER Which of the following are you most interested in? • Compliance whitepapers and case studies • Webinars • Industry-focused discussion groups • Standard-focused discussion groups (i.e. PCI DSS) • Live presentations with AWS Compliance © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Questions on ‘the what, why and how’? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
AWS Compliance Forum THE WHEN AND WHERE © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Planned cadence Monthly: Industry- or standard-specific discussion group Quarterly: General-interest webinar Semi-annually: AWS Compliance Forum newsletter Annually: AWS Compliance Forum meet n’ greet Ad-hoc: Public appearances, case-study publication, etc. © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Questions on ‘the where and when’? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
AWS Compliance Forum WHAT’S NEXT? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
What about between now and then? Socialize this webinar with key people in your org Check out the AWS Security blog – Tags by: Compliance, Best practices, etc. Attend re:Invent sessions focused on compliance (or watch the recordings on YouTube in late Nov) – SEC101: AWS Security – Keynote Address – SEC203: Security Assurance and Governance in AWS – SEC204: Building Secure Applications and Navigating FedRAMP in the AWS GovCloud (US) Region – SEC206: Taking the Fear Out of PCI Compliance in the Cloud – SEC306: Implementing Bullet-Proof HIPAA Solutions on AWS © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
AWS Compliance Forum ADDITIONAL QUESTIONS? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
Copyright © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. This work may not be reproduced or redistributed, in whole or in part, without prior written permission from Amazon Web Services, Inc. Commercial copying, lending, or selling is prohibited. Questions? Email us at awscompliance@amazon.com. © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.

Recomendados

(GEN117) AWS Compliance Summit
(GEN117) AWS Compliance Summit(GEN117) AWS Compliance Summit
(GEN117) AWS Compliance Summit
Amazon Web Services
 
3 Secrets to Becoming a Cloud Security Superhero - Session Sponsored by Trend...
3 Secrets to Becoming a Cloud Security Superhero - Session Sponsored by Trend...3 Secrets to Becoming a Cloud Security Superhero - Session Sponsored by Trend...
3 Secrets to Becoming a Cloud Security Superhero - Session Sponsored by Trend...
Amazon Web Services
 
Check Point Software Technologies: Secure Your AWS Workloads
Check Point Software Technologies: Secure Your AWS Workloads Check Point Software Technologies: Secure Your AWS Workloads
Check Point Software Technologies: Secure Your AWS Workloads
Amazon Web Services
 
2016 AWS Healthcare Days | Nashville, TN – May 3,2016
2016 AWS Healthcare Days | Nashville, TN – May 3,20162016 AWS Healthcare Days | Nashville, TN – May 3,2016
2016 AWS Healthcare Days | Nashville, TN – May 3,2016
Amazon Web Services
 
AWS re:Invent 2016: AWS GovCloud (US) for Highly Regulated Workloads (WWPS301)
AWS re:Invent 2016: AWS GovCloud (US) for Highly Regulated Workloads (WWPS301)AWS re:Invent 2016: AWS GovCloud (US) for Highly Regulated Workloads (WWPS301)
AWS re:Invent 2016: AWS GovCloud (US) for Highly Regulated Workloads (WWPS301)
Amazon Web Services
 
AWS Governance Overview - Beach
AWS Governance Overview - BeachAWS Governance Overview - Beach
AWS Governance Overview - Beach
Amazon Web Services
 
2016 AWS Healthcare Day | Chicago, IL – June 28th, 2016
2016 AWS Healthcare Day | Chicago, IL – June 28th, 20162016 AWS Healthcare Day | Chicago, IL – June 28th, 2016
2016 AWS Healthcare Day | Chicago, IL – June 28th, 2016
Amazon Web Services
 
Governance @ Scale: Compliance Automation in AWS | AWS Public Sector Summit 2017
Governance @ Scale: Compliance Automation in AWS | AWS Public Sector Summit 2017Governance @ Scale: Compliance Automation in AWS | AWS Public Sector Summit 2017
Governance @ Scale: Compliance Automation in AWS | AWS Public Sector Summit 2017
Amazon Web Services
 

Recomendados

(GEN117) AWS Compliance Summit
(GEN117) AWS Compliance Summit(GEN117) AWS Compliance Summit
(GEN117) AWS Compliance Summit
Amazon Web Services
 
3 Secrets to Becoming a Cloud Security Superhero - Session Sponsored by Trend...
3 Secrets to Becoming a Cloud Security Superhero - Session Sponsored by Trend...3 Secrets to Becoming a Cloud Security Superhero - Session Sponsored by Trend...
3 Secrets to Becoming a Cloud Security Superhero - Session Sponsored by Trend...
Amazon Web Services
 
Check Point Software Technologies: Secure Your AWS Workloads
Check Point Software Technologies: Secure Your AWS Workloads Check Point Software Technologies: Secure Your AWS Workloads
Check Point Software Technologies: Secure Your AWS Workloads
Amazon Web Services
 
2016 AWS Healthcare Days | Nashville, TN – May 3,2016
2016 AWS Healthcare Days | Nashville, TN – May 3,20162016 AWS Healthcare Days | Nashville, TN – May 3,2016
2016 AWS Healthcare Days | Nashville, TN – May 3,2016
Amazon Web Services
 
AWS re:Invent 2016: AWS GovCloud (US) for Highly Regulated Workloads (WWPS301)
AWS re:Invent 2016: AWS GovCloud (US) for Highly Regulated Workloads (WWPS301)AWS re:Invent 2016: AWS GovCloud (US) for Highly Regulated Workloads (WWPS301)
AWS re:Invent 2016: AWS GovCloud (US) for Highly Regulated Workloads (WWPS301)
Amazon Web Services
 
AWS Governance Overview - Beach
AWS Governance Overview - BeachAWS Governance Overview - Beach
AWS Governance Overview - Beach
Amazon Web Services
 
2016 AWS Healthcare Day | Chicago, IL – June 28th, 2016
2016 AWS Healthcare Day | Chicago, IL – June 28th, 20162016 AWS Healthcare Day | Chicago, IL – June 28th, 2016
2016 AWS Healthcare Day | Chicago, IL – June 28th, 2016
Amazon Web Services
 
Governance @ Scale: Compliance Automation in AWS | AWS Public Sector Summit 2017
Governance @ Scale: Compliance Automation in AWS | AWS Public Sector Summit 2017Governance @ Scale: Compliance Automation in AWS | AWS Public Sector Summit 2017
Governance @ Scale: Compliance Automation in AWS | AWS Public Sector Summit 2017
Amazon Web Services
 
Security in the Cloud - AWS Symposium 2014 - Washington D.C.
Security in the Cloud - AWS Symposium 2014 - Washington D.C. Security in the Cloud - AWS Symposium 2014 - Washington D.C.
Security in the Cloud - AWS Symposium 2014 - Washington D.C.
Amazon Web Services
 
Compliance In The Cloud Using Security By Design
Compliance In The Cloud Using Security By DesignCompliance In The Cloud Using Security By Design
Compliance In The Cloud Using Security By Design
Amazon Web Services
 
AWS Security Enabiling Fintech Pace Security AWS Summit SG 2017
AWS Security Enabiling Fintech Pace Security AWS Summit SG 2017 AWS Security Enabiling Fintech Pace Security AWS Summit SG 2017
AWS Security Enabiling Fintech Pace Security AWS Summit SG 2017
Amazon Web Services
 
Cloud ID Management of North Carolina Department of Public Instruction (SEC10...
Cloud ID Management of North Carolina Department of Public Instruction (SEC10...Cloud ID Management of North Carolina Department of Public Instruction (SEC10...
Cloud ID Management of North Carolina Department of Public Instruction (SEC10...
Amazon Web Services
 
AWS Security for Financial Services
AWS Security for Financial ServicesAWS Security for Financial Services
AWS Security for Financial Services
Amazon Web Services
 
AWS GovCloud (US) Fundamentals: Past, Present, and Future - AWS Symposium 201...
AWS GovCloud (US) Fundamentals: Past, Present, and Future - AWS Symposium 201...AWS GovCloud (US) Fundamentals: Past, Present, and Future - AWS Symposium 201...
AWS GovCloud (US) Fundamentals: Past, Present, and Future - AWS Symposium 201...
Amazon Web Services
 
Compliance with AWS
Compliance with AWSCompliance with AWS
Compliance with AWS
Amazon Web Services
 
Automating nist 800 171 compliance in AWS Govcloud (US)
Automating nist 800 171 compliance in AWS Govcloud (US)Automating nist 800 171 compliance in AWS Govcloud (US)
Automating nist 800 171 compliance in AWS Govcloud (US)
Amazon Web Services
 
Warum ist Cloud-Sicherheit und Compliance wichtig?
Warum ist Cloud-Sicherheit und Compliance wichtig?Warum ist Cloud-Sicherheit und Compliance wichtig?
Warum ist Cloud-Sicherheit und Compliance wichtig?
AWS Germany
 
AWS Enterprise Summit Netherlands - Infosec by Design
AWS Enterprise Summit Netherlands - Infosec by DesignAWS Enterprise Summit Netherlands - Infosec by Design
AWS Enterprise Summit Netherlands - Infosec by Design
Amazon Web Services
 
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
Amazon Web Services
 
Navigating AWS re:Invent 2015
Navigating AWS re:Invent 2015Navigating AWS re:Invent 2015
Navigating AWS re:Invent 2015
Amazon Web Services
 
Benefits of Cloud Computing
Benefits of Cloud ComputingBenefits of Cloud Computing
Benefits of Cloud Computing
Amazon Web Services
 
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
Amazon Web Services
 
Financial Services in the Cloud
Financial Services in the CloudFinancial Services in the Cloud
Financial Services in the Cloud
Amazon Web Services
 
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
Amazon Web Services
 
Closing Remarks - AWSome Day Brussels
Closing Remarks - AWSome Day BrusselsClosing Remarks - AWSome Day Brussels
Closing Remarks - AWSome Day Brussels
Amazon Web Services
 
Serverless solutions - AWS Summit SG 2017
Serverless solutions - AWS Summit SG 2017 Serverless solutions - AWS Summit SG 2017
Serverless solutions - AWS Summit SG 2017
Amazon Web Services
 
Compliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by DesignCompliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by Design
Amazon Web Services
 
AWS Security and Compliance
AWS Security and ComplianceAWS Security and Compliance
AWS Security and Compliance
Amazon Web Services
 
Aws certification guide
Aws certification guideAws certification guide
Aws certification guide
ShivamSharma909
 
AWS Certification Guide
AWS Certification GuideAWS Certification Guide
AWS Certification Guide
infosec train
 

Más contenido relacionado

La actualidad más candente

Automating nist 800 171 compliance in AWS Govcloud (US)
Automating nist 800 171 compliance in AWS Govcloud (US)Automating nist 800 171 compliance in AWS Govcloud (US)
Automating nist 800 171 compliance in AWS Govcloud (US)
Amazon Web Services
 
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
Amazon Web Services
 
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
Amazon Web Services
 
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
Amazon Web Services
 
Compliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by DesignCompliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by Design
Amazon Web Services
 

La actualidad más candente (20)

Security in the Cloud - AWS Symposium 2014 - Washington D.C.
Security in the Cloud - AWS Symposium 2014 - Washington D.C. Security in the Cloud - AWS Symposium 2014 - Washington D.C.
Security in the Cloud - AWS Symposium 2014 - Washington D.C.
 
Compliance In The Cloud Using Security By Design
Compliance In The Cloud Using Security By DesignCompliance In The Cloud Using Security By Design
Compliance In The Cloud Using Security By Design
 
AWS Security Enabiling Fintech Pace Security AWS Summit SG 2017
AWS Security Enabiling Fintech Pace Security AWS Summit SG 2017 AWS Security Enabiling Fintech Pace Security AWS Summit SG 2017
AWS Security Enabiling Fintech Pace Security AWS Summit SG 2017
 
Cloud ID Management of North Carolina Department of Public Instruction (SEC10...
Cloud ID Management of North Carolina Department of Public Instruction (SEC10...Cloud ID Management of North Carolina Department of Public Instruction (SEC10...
Cloud ID Management of North Carolina Department of Public Instruction (SEC10...
 
AWS Security for Financial Services
AWS Security for Financial ServicesAWS Security for Financial Services
AWS Security for Financial Services
 
AWS GovCloud (US) Fundamentals: Past, Present, and Future - AWS Symposium 201...
AWS GovCloud (US) Fundamentals: Past, Present, and Future - AWS Symposium 201...AWS GovCloud (US) Fundamentals: Past, Present, and Future - AWS Symposium 201...
AWS GovCloud (US) Fundamentals: Past, Present, and Future - AWS Symposium 201...
 
Compliance with AWS
Compliance with AWSCompliance with AWS
Compliance with AWS
 
Automating nist 800 171 compliance in AWS Govcloud (US)
Automating nist 800 171 compliance in AWS Govcloud (US)Automating nist 800 171 compliance in AWS Govcloud (US)
Automating nist 800 171 compliance in AWS Govcloud (US)
 
Warum ist Cloud-Sicherheit und Compliance wichtig?
Warum ist Cloud-Sicherheit und Compliance wichtig?Warum ist Cloud-Sicherheit und Compliance wichtig?
Warum ist Cloud-Sicherheit und Compliance wichtig?
 
AWS Enterprise Summit Netherlands - Infosec by Design
AWS Enterprise Summit Netherlands - Infosec by DesignAWS Enterprise Summit Netherlands - Infosec by Design
AWS Enterprise Summit Netherlands - Infosec by Design
 
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
You Can't Protect What you Can't See. AWS Security Best Practices - Session S...
 
Navigating AWS re:Invent 2015
Navigating AWS re:Invent 2015Navigating AWS re:Invent 2015
Navigating AWS re:Invent 2015
 
Benefits of Cloud Computing
Benefits of Cloud ComputingBenefits of Cloud Computing
Benefits of Cloud Computing
 
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
AWS re:Invent 2016: Common Considerations for Data Integrity Controls in Heal...
 
Financial Services in the Cloud
Financial Services in the CloudFinancial Services in the Cloud
Financial Services in the Cloud
 
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
Innovating IAM Protection for AWS with Dome9 - Session Sponsored by Dome9
 
Closing Remarks - AWSome Day Brussels
Closing Remarks - AWSome Day BrusselsClosing Remarks - AWSome Day Brussels
Closing Remarks - AWSome Day Brussels
 
Serverless solutions - AWS Summit SG 2017
Serverless solutions - AWS Summit SG 2017 Serverless solutions - AWS Summit SG 2017
Serverless solutions - AWS Summit SG 2017
 
Compliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by DesignCompliance in the Cloud Using Security by Design
Compliance in the Cloud Using Security by Design
 
AWS Security and Compliance
AWS Security and ComplianceAWS Security and Compliance
AWS Security and Compliance
 

Similar a AWS Webcast - AWS Compliance Forum Introduction Oct 2013

Automating Compliance Defense in the Cloud - September 2016 Webinar Series
Automating Compliance Defense in the Cloud - September 2016 Webinar SeriesAutomating Compliance Defense in the Cloud - September 2016 Webinar Series
Automating Compliance Defense in the Cloud - September 2016 Webinar Series
Amazon Web Services
 
Using analytics to set access controls in AWS - SDD204 - AWS re:Inforce 2019
Using analytics to set access controls in AWS - SDD204 - AWS re:Inforce 2019 Using analytics to set access controls in AWS - SDD204 - AWS re:Inforce 2019
Using analytics to set access controls in AWS - SDD204 - AWS re:Inforce 2019
Amazon Web Services
 
Addressing Your Business Needs with AWS (ARC323) - AWS re:Invent 2018
Addressing Your Business Needs with AWS (ARC323) - AWS re:Invent 2018Addressing Your Business Needs with AWS (ARC323) - AWS re:Invent 2018
Addressing Your Business Needs with AWS (ARC323) - AWS re:Invent 2018
Amazon Web Services
 
AWS re:Invent 2016: Tips for Passing APN Technical Validations (GPSISV2)
AWS re:Invent 2016: Tips for Passing APN Technical Validations (GPSISV2)AWS re:Invent 2016: Tips for Passing APN Technical Validations (GPSISV2)
AWS re:Invent 2016: Tips for Passing APN Technical Validations (GPSISV2)
Amazon Web Services
 
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
Amazon Web Services
 
Policy Verification and Enforcement at Scale with AWS (SEC320) - AWS re:Inven...
Policy Verification and Enforcement at Scale with AWS (SEC320) - AWS re:Inven...Policy Verification and Enforcement at Scale with AWS (SEC320) - AWS re:Inven...
Policy Verification and Enforcement at Scale with AWS (SEC320) - AWS re:Inven...
Amazon Web Services
 
Pop the hood: Using AWS resources to attest to security of the cloud - GRC310...
Pop the hood: Using AWS resources to attest to security of the cloud - GRC310...Pop the hood: Using AWS resources to attest to security of the cloud - GRC310...
Pop the hood: Using AWS resources to attest to security of the cloud - GRC310...
Amazon Web Services
 

Similar a AWS Webcast - AWS Compliance Forum Introduction Oct 2013 (20)

Aws certification guide
Aws certification guideAws certification guide
Aws certification guide
 
AWS Certification Guide
AWS Certification GuideAWS Certification Guide
AWS Certification Guide
 
Preparing for AWS Certification & Advanced Security Training
Preparing for AWS Certification & Advanced Security TrainingPreparing for AWS Certification & Advanced Security Training
Preparing for AWS Certification & Advanced Security Training
 
Automating Compliance Defense in the Cloud - September 2016 Webinar Series
Automating Compliance Defense in the Cloud - September 2016 Webinar SeriesAutomating Compliance Defense in the Cloud - September 2016 Webinar Series
Automating Compliance Defense in the Cloud - September 2016 Webinar Series
 
How to act on your security and compliance alerts with AWS Security Hub - FND...
How to act on your security and compliance alerts with AWS Security Hub - FND...How to act on your security and compliance alerts with AWS Security Hub - FND...
How to act on your security and compliance alerts with AWS Security Hub - FND...
 
ENT304 Enabling Self Service for Data Scientists with AWS Service Catalog
ENT304 Enabling Self Service for Data Scientists with AWS Service CatalogENT304 Enabling Self Service for Data Scientists with AWS Service Catalog
ENT304 Enabling Self Service for Data Scientists with AWS Service Catalog
 
Using analytics to set access controls in AWS - SDD204 - AWS re:Inforce 2019
Using analytics to set access controls in AWS - SDD204 - AWS re:Inforce 2019 Using analytics to set access controls in AWS - SDD204 - AWS re:Inforce 2019
Using analytics to set access controls in AWS - SDD204 - AWS re:Inforce 2019
 
AWS FSI Symposium 2017 NYC- Shared Reponsibility & AWS Compliance
AWS FSI Symposium 2017 NYC- Shared Reponsibility & AWS ComplianceAWS FSI Symposium 2017 NYC- Shared Reponsibility & AWS Compliance
AWS FSI Symposium 2017 NYC- Shared Reponsibility & AWS Compliance
 
Addressing Your Business Needs with AWS (ARC323) - AWS re:Invent 2018
Addressing Your Business Needs with AWS (ARC323) - AWS re:Invent 2018Addressing Your Business Needs with AWS (ARC323) - AWS re:Invent 2018
Addressing Your Business Needs with AWS (ARC323) - AWS re:Invent 2018
 
(SEC307) A Progressive Journey Through AWS IAM Federation Options
(SEC307) A Progressive Journey Through AWS IAM Federation Options(SEC307) A Progressive Journey Through AWS IAM Federation Options
(SEC307) A Progressive Journey Through AWS IAM Federation Options
 
AWS re:Invent 2016: Tips for Passing APN Technical Validations (GPSISV2)
AWS re:Invent 2016: Tips for Passing APN Technical Validations (GPSISV2)AWS re:Invent 2016: Tips for Passing APN Technical Validations (GPSISV2)
AWS re:Invent 2016: Tips for Passing APN Technical Validations (GPSISV2)
 
Frequently Asked Questions in the AWS Security Interview.pptx
Frequently Asked Questions in the AWS Security Interview.pptxFrequently Asked Questions in the AWS Security Interview.pptx
Frequently Asked Questions in the AWS Security Interview.pptx
 
Frequently Asked Questions in the AWS Security Interview.pptx
Frequently Asked Questions in the AWS Security Interview.pptxFrequently Asked Questions in the AWS Security Interview.pptx
Frequently Asked Questions in the AWS Security Interview.pptx
 
The Cloud Enabled IT Operating Model - Business
The Cloud Enabled IT Operating Model - BusinessThe Cloud Enabled IT Operating Model - Business
The Cloud Enabled IT Operating Model - Business
 
Getting Started With AWS Security
Getting Started With AWS SecurityGetting Started With AWS Security
Getting Started With AWS Security
 
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
AWS Landing Zone Deep Dive (ENT350-R2) - AWS re:Invent 2018
 
Policy Verification and Enforcement at Scale with AWS (SEC320) - AWS re:Inven...
Policy Verification and Enforcement at Scale with AWS (SEC320) - AWS re:Inven...Policy Verification and Enforcement at Scale with AWS (SEC320) - AWS re:Inven...
Policy Verification and Enforcement at Scale with AWS (SEC320) - AWS re:Inven...
 
Achieving Compliance and Selling to Regulated Markets on AWS
Achieving Compliance and Selling to Regulated Markets on AWSAchieving Compliance and Selling to Regulated Markets on AWS
Achieving Compliance and Selling to Regulated Markets on AWS
 
Pop the hood: Using AWS resources to attest to security of the cloud - GRC310...
Pop the hood: Using AWS resources to attest to security of the cloud - GRC310...Pop the hood: Using AWS resources to attest to security of the cloud - GRC310...
Pop the hood: Using AWS resources to attest to security of the cloud - GRC310...
 
A Complete Study Guide for AWS Certified Solutions Architect Associate Exam
A Complete Study Guide for AWS Certified Solutions Architect Associate ExamA Complete Study Guide for AWS Certified Solutions Architect Associate Exam
A Complete Study Guide for AWS Certified Solutions Architect Associate Exam
 

Más de Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Amazon Web Services
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Amazon Web Services
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
Amazon Web Services
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
Amazon Web Services
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Amazon Web Services
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
Amazon Web Services
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Amazon Web Services
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
Amazon Web Services
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Amazon Web Services
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
Amazon Web Services
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
Amazon Web Services
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
Amazon Web Services
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
Amazon Web Services
 

Más de Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...
 
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...
 
Esegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS FargateEsegui pod serverless con Amazon EKS e AWS Fargate
Esegui pod serverless con Amazon EKS e AWS Fargate
 
Costruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWSCostruire Applicazioni Moderne con AWS
Costruire Applicazioni Moderne con AWS
 
Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot Come spendere fino al 90% in meno con i container e le istanze spot
Come spendere fino al 90% in meno con i container e le istanze spot
 
Open banking as a service
Open banking as a serviceOpen banking as a service
Open banking as a service
 
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...
 
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...OpsWorks Configuration Management: automatizza la gestione e i deployment del...
OpsWorks Configuration Management: automatizza la gestione e i deployment del...
 
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsMicrosoft Active Directory su AWS per supportare i tuoi Windows Workloads
Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads
 
Computer Vision con AWS
Computer Vision con AWSComputer Vision con AWS
Computer Vision con AWS
 
Database Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatareDatabase Oracle e VMware Cloud on AWS i miti da sfatare
Database Oracle e VMware Cloud on AWS i miti da sfatare
 
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJSCrea la tua prima serverless ledger-based app con QLDB e NodeJS
Crea la tua prima serverless ledger-based app con QLDB e NodeJS
 
API moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e webAPI moderne real-time per applicazioni mobili e web
API moderne real-time per applicazioni mobili e web
 
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareDatabase Oracle e VMware Cloud™ on AWS: i miti da sfatare
Database Oracle e VMware Cloud™ on AWS: i miti da sfatare
 
Tools for building your MVP on AWS
Tools for building your MVP on AWSTools for building your MVP on AWS
Tools for building your MVP on AWS
 
How to Build a Winning Pitch Deck
How to Build a Winning Pitch DeckHow to Build a Winning Pitch Deck
How to Build a Winning Pitch Deck
 
Building a web application without servers
Building a web application without serversBuilding a web application without servers
Building a web application without servers
 
Fundraising Essentials
Fundraising EssentialsFundraising Essentials
Fundraising Essentials
 
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...
 
Introduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container ServiceIntroduzione a Amazon Elastic Container Service
Introduzione a Amazon Elastic Container Service
 

Último

Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Victor Rentea
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 

Último (20)

Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Corporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptxCorporate and higher education May webinar.pptx
Corporate and higher education May webinar.pptx
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
MS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectorsMS Copilot expands with MS Graph connectors
MS Copilot expands with MS Graph connectors
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
 
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
Apidays New York 2024 - Passkeys: Developing APIs to enable passwordless auth...
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering Developers
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 

AWS Webcast - AWS Compliance Forum Introduction Oct 2013

  • 1. AWS Compliance Forum Introduction October 31, 2013 © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 2. Session Agenda (Very) brief overview: Compliance of AWS AWS Compliance Forum detail: Compliance in AWS – Who, What, When, Where, Why, and How What’s Next for your AWS Compliance Forum Additional Q&A © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 3. Compliance of AWS Start with our AWS Compliance whitepapers AWS Compliance Programs Want to learn more about AWS compliance? – AWS Compliance Website: Programs and Whitepapers: https://aws.amazon.com/compliance – Ask a question and/or request a certification or report by reaching out to awscompliance@amazon.com © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 4. Now for the main event AWS COMPLIANCE FORUM © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 5. Want to connect with other AWS customers? 100% 90% 80% 70% 60% AWS Compliance Forum THE WHO 50% 98% Yes! 40% 30% 20% 10% 0% © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. 2% No thanks
  • 6. Customers like you Customers in roles like yours Chief Operations Officer © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 7. Customers like you Customers in roles like yours Customers in industries like yours Aerospace & Defense Insurance Agriculture and Mining Manufacturing Banking Media and Publishing Consumer Goods Non-Profits Education Pharmaceuticals & Biotech Energy & Utilities Retail Finance Technology Government Telecommunications Healthcare & Medical Transportation and Logistics © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 8. Customers like you Customers in roles like yours Customers in industries like yours Customers adhering to standards/regulations like yours Internal policies and security standards PCI DSS v2.0 ISO 27001:2005 HIPAA SOX; Requires a SOC report International privacy or breach disclosure laws FISMA State privacy or breach disclosure laws FedRAMP Other ISO 9001:2008 ITAR GLBA DIACAP ISO 14001:2004 CJIS Security Policy FERPA NERC-CIP 56% 51% 42% 42% 34% 33% 32% 31% 29% 17% 15% 14% 11% 11% 6% 6% 5% 3% 0% © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. 20% 40% 60%
  • 9. POLLING QUESTION #1 PLACEHOLDER I am most interested in connecting with customers who are: • In roles like mine • In my industry • Adhere to similar standards/regulations © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 10. Want to connect with AWS specialists? 100% 90% 80% 70% 60% AWS Compliance Forum THE WHO (PART 2) 50% 97% Yes! 40% 30% 20% 10% 0% © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. 3% No thanks
  • 11. AWS resources AWS Architecture Center AWS Documentation That’s nice, but how about some two-way interaction… – AWS Compliance Architects – AWS Security Solutions Architects – AWS Professionals Services © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 12. POLLING QUESTION #2 PLACEHOLDER Which AWS specialists is most useful to you right now? • AWS Compliance Architects • AWS Security Solutions Architects • AWS Professional Services Consultants © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 13. AWS Specialists wanting to help you Chris Whalley AWS Compliance Architect Max Ramsay AWS Principal Security Solutions Architect Chris Gile AWS Compliance Architect © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. Tom Sheehan AWS Senior Consultant
  • 14. Questions about customers or AWS specialists in the AWS Compliance Forum? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 15. Do you want support in interpreting and implementing control requirements in the cloud? 99% Yes! AWS Compliance Forum THE WHAT… AND THE WHY… AND THE HOW © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. 1% No thanks
  • 16. AWS Compliance Forum mission To enable you to easily and effectively interpret and implement control requirements in the cloud by connecting you with fellow AWS customers, AWS compliance specialists, and specialized content Are you comfortable interpreting and implementing control requirements in the cloud? 100% 100% 90% 80% 23% No…Help! 90% 80% 70% 70% 60% 60% 50% 40% 66% Not really 100% Yes!! 50% 40% 30% 30% 20% 20% 10% 0% 11% yes, but… Current State 10% 0% Future State © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 17. Getting to ‘future state’: Your content Industry- and regulation-specific workbooks – FFIEC, HIPAA, PCI, etc. Changes to standards (and interpretation guidance) – PCI DSS v3.0, ISO 27001:2013, etc. Compliance whitepapers – Governance features, logging features, etc. Compliance case studies – Customers sharing their experiences, lessons learned and reference architectures (HIPAA, PCI, etc.) © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 18. Customized depth of content Summary-level An overview of security and compliance considerations for your industry ‘Anonymized’ stories about others’ successes and challenges with compliance A mapping to your existing compliance programs and associated controls A discussion around how to architect to adhere to standards or regulations A discussion around your control implementation concerns © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. Detailed-level
  • 19. POLLING QUESTION #3 PLACEHOLDER Think of the standard/policy for which compliance is top-ofmind to you right now. What would be most helpful to you? • An overview of security & compliance considerations • ‘Anonymized’ stories about others’ successes/challenges • A mapping to your existing compliance programs/controls • A discussion around how to architect to adhere • A discussion around your implementation concerns © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 20. Your content medium Compliance whitepapers and case studies Webinars Industry-focused discussion groups Standard-focused discussion groups (i.e. PCI DSS) Live presentations with AWS Compliance © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 21. POLLING QUESTION #4 PLACEHOLDER Which of the following are you most interested in? • Compliance whitepapers and case studies • Webinars • Industry-focused discussion groups • Standard-focused discussion groups (i.e. PCI DSS) • Live presentations with AWS Compliance © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 22. Questions on ‘the what, why and how’? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 23. AWS Compliance Forum THE WHEN AND WHERE © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 24. Planned cadence Monthly: Industry- or standard-specific discussion group Quarterly: General-interest webinar Semi-annually: AWS Compliance Forum newsletter Annually: AWS Compliance Forum meet n’ greet Ad-hoc: Public appearances, case-study publication, etc. © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 25. Questions on ‘the where and when’? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 26. AWS Compliance Forum WHAT’S NEXT? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 27. What about between now and then? Socialize this webinar with key people in your org Check out the AWS Security blog – Tags by: Compliance, Best practices, etc. Attend re:Invent sessions focused on compliance (or watch the recordings on YouTube in late Nov) – SEC101: AWS Security – Keynote Address – SEC203: Security Assurance and Governance in AWS – SEC204: Building Secure Applications and Navigating FedRAMP in the AWS GovCloud (US) Region – SEC206: Taking the Fear Out of PCI Compliance in the Cloud – SEC306: Implementing Bullet-Proof HIPAA Solutions on AWS © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 28. AWS Compliance Forum ADDITIONAL QUESTIONS? © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.
  • 29. Copyright © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved. This work may not be reproduced or redistributed, in whole or in part, without prior written permission from Amazon Web Services, Inc. Commercial copying, lending, or selling is prohibited. Questions? Email us at awscompliance@amazon.com. © 2013 Amazon Web Services, Inc. and its affiliates. All rights reserved.