Security & Compliance
AWS security model and compliance basics.
Shared Responsibility Model
AWS Responsibility (Security OF the Cloud)
- Physical security of data centers
- Hardware and software infrastructure
- Network controls and host operating system patching
Customer Responsibility (Security IN the Cloud)
- Guest operating system updates
- Application software patches
- Security group configurations
- Network and firewall configurations
AWS Security Services
AWS IAM
- Identity and Access Management
- Users, groups, roles, and policies
- Multi-factor authentication
AWS CloudTrail
- API logging and monitoring
- Governance and compliance auditing
- Risk auditing and compliance
Compliance Programs
- SOC 1/2/3
- PCI DSS Level 1
- ISO 27001
- HIPAA eligible
- GDPR compliant