CCGs offer security guidance mapped to 16 different compliance frameworks for more than 130 AWS services and integrations. Customers can select from the frameworks and services available to see how security “in the cloud” applies to AWS services through the lens of compliance.
CCGs focus on security topics and technical controls that relate to AWS service configuration options. The guides don’t cover security topics or controls that are consistent across AWS services or those specific to customer organizations, such as policies or governance. As a result, the guides are shorter and are focused on the unique security and compliance considerations for each AWS service.
CCGs provide summaries of the user guides for AWS services and map configuration guidance to security control requirements from the following frameworks:
CCGs can help customers in the following ways:
Kevin is a Senior Security Partner Strategist in AWS World Wide Public Sector, specializing in helping customers meet their compliance goals. Kevin began his tenure with AWS in 2019 supporting U.S. government customers in AWS Security Assurance. He is based in Northern Virginia and enjoys spending time outdoors with his wife and daughter outside of work.
- Home ,
- Shop ,
- Cart ,
- Checkout ,
- My account
PO Box 4942 Greenville, SC 29609
Infrastructure Security News
-
AWS recognized as an Overall Leader in 2024 KuppingerCole Leadership Compass for Policy Based Access Management
Figure 1: KuppingerCole Leadership Compass for Policy Based Access Management The repo... -
Modern web application authentication and authorization with Amazon VPC Lattice
When building API-based web applications in the cloud, there are two main types of comm... -
Enable multi-admin support to manage security policies at scale with AWS Firewall Manager
These are some of the use cases and challenges faced by large enterprise organizations ... -
AWS re:Invent 2023: Security, identity, and compliance recap
At re:Invent 2023, and throughout the AWS security service announcements, there are key... -
AWS HITRUST Shared Responsibility Matrix for HITRUST CSF v11.2 now available
SRM version 1.4.2 adds support for the HITRUST Common Security Framework (CSF) v11.2 as... -
AWS completes the 2023 South Korea CSP Safety Assessment Program
The audit scope of the 2023 assessment covered data center facilities in four Availabil... -
AWS Customer Compliance Guides now publicly available
CCGs offer security guidance mapped to 16 different compliance frameworks for more... -
How to migrate your on-premises domain to AWS Managed Microsoft AD using ADMT
February 2, 2024: We’ve updated this post to fix broken links and added a note on migra... -
How to automate rule management for AWS Network Firewall
For this walkthrough, the following prerequisites must be met: Figure 1 describes how ... -
2023 C5 Type 2 attestation report available, including two new Regions and 170 services in scope
AWS has added the following 16 services to the current C5 scope: AWS strives to contin... -
How to enforce creation of roles in a specific path: Use IAM role naming in hierarchy models
A fundamental benefit of using paths is the establishment of a clear and organized orga... -
Latest PCI DSS v4.0 compliance package available in AWS Artifact
Want more AWS Security news? Follow us on Twitter. Nivetha is a Security Assurance Man... -
SaaS access control using Amazon Verified Permissions with a per-tenant policy store
Access control is essential for multi-tenant software as a service (SaaS) applications.... -
Identify Java nested dependencies with Amazon Inspector SBOM Generator
Java archive files (JAR, WAR, and EAR) are widely used for packaging Java applications ... -
How AWS can help you navigate the complexity of digital sovereignty
Digital sovereignty means different things to different people, and every country or re... -
Data masking and granular access control using Amazon Macie and AWS Lake Formation
Companies have been collecting user data to offer new products, recommend options more ... -
Export a Software Bill of Materials using Amazon Inspector
Customers have asked us to provide additional software application inventory collected ... -
2023 PiTuKri ISAE 3000 Type II attestation report available with 171 services in scope
The following are the 17 additional services now in scope for the 2023 Pitukri report: ... -
AWS completes the first cloud audit by the Ingelheim Kreis Initiative Joint Audits group for the pharmaceutical and life sciences sector
As customers embrace the scalability and flexibility of AWS, we’re helping them evolve ... -
AWS renews K-ISMS certificate for the AWS Asia Pacific (Seoul) Region
This certification helps enterprises and organizations across South Korea, regardless o...
© Cloud Level | All rights reserved | made on a by 