AWS Artifact: Simplifying Security Compliance for Your AWS Environment

Specific Areas AWS Artifact Can Help You Achieve Security Compliance

Q: You just joined a big IT company as an AWS security specialist.Your first assignment is to prepare for an external security audit next month.You need to understand how your company uses AWS services and whether or not they can meet security compliance.You know that AWS Artifact can help you provide security compliance evidence to the auditor.Which specific areas can AWS Artifact help you? (Select TWO.)

Service Organization Control (SOC) compliance report.AWS ISO certifications for the AWS infrastructure and services that the company has used.

Prev Question Next Question

Question

You just joined a big IT company as an AWS security specialist.

Your first assignment is to prepare for an external security audit next month.

You need to understand how your company uses AWS services and whether or not they can meet security compliance.

You know that AWS Artifact can help you provide security compliance evidence to the auditor.

Which specific areas can AWS Artifact help you? (Select TWO.)

Answers

A. Service Organization Control (SOC) compliance report.

B. Security configurations in EC2 instances such as firewall rules.

C. Client side data encryption and data integrity authentication.

D. AWS ISO certifications for the AWS infrastructure and services that the company has used.

E. IAM user and role configurations such as if IAM policies meet the least privilege.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E.

Answer: A and D.

Option A is CORRECT because AWS Artifact can provide the SOC compliance report as per the requirement.

Refer to Snapshot A for more details.

Option B is incorrect because it belongs to the customers' responsibility to provide firewall rules from the Security Group or Network Access Control List (NACL).

Option C is incorrect because it belongs to the customers' responsibility to provide information about client-side data encryption and data integrity authentication.

Option D is CORRECT because AWS Artifact can provide ISO certifications for the AWS infrastructure and services that the company has used.

Refer to Snapshot B for more details.

Option E is incorrect because AWS Artifact does not provide the IAM user list and role details.

Snapshot A.

Snapshot B.

AWS Artifact can provide access-controlled documents relevant to compliance and security in AWS.

AWS Artifact provides documents about AWS only.

Customers are still responsible for obtaining documents that demonstrate the security and compliance of their companies.

There is a shared responsibility between AWS and the customer for security and compliance.

For more information on the AWS shared responsibility model, kindly refer to the URL below:

https://aws.amazon.com/compliance/shared-responsibility-model/.

Edit Behavior

Query String Forwarding and None (Improves Caching) v
Caching

Smooth Streaming Yes
®No

Restrict Viewer Access {oes
(Use Signed URLs or No

Signed Cookies) If you restrict viewer access, viewers must use

CloudFront signed URLs or signed cookies to access
your content. For more information, see Serving Private
Content through CloudFront in the Amazon CloudFront
Developer Guide.

AWS Artifact is a service provided by Amazon Web Services (AWS) that provides on-demand access to compliance reports and other relevant documentation that can help companies meet their compliance requirements. AWS Artifact can help security professionals prepare for external security audits by providing evidence of compliance for various areas of security.

The specific areas where AWS Artifact can help include:

A. Service Organization Control (SOC) compliance report: SOC reports are a series of reports prepared by an independent auditor that provide information about a service provider's controls over its information systems, including security, availability, processing integrity, confidentiality, and privacy. AWS Artifact can help companies provide SOC reports to auditors to demonstrate their compliance with these controls.

D. AWS ISO certifications for the AWS infrastructure and services that the company has used: AWS has obtained various ISO certifications for its infrastructure and services, including ISO 27001, 27017, and 27018. These certifications demonstrate AWS's commitment to security, privacy, and compliance. AWS Artifact can help companies provide evidence of these certifications to auditors to demonstrate their compliance with industry standards.

In addition to the areas mentioned above, AWS Artifact also provides access to other compliance reports and documentation, such as:

Payment Card Industry (PCI) Data Security Standard (DSS) reports: PCI DSS is a set of security standards designed to ensure that all companies that accept, process, store, or transmit credit card information maintain a secure environment. AWS Artifact can help companies provide evidence of their compliance with PCI DSS to auditors.
General Data Protection Regulation (GDPR) compliance documentation: GDPR is a regulation that sets guidelines for the collection and processing of personal data of individuals in the European Union. AWS Artifact can help companies provide evidence of their compliance with GDPR to auditors.
HIPAA compliance documentation: HIPAA is a US law that regulates the handling of protected health information (PHI). AWS Artifact can help companies provide evidence of their compliance with HIPAA to auditors.
AWS compliance whitepapers: AWS Artifact also provides access to compliance whitepapers that provide detailed information about how AWS services can be used to meet various compliance requirements.

In summary, AWS Artifact can help security professionals prepare for external security audits by providing access to compliance reports and other relevant documentation that can help companies demonstrate their compliance with various security, privacy, and compliance requirements.

Prev Question Next Question