AWS Security, Identity and Compliance

AWS Security, Identity and Compliance provides Encryption, Access Management, and Secure Regulated Workloads.

What is AWS Security, Identity and Compliance?

Security and specifically cloud security at AWS is the highest priority. As an AWS customer, you will benefit from a data centre and network architecture built to meet the requirements of the most security-sensitive organizations.

Here is a list of the security services AWS has to offer that are available now:

AWS Artifact

Accessing Compliance Reports
The AWS Artifact portal provides on-demand access to AWS’ security and compliance documents, also known as audit artifacts.
You can demonstrate the security and compliance of your AWS infrastructure and services by downloading audit artifacts from AWS Artifact, and submitting them to your auditors or regulators.

AWS Certificate Manager

AWS Certificate Manager lets you provision, Manage, and Deploy SSL/TLS Certificates
AWS Certificate Manager is a service that lets you easily provision, manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services. SSL/TLS certificates are used to secure network communications and establish the identity of websites over the Internet.

AWS Cloud Directory

Fully-Managed, Cloud-Native Directory
AWS Cloud Directory enables you to build flexible cloud-native directories for organizing hierarchies of data along multiple dimensions. Amazon Cloud Directory automatically scales to hundreds of millions of objects and provides an extensible schema that can be shared with multiple applications.

AWS CloudHSM

Hardware-Based Key Storage for Regulatory Compliance
The AWS CloudHSM service helps you meet corporate, contractual and regulatory compliance requirements for data security by using dedicated Hardware Security Module (HSM) appliances within the AWS cloud.

AWS Directory Service

Host and Manage Active Directory
AWS Directory Service for Microsoft Active Directory (Enterprise Edition), also known as AWS Microsoft AD, enables your directory-aware workloads and AWS resources to use managed Active Directory in the AWS Cloud.

AWS Identity and Access Management (IAM)

For Managing User Access and Encryption Keys
AWS Identity and Access Management (IAM) is an access management service for your AWS cloud resources. AWS IAM enables you to securely control access to AWS services and resources for your users.

AWS Inspector

AWS Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically checks applications for vulnerabilities or deviations from best practices.

AWS Key Management Service (KMS)

AWS Key Management Service is a managed service that makes it easy for you to create and control the encryption keys used to encrypt your data, it uses Hardware Security Modules (HSMs) to protect the security of your keys.

AWS Organizations

AWS Organizations provides policy-based management for multiple AWS accounts. With Organizations, you can create groups of accounts and then apply policies to those groups. Organizations let you centrally manage policies across multiple accounts, without requiring custom scripts and manual processes.

AWS Shield

Managed DDoS Protection
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards web applications running on AWS. AWS Shield provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection.

AWS Web Application Firewall (WAF)

Web Application Firewall
AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF gives you control over which traffic to allow or block to your web applications by defining customizable web security rules.