AWS successfully completed the re-certification audits with no findings. Ernst and Young Certify Point auditors issued the new certificates on November 6, 2019, marking the start of the new three-year cycle. We increased the number of ISO services in scope to 134 services in total that have been validated against ISO 9001, 27001, 27017, and 27018. We also added three new Regions to the scope, two of which (*) were compliant before the general launch:
- Middle East (Bahrain)*
- Asia Pacific (Hong Kong)
- EU (Milan)*
The certificates validate ISO compliance of our Information Security Management System from the perspective of third-party auditors.
The following services are new to our ISO program:
- CloudWatch SDK Metrics for Enterprise Support
- AWS CloudEndure
- Amazon Comprehend Medical
- AWS Control Tower
- Amazon Forecast
- AWS IoT Events
- Amazon Lex
- Amazon Managed Streaming for Kafka
- AWS Resource Groups
- Amazon WorkLink
- AWS Backup
- AWS RoboMaker
- AWS Security Hub
- AWS Transfer for SFTP
The list of ISO certified services is available on a webpage, and we provide the certifications online and in the console via AWS Artifact, as well.
Want more AWS Security how-to content, news, and feature announcements? Follow us on Twitter.
from AWS Security Blog: https://aws.amazon.com/blogs/security/2019-iso-certificates-are-here-with-a-12-percent-increase-of-in-scope-services/