AWS successfully completed the re-certification audits with no findings. Ernst and Young Certify Point auditors issued the new certificates on November 6, 2019, marking the start of the new three-year cycle. We increased the number of ISO services in scope to 134 services in total that have been validated against ISO 9001, 27001, 27017, and 27018. We also added three new Regions to the scope, two of which (*) were compliant before the general launch:

  • Middle East (Bahrain)*
  • Asia Pacific (Hong Kong)
  • EU (Milan)*

The certificates validate ISO compliance of our Information Security Management System from the perspective of third-party auditors.

The following services are new to our ISO program:

The list of ISO certified services is available on a webpage, and we provide the certifications online and in the console via AWS Artifact, as well.

Want more AWS Security how-to content, news, and feature announcements? Follow us on Twitter.

Author

Anastasia Strebkova

Anastasia is a Security Assurance Manager at Amazon Web Services on the Global Audits team, managing the AWS ISO portfolio. She has previously worked on IT audits, governance, risk, and information security program management for cloud enterprises. Anastasia holds a Bachelor of Arts degree in Civil Law from Moscow Law Academy.

from AWS Security Blog: https://aws.amazon.com/blogs/security/2019-iso-certificates-are-here-with-a-12-percent-increase-of-in-scope-services/