We are excited to announce the expansion of our assurance programs with the inclusion of eight additional services under our Payment Card Industry Data Security Standard (PCI DSS) certification. This development enhances our customers’ capabilities to securely process and store payment card data, enabling them to architect their cardholder data environment (CDE) within Amazon Web Services (AWS) more effectively.
For a comprehensive list of services covered, please refer to the Services in Scope by Compliance Program. The newly added services include:
- Amazon Augmented AI (Amazon A2I) (excluding public workforce and vendor workforce)
- Amazon Kendra
- Amazon Keyspaces (for Apache Cassandra)
- Amazon Timestream
- AWS App Mesh
- AWS Cloud Map
- AWS Glue DataBrew
- AWS Ground Station
Additionally, the assessment of Private AWS Local Zones and AWS Wavelength sites was conducted as part of our fall 2020 PCI evaluation, enhancing our infrastructure offerings.
The evaluation was performed by Coalfire, a recognized third-party Qualified Security Assessor (QSA). The Attestation of Compliance (AOC) verifying AWS’s PCI compliance status is accessible through AWS Artifact. For further insights into our PCI program and other compliance and security initiatives, please visit AWS Compliance Programs. We highly value your feedback and inquiries. Feel free to reach out to our compliance team via the Contact Us page.
If you’re interested in more information, check out this blog post here. Additionally, for authoritative insights on the subject, you may find this resource helpful. For an excellent overview of how Amazon fulfillment centers train their associates, visit this page.
Leave a Reply