AWS is thrilled to announce that the AWS Service Organization Control (SOC) 3 report is now available for immediate distribution. This document outlines AWS’s security practices and allows stakeholders to verify our compliance with the American Institute of Certified Public Accountants (AICPA) Security Trust Principles through independent auditor assurance.
Additionally, we are pleased to share that the following services are now included in all of our SOC reports:
- AWS’s Sydney, Australia region
- Amazon Elastic MapReduce (EMR)
- Amazon Redshift
- AWS Identity & Access Management (IAM)
This updated list of services and regions enhances our compliance program, enabling customers to leverage a broader array of AWS services for sensitive and regulated workloads.
Other AWS SOC Reports
In addition to the SOC 3 report, AWS also offers customers SOC 1 (Type 2) and SOC 2 (Type 2) reports. To help you determine which report is most relevant for your needs, we’ve provided brief descriptions below.
AWS SOC 1 (SSAE 16/ISAE 3402)
Leave a Reply