Enterprise Compliance Readiness Assessment

Enterprise Compliance Readiness Assessment The benefits and agility of Cloud Computing are undeniable and as enterprise IT organizations adopt and deploy, new challenges and opportunities in meeting compliance requirements are not far behind. AWS Professional Services is well positioned to assist in building compliance and security strategies to both maximize the benefits of the Cloud while ensuring compliance with internal and regulatory programs.

Benefits    

Determine compliance and security readiness of AWS deployments Select the right services and controls to meet compliance requirements such as those found in HIPAA, SOX and PCI Leverage AWS Security expertise, best practices, and partner experience Reduce complexity and increase business value of control and governance programs

Deliverables* 







Advance Activities (1-2 days) o Compliance initiative and scope review o IT policy and control management review o Business application and security architecture review Interactive discovery workshops (1-3 days) o Compliance within AWS overview o Compliance with AWS overview, a shared responsibility model o AWS Security control options for compliance o Identify architecture and service security options o Identify small wins, big wins, and high-level remediation tactics Introductory technical training on-site (3-5 days) o AWS Overview and Cloud Architectures o Systems Operations with AWS o AWS Security and Compliance Prepare assessment results (10-20 days) o Compliance risk and readiness report o Risk and control mapping & policy gap analysis o Business & technical value justification for identified remediation o Recommended approach for improvement:  Technical and administrative control progressions  Remediation project estimates and outline  Analysis of implementation, testing and operations partners as appropriate

Target Audience Key business stakeholders, CISOs, IT Directors, Enterprise Architects, Security, Compliance and Audit operations Staff and Managers. Optionally, may include trusted System Integration partners and Software Vendors.

Roles and Responsibilities  

AWS Professional Services: Leads discovery workshop, planning & deliverables Customer Project Manager: Coordinates customer contributors and logistics To learn more, contact your Amazon Web Services Account Manager

* Number of days is estimated, and may vary by environment size and other organization-specific details. May 13, 2013

Key Activities Kickoff Call Preliminary Compliance Scope and Organizational Review Interactive Discovery Workshop Shared Responsibility Training AWS Compliance Risk and Security Assessment Presentation of Results Determine Next Steps

Requirements Key Customer Stakeholders: Business Applications IT Services & Support Security and Compliance Risk Management

Related Packages Security and Compliance Workshop Security Architecture Assessment Cloud Governance Consultation Security Strategy and Playbook