AWS Compliance Support
AWS provides services and features that help customers audit, monitor, control, and report on security controls to achieve compliance. AWS Audit Manager helps map compliance requirements to AWS usage data. It collects evidence of compliance or noncompliance and generates assessment reports for auditors. You can create custom frameworks or use built-in ones (e.g., generative AI best practices, SOC 2) for assessments.
AWS Audit Manager
When you create an assessment, Audit Manager evaluates resources in AWS accounts based on the defined controls, collects evidence, and organizes it in an auditor-friendly format. You can review the evidence and add it to your report when it’s time for an audit, showing that your controls are working.
Guardrails for Amazon Bedrock
Guardrails allow you to set up safeguards for your applications using Amazon Bedrock. It filters harmful content such as hate speech, insults, and violence. You can configure thresholds for different categories and define topics to avoid. For example, you can block topics like investment advice and provide custom responses when a topic or response is blocked.
AWS Config for Compliance
AWS Config monitors resource configurations. When changes occur, it records them and evaluates them against rules. Noncompliant changes can be automatically remediated. Conformance packs bundle AWS Config rules and remediation actions, helping to meet compliance needs with prebuilt or custom rules.
Amazon Inspector
Amazon Inspector evaluates applications and containers for security vulnerabilities. It checks for issues like open EC2 access and vulnerable software versions. After assessments, it lists findings, prioritizes issues, and provides recommendations for fixes.
AWS Trusted Advisor
AWS Trusted Advisor helps optimize costs, security, performance, and resilience. It performs best practice checks across various categories and offers remediation suggestions to improve your AWS environment.
