Amazon-Web-Services-AWS-Logo-Transparent-PNG.png

Amazon Web Services, nominated by many as the king of Cloud, have consistently outperformed its competitors. While they were placed most favorably in Gartner’s magic quadrant, the king was not so royal when it came to security in the past years. This has changed, and AWS is now catching up with security aiming at being on the top with security. They have demonstrated that security is a top priority to them by complying with numerous local and international security standards, ensuring resiliency, understanding and promoting security architectures, and ensuring the security of tenant data. Not only are they ensuring securing in their infrastructure, but AWS is also increasingly offering security services to their tenants.

Due to Amazon S3 Service Disruption in the Northern Virginia (US-EAST-1) region, we have downgraded the rating from A to A-. This outage shows that AWS still has a few challenges around the fault-tolerant design of all the components of their infrastructure. It took around four hours to recover, indicating that their recovery capability could be improved.

AWS Information Security Rating Report - External

In the external rating report, you will find IISRI®’s opinion on how the cloud provider ensures tenants' privacy and Intellectual property rights. IISRI® discusses and analyses further if and how the cloud provider uses and provides encryption to protect the data of their tenants. As for physical security, IISRI® considers different environmental risks, like earthquakes and floods, especially since, in most cases, cloud providers disclaim any liability for force majeure events. IISRI® will also elaborate on the cloud provider’s capability to cope with outages and provide their tenant's different types of failover options within and outside their location. In this report, you will also find IISRI®’s analysis of human resource security and security compliance with the standards of the cloud provider. IISRI® also forms an opinion about the cloud provider’s capability to manage vulnerabilities and security incidents. The report also depicts IISRI®’s analysis of the cloud provider’s service levels to ensure the appropriate level of security to their tenants and otherwise compensations according to best practices. This and many other security aspects are discussed in this report. 

for a
copy of THE
AWS report, contact IISRI®

A-.png

Thanks for submitting!