Twitter

cloud security compliance

Amazon Web Service Logo

The AWS Compliance Program helps customers to understand the robust controls in place at AWS to maintain security and compliance in the cloud. By tying together governance-focused, audit-friendly service features with applicable compliance or audit standards, AWS Compliance Enablers build on traditional programs, helping customers to establish and operate in an AWS security control environment.

IT standards we comply with are broken out by Certifications and Attestations; Laws, Regulations and Privacy; and Alignments and Frameworks. Compliance certifications and attestations are assessed by a third-party, independent auditor and result in a certification, audit report, or attestation of compliance. AWS customers remain responsible for complying with applicable compliance laws, regulations and privacy programs. Compliance alignments and frameworks include published security or compliance requirements for a specific purpose, such as a specific industry or function.

Cloud Security Alliance Controls

CSA

Cloud Security Alliance Controls

International Organization for Standardization: 9001

ISO 9001

Global Quality Standard

International Organization for Standardization: 27001

ISO 27001

Security Management Controls

International Organization for Standardization: 27017

ISO 27017

Cloud Specific Controls

International Organization for Standardization: 27018

ISO 27018

Personal Data Protection

PCI Security Standards Council

pci dss level 1

Payment Card Standard

SOC 1

soc 1

Audit Controls Report

SOC 2

soc 2

Security, Availability, & Confidentiality Report

SOC 3

soc 3

General Controls Report

Criminal Justice Information Systems

cjis

Criminal Justice Information Services

Department of Defense

DoD SRG

Department of Defense Data Processing

fedRAMP

FedRAMP

Government Data Standards

Department of Education

ferpa

Educational Privacy Act

FIPS Cryptography

fips

Government Security Standards

FISMA

fisma

Federal Information Security Management

GxP

GxP

Quality Guidelines and Regulations

HIPAA

hipaa

Protected Health Information

Health Information Trust Alliance Common Security Framework

hitrust csf

Health Information Trust Alliance Common Security Framework

Internation Arms Regulations

ITAR

International Arms Regulations

Protected Media Content

MPAA

Protected Media Content

National Institute of Standards and Technology

NIST

National Institute of Standards and Technology

Canada's Federal Private Sector Privacy Legislation

pipeda

Canada’s Federal Private Sector Privacy Legislation

SEC Rule 17a-4(f)

SEC Rule 17a- 4(f)

Financial Data Standards

VPAT/Section 508

VPAT / Section 508

Accessibility Standards

The ROOK Team Works With Businesses
Developing Strategic Big Data Analytic Systems
That Drive Efficiencies & Deliver Predictive Analysis!

Contact Us!

ROOK IS CONNECTED

ROOK Connect Application Program Interface (API) and File Transfer Protocol (FTP) systems allow our software to seamlessly connect with others. With integrations, partners, API's, FTP's, tunnels and import/export features, there's a variety of ways that ROOK Connect can support your business interfacing with third parties.

Show All
Refer A Friend
COVID-19 Update
COVID-19