Aws Shared Security Responsibility Model

Security and compliance is a shared responsibility between aws and the customer.

Aws shared security responsibility model.

Aws responsibilities as a data processor. The gdpr does introduce specific regulation and responsibilities regarding data controllers and processors. The eu s general data protection regulation gdpr describes data processor and data controller roles and some customers and aws partner network apn partners are asking how this affects the long established aws shared responsibility model. In aws s shared responsibility model is the concept that aws and the customer share responsibilities for security and compliance of amazon web services.

The aws shared responsibility model is designed to increase the total security level of amazon s cloud infrastructure. This concept known as the shared responsibility model of cloud security was created in order for it security teams to adapt to the adoption and proliferation of cloud services. By educating its customers on how they can manage and maintain strong operational protections both amazon and web services customers can feel better protected. This shared model can help relieve customer s operational burdens as aws operates manages and controls the components from the host operating system and virtualization layer down to the physical security of the facilities in which the service operates.

Once the customer starts using aws amazon shares the responsibility of securing the data in aws with its customers making aws security a shared responsibility. This allows aws to support the customer by taking on the burden of operations control associated with the physical infrastructure so the customer can focus on securing and producing within the context of software. Security and compliance is a shared responsibility between aws and the customer. The aws shared responsibility model dictates which security controls are aws s responsibility and which are yours.