Posted On: May 20, 2019

You can now use AWS Secrets Manager to manage secrets for applications that are subject to System and Organizational Controls (SOC) compliance requirements. This is in addition to compliance with U.S. Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI DSS), and International Organization for Standardization (ISO) requirements announced in 2018.

AWS Secrets Manager enables you to retrieve and manage secrets such as database credentials and API keys throughout their lifecycle. AWS Secrets Manager also makes it easier to follow the security best practice of using short-term secrets by rotating secrets safely on a schedule that you determine. For example, you can configure Secrets Manager to rotate a database credential daily, turning a typical, long-term secret in to a short-term secret that is rotated automatically. To learn more about Secrets Manager, visit the documentation or read our blogs on how to Store, Distribute, and Rotate Credentials Securely and Rotate Amazon RDS database credentials automatically with Secrets Manager. To get started, visit the Secrets Manager home page.

Security, including SOC compliance, is a shared responsibility between AWS and you. To learn more about the actions you may need to take to meet SOC compliance requirements, see the AWS Cloud Compliance and AWS SOC Compliance webpages. For a comprehensive list of access-controlled documents relevant to compliance and security in the AWS Cloud, see AWS Artifact.