AWS Glue successfully assessed for all 14 controls in the EDM Council’s CDMC (Cloud Data Management Capabilities) framework
AWS Glue has successfully completed an external assessment that confirms that its reference architecture provides comprehensive controls for protecting sensitive data in the cloud. AWS is the first cloud service provider to have completed an internal and external assessment of the CDMC controls framework. A leading data and strategy consulting organization (the firm) assessed the AWS Glue blueprint against the Enterprise Data Management (EDM) Council’s Cloud Data Management Capabilities (CDMC) framework.
The CDMC Working Group is comprised of the EDM Council and industry participants. It developed the CDMC framework to establish “a comprehensive set of cloud data management capabilities, standards and best practices for cloud, multi-cloud and hybrid-cloud implementations, incorporating automated key controls for protecting sensitive data”. It encompasses “data governance and accountability, cataloguing and classification, data accessibility and usage, data protection and privacy, data lifecycle, and technical architecture”. The CDMC framework makes sure of a comprehensive set of 14 Controls (industry standard guidelines) for Financial Services organizations and other industries as they move their data into the Cloud. The 14 CDMC controls are as follows:
“It’s great news that AWS is the first Cloud Service Provider to have completed an external third-party assessment of one of its services (AWS Glue) aligning to the CDMC framework. This will surely help in accelerating adoption of cloud services for Financial Services customers.” said Aravind Jagannathan, Chief Data Officer at Freddie Mac.
The objective of the assessment was to analyze the AWS Glue blueprint’s alignment with CDMC control requirements by using the EDM Council’s guidance, as well as the firm’s evidence-based analytical approach and insights into industry leading practices.
To conduct this analysis, the firm’s team requested evidence from AWS to demonstrate the alignment of the AWS Glue blueprint with the 14 CDMC controls. This evidence consisted of internal documentation describing the methodology and results of AWS’s internal assessment of Glue against the CDMC framework; configurations, use cases, and processes used in AWS’s internal assessment to reproduce/validate the controls; relevant code and test script data; written documentation demonstrating alignment with controls; and clarification of any dependencies or other relevant information for the assessment. The AWS Glue blueprint architecture diagram is as follows:
The result of the analysis is that the AWS Glue blueprint aligns to the 14 controls in the CDMC framework. Some of the control capabilities are met natively with AWS Glue, and the comprehensive set of functionalities are enabled with orchestrated AWS services and open-source software as defined in the reference architecture.