AWS Cloud Operations Blog
Tag: AWS Audit Manager
Introducing AWS Audit Manager Common Controls Library
AWS Audit Manager introduced the AWS common controls library to help Governance, Risk and Compliance (GRC) teams efficiently map their enterprise controls into Audit Manager for evidence collection. The common controls library provides customers with a simpler way to collect evidence that supports overlapping controls across multiple compliance standards, streamlining the evidence collection process, reducing […]
AWS Audit Manager launches AWS Best Practices Framework for Generative AI
The rapid growth of generative AI brings promising new innovation, and at the same time raises new challenges. At AWS, we are committed to developing AI responsibly while enabling customers to provide assurance regarding the security of their environment to regulators and auditors. AWS Audit Manager announces the first version of AWS best practices framework for generative AI […]
Improving Mergers & Acquisitions Due Diligence with AWS Audit Manager
The purpose of this narrative is to provide guidance for Mergers & Acquisitions (M&A) Due Diligence stakeholders on how to leverage AWS Audit Manager to support compliance and risk assessments during technical due diligence. The target audience of this guidance includes practitioners that support diligence, integration, corporate development (CorpDev), technology/IT, auditing, and advisory activities during […]
Automated Evidence Collection for Life Sciences continuous compliance solutions using AWS Audit Manager
In the first post of this two-part series, we highlighted how Life Sciences customers can implement a controlled change management process using AWS Systems Manager Change Manager and AWS Config. The solution in our first post, highlighted how a you can follow your Standard Operating Procedures (SOP’s) by implementing approval steps in order to make […]
Automating organizational policies with custom AWS Config Rules and evidence collection in AWS Audit Manager
AWS Config is a service that allows you to evaluate your AWS resources against a desired configuration state using AWS Config Rules. Two types of rules exist, managed rules which are meant to be used out-of-the-box and custom rules for which you define your desired configuration state via code. AWS Audit Manager can help you […]
Generate User Access Privilege Reports with AWS Audit Manager
Customers adhere to compliance programs and certifications mandated by their business and industry regulations. A key component of achieving compliance is producing a user privilege and access report for their cloud infrastructure. Auditors use user privilege and access report to ensure permissions are locked down at a granular level. Access control mechanisms are imposed at […]
Audit Manager support for HIPAA Omnibus
The security of Protected Health Information (PHI) is at the center of the data universe for healthcare organizations. AWS Audit Manager helps healthcare companies manage their regulatory requirements with the Health Insurance Portability and Accountability Act (HIPAA) healthcare standard, gathering evidence using automation to support their compliance and audit needs. The current HIPAA pre-built framework […]
Enhance Evidence Collection with AWS Config and Audit Manager
AWS Audit Manager is a fully-managed service that provides prebuilt frameworks for common industry standards and regulations, and that automates the continual collection of evidence to help you prepare for an audit. The continuous and automated gathering of evidence related to your AWS resource usage helps simplify risk assessment and compliance with regulations and industry […]
Announcing evidence finder for AWS Audit Manager
Today, we’re excited to announce a new search feature that allows customers to perform targeted searches by multiple criteria, group the results and send the data to an assessment report. Customers can more easily find the evidence they need and, organize it without the need to add it to a report. Customers can then generate their […]
Prepare for an Audit in AWS Part 2 – General Best Practices
In Part 1 of this blog series, I discussed how you can use purpose-built services, such as AWS Audit Manager, AWS Config, and AWS Artifact, to help with almost any audit that you may be preparing for, with features geared specifically to what is required by an audit. But the story shouldn’t start there. Instead, […]