AWS Security Blog

Category: Security, Identity, & Compliance*

Two Big Announcements from AWS Compliance: SOC 3 Report Now Available and All SOC Reports Include New Services and New Region in Scope

AWS is pleased to announce the immediate availability of the AWS Service Organization Control (SOC) 3 report, which you can freely distribute. This report on AWS security practices enables you and your stakeholders to validate that AWS has obtained independent auditor assurance, which attests to our alignment with the American Institute of Certified Public Accountants […]

Read More

Writing IAM Policies: How to Grant Access to an Amazon S3 Bucket

In this post, we’ll address a common question about how to write an AWS Identity and Access Management (IAM) policy to grant read-write access to an Amazon S3 bucket.  Doing so helps you control who can access your data stored in S3. You can grant either programmatic access or AWS Management Console access to S3 […]

Read More

Securing Access to AWS Using MFA–Part 1

In this series of blog posts, we’ll walk through different ways to keep your AWS resources secure using AWS Multi-Factor Authentication (MFA). As a best practice, we strongly recommend that you secure access to your account with AWS MFA.  It’s a simple way to add an extra layer of protection on top of your username […]

Read More

Welcome to the AWS Security Blog!

This blog will feature information for customers interested in AWS security and compliance.  You’ll see content from many AWS team members covering a range of topics, including: Security best practices for AWS services, including Amazon EC2, Amazon S3, AWS IAM, and others How-to guides Compliance milestones Customer and partner stories And more! To get future […]

Read More