Skip to main content

AWS Cloud Security

The Center for Financial Industry Information Systems

(FISC)

Overview

"FISC Security Guidelines and Commentary on Computer Systems for Financial Institutions" (FISC Security Guidelines), established in December 1985 by The Center for Financial Industry Information Systems (FISC) as voluntary standards for financial institutions, are widely used by many financial institutions as guidelines for system architecture and operations. FISC Security Guidelines are also recognized and utilized as one of the industry standards in Japanese financial institutions, as they are referenced in the Financial Services Agency's supervision guidelines as reference documents for major banks and small/regional financial institutions when considering system risks and security measures.

Information from AWS regarding FISC Security Guidelines

Information about AWS regarding FISC Security Guidelines can be accessed through the following links:

For information about AWS's third-party certifications, accreditations, various compliance programs, and AWS's response to security requirements such as the Cloud Security Alliance (CSA) Consensus Assessments Initiative Questionnaire (CAIQ), please refer to Amazon Web Services: Risk and Compliance White Paper.

Information from AWS Partners regarding FISC Security Guidelines

FISC Security Guideline present security management measures from four perspectives: control, operations, facilities, and audits. When customers use AWS environments, they need to implement measures and verify requirements based on the shared responsibility model, clearly defining the scope of responsibilities between AWS and customers. The following AWS partner companies' websites provide information and reference materials regarding verification items and measures organized according to the shared responsibility model. For information about AWS's partner programs, please refer to AWS Partner Network.

AWS Security Reference Materials for Financial Institutions