We include services in the scope of our compliance efforts based on the expected use case, feedback and demand. If a service is not currently listed as in scope of the most recent assessment, it does not mean that you cannot use the service. It is part of the shared responsibility for your organization to determine the nature of the data. Based on the nature of what you are building on AWS, you should determine if the service will process or store customer data and how it will or will not impact the compliance of your customer data environment.

We encourage you to discuss your workload objectives and goals with your AWS account team; they will be able to evaluate your proposed use case and architecture, and how our security and compliance processes overlay that architecture. Need to connect with an AWS business representative?

This webpage provides a list of AWS Services in Scope of AWS assurance programs. Unless specifically excluded, features of each of the services are considered in scope of the assurance programs, and are reviewed and tested as part of the assessment. Refer to the AWS Documentation for the features of an AWS service

Third-Party Assessment Organization (3PAO) Assessment = This service is currently undergoing an assessment by our third-party assessor

Joint Authorization Board (JAB) Review = This service is currently undergoing a JAB review

Undergoing Assessment = For DoD stakeholders only, this includes both 3PAO Assessment and JAB Review for relevant FedRAMP services

Defense Information Systems Agency (DISA) Review = This service is currently undergoing a DISA review

✓ = This service is currently in scope and is reflected in current reports

SOC

SERVICES / PROGRAMS	SDKs	SOC 1,2,3
Amazon API Gateway [referenced in the SOC report as API Gateway]	apigateway	✓
Amazon AppStream 2.0	appstream	✓
Amazon Athena	athena	✓
Amazon Cloud Directory	clouddirectory	✓
Amazon CloudFront	cloudfront	✓
Amazon CloudWatch [includes Amazon EventBridge]	cloudwatch, events, logs, sdkmetrics	✓
Amazon Cognito	cognito-idp, cognito-identity, cognito-sync	✓
Amazon Comprehend	comprehend	✓
Amazon Comprehend Medical	comprehendmedical	✓
Amazon Connect	connect	✓
Amazon DocumentDB (with MongoDB compatibility)		✓
Amazon DynamoDB	dynamodb	✓
Amazon Elastic Block Store (Amazon EBS)	ec2	✓
Amazon Elastic Compute Cloud (Amazon EC2)	ec2	✓
Amazon Elastic Container Registry (Amazon ECR)	ecr	✓
Amazon Elastic Container Service [includes AWS Fargate and Amazon EC2 launch types]	ecs	✓
Amazon Elastic Container Service for Kubernetes (Amazon EKS)	eks	✓
Amazon Elastic File System (Amazon EFS)	elasticfilesystem	✓
Amazon ElastiCache for Redis [referenced in the SOC report as Amazon ElastiCache]	elasticache	✓
Amazon Elasticsearch Service	es	✓
Amazon EMR	elasticmapreduce	✓
Amazon Forecast	amazonforecast	✓
Amazon FreeRTOS	freertos	✓
Amazon FSx	fsx	✓
Amazon GuardDuty [referenced in the SOC report as AWS GuardDuty]	guardduty	✓
Amazon Inspector	inspector	✓
Amazon Kinesis Data Analytics	kinesisanalytics	✓
Amazon Kinesis Data Firehose	firehose	✓
Amazon Kinesis Data Streams	kinesis	✓
Amazon Kinesis Video Streams	kinesisvideo	✓
Amazon Lex	runtime.lex, models.lex	✓
Amazon Macie	macie	✓
Amazon Managed Streaming for Kafka (Amazon MSK)	kafka	✓
Amazon MQ	mq	✓
Amazon Neptune	neptune-db	✓
Amazon Personalize	personalize	✓
Amazon Pinpoint	mobiletargeting	✓
Amazon Polly	polly	✓
Amazon QuickSight	quicksight	✓
Amazon Redshift	redshift	✓
Amazon Rekognition	rekognition	✓
Amazon Relational Database Service (Amazon RDS) [includes Amazon Aurora]	rds	✓
Amazon Route 53	route53	✓
Amazon S3 Glacier [referenced in the SOC report as Amazon Glacier]	glacier	✓
Amazon SageMaker	sagemaker	✓
Amazon SimpleDB	sdb	✓
Amazon Simple Email Service (Amazon SES)	ses	✓
Amazon Simple Notification Service (Amazon SNS)	sns	✓
Amazon Simple Queue Service (Amazon SQS)	sqs	✓
Amazon Simple Storage Service (Amazon S3)	s3	✓
Amazon Simple Workflow Service (Amazon SWF)	swf	✓
Amazon Transcribe	transcribe	✓
Amazon Translate	translate	✓
Amazon Virtual Private Cloud (Amazon VPC)	ec2	✓
Amazon WorkDocs	workdocs	✓
Amazon WorkLink	worklink	✓
Amazon WorkMail	workmail	✓
Amazon WorkSpaces	workspaces	✓
AWS Amplify Console	amplify	✓
AWS AppSync	appsync	✓
AWS Auto Scaling	autoscaling	✓
AWS Backup	backup	✓
AWS Batch	batch	✓
AWS Certificate Manager (ACM)	acm	✓
AWS CloudFormation	cloudformation	✓
AWS CloudHSM	cloudhsm	✓
AWS CloudTrail	cloudtrail	✓
AWS CodeBuild	codebuild	✓
AWS CodeCommit	codecommit	✓
AWS CodeDeploy	codedeploy	✓
AWS CodePipeline	codepipeline	✓
AWS Config	config	✓
AWS Control Tower	controltower	✓
AWS Database Migration Service (AWS DMS)	dms	✓
AWS DataSync	datasync	✓
AWS Direct Connect	directconnect	✓
AWS Directory Service [excludes Simple Active Directory]	ds	✓
AWS Elastic Beanstalk	elasticbeanstalk	✓
AWS Elemental MediaConnect	mediaconnect	✓
AWS Firewall Manager	fms	✓
AWS Global Accelerator	globalaccelerator	✓
AWS Glue (including AWS Lake Formation)	glue	✓
AWS Identity and Access Management (IAM)	iam	✓
AWS IoT Core	iot	✓
AWS IoT Device Management	iot	✓
AWS IoT Events	iotevents	✓
AWS IoT Greengrass	greengrass	✓
AWS Key Management Service (AWS KMS)	kms	✓
AWS Lambda	lambda	✓
AWS License Manager	license-manager	✓
AWS Managed Services		✓
AWS OpsWorks	opsworks	✓
AWS OpsWorks for Chef Automate or AWS OpsWorks for Puppet Enterprise	opsworks-cm	✓
AWS Organizations	organizations	✓
AWS Resource Groups	resource-groups	✓
AWS RoboMaker	robomaker	✓
AWS Secrets Manager	secretsmanager	✓
AWS Security Hub	securityhub	✓
AWS Server Migration Service (AWS SMS)	sms	✓
AWS Serverless Application Repository	serverlessrepo	✓
AWS Service Catalog	servicecatalog	✓
AWS Shield	shield, DDoSProtection	✓
AWS Snowball	snowball	✓
AWS Snowball Edge		✓
AWS Snowmobile		✓
AWS Step Functions	states	✓
AWS Storage Gateway	storagegateway	✓
AWS Systems Manager	ssm	✓
AWS Transfer for SFTP	transfer	✓
AWS WAF	waf	✓
AWS X-Ray	xray	✓
Elastic Load Balancing	elasticloadbalancing	✓
VM Import/Export		✓

PCI

SERVICES / PROGRAMS	SDKs	PCI
Amazon API Gateway	apigateway	✓
Amazon AppStream 2.0	appstream	✓
Amazon Athena	athena	✓
Amazon Cloud Directory	clouddirectory	✓
Amazon CloudFront	cloudfront	✓
Amazon CloudWatch	cloudwatch	✓
Amazon CloudWatch Events [includes Amazon EventBridge]	events	✓
Amazon CloudWatch Logs	logs	✓
Amazon Cognito	cognito-idp, cognito-identity, cognito-sync	✓
Amazon Comprehend	comprehend	✓
Amazon Comprehend Medical	comprehendmedical	✓
Amazon Connect	connect	✓
Amazon DocumentDB (with MongoDB compatibility)		✓
Amazon DynamoDB	dynamodb	✓
Amazon ElastiCache for Redis	elasticache	✓
Amazon Elastic Block Store (EBS)	ec2	✓
Amazon Elastic Compute Cloud (EC2)	ec2	✓
Amazon Elastic Container Registry (ECR)	ecr	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	ecs	✓
Amazon Elastic Container Service for Kubernetes (EKS)	eks	✓
Amazon Elastic File System (EFS)	elasticfilesystem	✓
Amazon Elasticsearch Service	es	✓
Amazon Elastic MapReduce	elasticmapreduce	✓
Amazon Forecast		✓
Amazon FreeRTOS	freertos	✓
Amazon FSx	fsx	✓
Amazon GuardDuty	guardduty	✓
Amazon Inspector	inspector	✓
Amazon Kinesis Data Analytics	kinesisanalytics	✓
Amazon Kinesis Data Firehose	firehose	✓
Amazon Kinesis Data Streams	kinesis	✓
Amazon Kinesis Video Streams	kinesisvideo	✓
Amazon Lex	lex	✓
Amazon Macie	macie	✓
Amazon Managed Streaming for Apache Kafka (MSK)	kafka	✓
Amazon MQ	mq	✓
Amazon Neptune	neptune-db	✓
Amazon Personalize	personalize	✓
Amazon Polly	polly	✓
Amazon Quicksight	quicksight	✓
Amazon Redshift	redshift	✓
Amazon Rekognition	rekognition	✓
Amazon Relational Database Service (RDS) [includes Amazon Aurora]	rds	✓
Amazon Route 53	route53	✓
Amazon S3 Glacier	glacier	✓
Amazon S3 Transfer Acceleration	s3transferacceleration	✓
Amazon SageMaker	sagemaker	✓
Amazon SimpleDB	sbd	✓
Amazon Simple Notification Service (SNS)	sns	✓
Amazon Simple Queue Service (SQS)	sqs	✓
Amazon Simple Storage Service (S3)	s3	✓
Amazon Simple Workflow Service (SWF)	swf	✓
Amazon Textract	textract	✓
Amazon Transcribe	transcribe	✓
Amazon Translate	translate	✓
Amazon Virtual Private Cloud (VPC)	ec2	✓
Amazon WorkDocs	workdocs	✓
Amazon WorkLink	worklink	✓
Amazon WorkSpaces	workspaces	✓
AWS Amplify Console	amplify	✓
AWS AppSync	appsync	✓
AWS Auto Scaling	autoscaling	✓
AWS Backup	backup	✓
AWS Batch	batch	✓
AWS Certificate Manager (ACM)	acm	✓
AWS CloudFormation	cloudformation	✓
AWS CloudHSM	cloudhsm	✓
AWS CloudTrail	cloudtrail	✓
AWS CodeBuild	codebuild	✓
AWS CodeCommit	codecommit	✓
AWS CodeDeploy	codedeploy	✓
AWS CodePipeline	codepipeline	✓
AWS Control Tower		✓
AWS Config	config	✓
AWS Database Migration Service	dms	✓
AWS DataSync	datasync	✓
AWS Data Exchange	dataexchange	✓
AWS Direct Connect	directconnect	✓
AWS Directory Service for Microsoft AD and AD Connector	ds	✓
AWS Elastic Beanstalk	elasticbeanstalk	✓
AWS Elemental MediaConnect	mediaconnect	✓
AWS Elemental MediaConvert	mediaconvert	✓
AWS Elemental MediaLive	medialive	✓
AWS Firewall Manager	fms	✓
AWS Global Accelerator	globalaccelerator	✓
AWS Glue (including AWS Lake Formation)	glue	✓
AWS Identity & Access Management (IAM)	iam	✓
AWS IoT [includes Core and Device Management]	iot	✓
AWS IoT Events	iotcolumbodata, iotcolumbo	✓
AWS IoT Greengrass	greengrass	✓
AWS Key Management Service	kms	✓
AWS Lambda	lambda	✓
AWS Lambda@Edge	lambdaedge	✓
AWS Managed Services		✓
AWS OpsWorks CM [includes Chef Automate, Puppet Enterprise]	opsworks-cm	✓
AWS OpsWorks Stacks	opsworks	✓
AWS Organizations	organizations	✓
AWS Personal Health Dashboard	phd-console	✓
AWS Resource Groups	resource-groups	✓
AWS RoboMaker	robomaker	✓
AWS SDK Metrics		✓
AWS Secrets Manager	secretsmanager	✓
AWS Security Hub		✓
AWS Server Migration Service (SMS)	sms	✓
AWS Serverless Application Repository	serverlessrepo	✓
AWS Service Catalog	servicecatalog	✓
AWS Shield	shield, DDoSProtection	✓
AWS Snowball	snowball	✓
AWS Snowball Edge	snowballedge	✓
AWS Snowmobile	snowmobile	✓
AWS Step Functions	states	✓
AWS Storage Gateway	storagegateway	✓
AWS Systems Manager	ssm	✓
AWS Transfer for SFTP	transfer	✓
AWS WAF	waf	✓
AWS X-Ray	xray	✓
Elastic Load Balancing	elasticloadbalancing	✓
VM Import/Export		✓

ISO

Go to the full list of services covered under our ISO certificates.

FedRAMP

SERVICES / PROGRAMS	FedRAMP Moderate (East/West)	FedRAMP High (GovCloud)	FedRAMP (Not in Scope)*
Amazon API Gateway	✓	✓
Amazon AppStream 2.0	3PAO Assessment	3PAO Assessment
Amazon Athena	✓	✓
Amazon Aurora (MySQL)	✓	✓
Amazon Aurora (Postgres)	✓	✓
Amazon Cloud Directory	✓	✓
Amazon CloudFront	✓
Amazon CloudWatch	✓	✓
Amazon CloudWatch Events	✓	✓
Amazon CloudWatch Logs	✓	✓
Amazon Cognito	✓
Amazon Comprehend	✓	✓
Amazon Connect	3PAO Assessment
Amazon DynamoDB	✓	✓
Amazon EC2 Auto Scaling	✓	✓
Amazon Elastic Block Store (EBS)	✓	✓
Amazon Elastic Compute Cloud (EC2)	✓	✓
Amazon Elastic Container Registry (ECR)	✓	✓
Amazon Elastic Container Service (ECS)	✓	✓
Amazon Elastic File System (EFS)	✓	✓
Amazon Elastic Kubernetes Service	3PAO Assessment
Amazon Elastic MapReduce	✓	✓
Amazon ElastiCache	✓	✓
Amazon Elasticsearch Service	✓	✓
Amazon Glacier	✓	✓
Amazon GuardDuty	✓	✓
Amazon Inspector	✓	✓
Amazon Kinesis Data Firehose	✓	✓
Amazon Kinesis Data Streams	✓	✓
Amazon Macie	✓
Amazon MQ	3PAO Assessment
Amazon Pinpoint	3PAO Assessment
Amazon Polly	✓	✓
Amazon QuickSight	✓
Amazon RDS (MariaDB)	✓	✓
Amazon RDS (MySQL)	✓	✓
Amazon RDS (Oracle)	✓	✓
Amazon RDS (Postgres)	✓	✓
Amazon RDS (SQL Server)	✓	✓
Amazon Redshift	✓	✓
Amazon Rekognition	✓	✓
Amazon Route 53	✓	✓
Amazon SageMaker	JAB Review	JAB Review
Amazon Simple Email Service (SES)	3PAO Assessment
Amazon Simple Notification Service (SNS)	✓	✓
Amazon Simple Queue Service (SQS)	✓	✓
Amazon Simple Storage Service (S3)	✓	✓
Amazon Simple Workflow Service (SWF)	✓	✓
Amazon Transcribe	✓	✓
Amazon Translate	✓	✓
Amazon Virtual Private Cloud (VPC)	✓	✓
Amazon WorkDocs	✓
Amazon WorkSpaces	✓	✓
AWS Batch	✓
AWS Certificate Manager			✓
AWS CloudFormation	✓	✓
AWS CloudTrail	✓	✓
AWS CodeBuild	✓	✓
AWS CodeCommit	✓	✓
AWS CodeDeploy	✓	✓
AWS Config	✓	✓
AWS Database Migration Service	✓	✓
AWS DataSync	✓	✓
AWS Direct Connect	✓	✓
AWS Directory Service	✓	✓
AWS Elastic Beanstalk	✓	✓
AWS Elemental MediaConvert	JAB Review	JAB Review
AWS Glue	✓	✓
AWS Identity & Access Management (IAM)	✓	✓
AWS IoT Core	✓	✓
AWS IoT Device Management	✓	✓
AWS IoT Greengrass	✓	✓
AWS Key Management Service (KMS)	✓	✓
AWS Lambda	✓	✓
AWS License Manager	✓	✓
AWS Managed Services	✓
AWS Organizations	✓	✓
AWS Secrets Manager	JAB Review	JAB Review
AWS Server Migration Service (SMS)	✓	✓
AWS Serverless Application Repository	JAB Review	JAB Review
AWS Service Catalog	✓	✓
AWS Shield Advanced	✓
AWS Snowball	✓	✓
AWS Snowball Edge	✓	✓
AWS Snowmobile	3PAO Assessment	3PAO Assessment
AWS Step Functions	✓	✓
AWS Systems Manager	✓	✓
AWS Trusted Advisor	✓	✓
AWS WAF	✓	✓
Elastic Load Balancing	✓	✓

*Services not within the scope of JAB review. As such, the JAB team has issued neither an approval nor disapproval decision regarding this product under FedRAMP. Customers are able to leverage this service by working with their AWS Sales Representative directly to seek independent agency approval.

DoD CC SRG

SERVICES / PROGRAMS	DoD CC SRG IL2 (East/West)	DoD CC SRG IL2 (GovCloud)	DoD CC SRG IL4 (GovCloud)	DoD CC SRG IL5 (GovCloud)
Amazon API Gateway	✓	✓	✓	✓
Amazon AppStream 2.0	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
Amazon Athena	✓	✓	DISA Review	DISA Review
Amazon Aurora (MySQL)	✓	✓	DISA Review	DISA Review
Amazon Aurora (PostgreSQL)	✓	✓	DISA Review	DISA Review
Amazon Cloud Directory	Undergoing Assessment	✓	Undergoing Assessment	Undergoing Assessment
Amazon CloudFront	✓
Amazon CloudWatch	✓	✓	✓	✓
Amazon CloudWatch Events	✓	✓	✓	✓
Amazon CloudWatch Logs	✓	✓	✓	✓
Amazon Comprehend	✓	✓	Undergoing Assessment	Undergoing Assessment
Amazon Connect	Undergoing Assessment
Amazon DynamoDB	✓	✓	✓	✓
Amazon EC2 Auto Scaling	✓	✓	✓	✓
Amazon Elastic Block Store (EBS)	✓	✓	✓	✓
Amazon Elastic Compute Cloud (EC2) [includes all instance types]	✓	✓	✓	✓
Amazon Elastic Container Registry	✓	✓	✓	✓
Amazon Elastic Container Service	✓	✓	✓	✓
Amazon Elastic File System	✓	✓	✓	✓
Amazon Elastic Kubernetes Service	Undergoing Assessment
Amazon Elastic MapReduce	✓	✓	✓	✓
Amazon ElastiCache	✓	✓	✓	✓
Amazon Elasticsearch Service	✓	✓	✓	✓
Amazon GuardDuty	✓	✓	DISA Review	DISA Review
Amazon Inspector	✓	✓	✓	✓
Amazon Kinesis Data Firehose	✓	✓	Undergoing Assessment	Undergoing Assessment
Amazon Kinesis Data Streams	✓	✓	✓	✓
Amazon MQ	Undergoing Assessment
Amazon Pinpoint	Undergoing Assessment
Amazon Polly	✓	✓	✓	✓
Amazon Redshift	✓	✓	✓	✓
Amazon Rekognition	✓	✓	DISA Review	DISA Review
Amazon Relational Database Service (RDS) for MariaDB	✓	✓	✓	Undergoing Assessment
Amazon Relational Database Service (RDS) for MySQL	✓	✓	✓	✓
Amazon Relational Database Service (RDS) for Oracle	✓	✓	✓	✓
Amazon Relational Database Service (RDS) for PostgreSQL	✓	✓	✓	✓
Amazon Relational Database Service (RDS) for SQL Server	✓	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
Amazon Route 53	Undergoing Assessment	✓	Undergoing Assessment	Undergoing Assessment
Amazon S3 Glacier	✓	✓	✓	✓
Amazon SageMaker	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
Amazon Simple Email Service (SES)	Undergoing Assessment
Amazon Simple Notification Service (SNS)	✓	✓	✓	✓
Amazon Simple Queue Service (SQS)	✓	✓	✓	✓
Amazon Simple Storage Service (S3)	✓	✓	✓	✓
Amazon Simple Workflow Service (SWF)	✓	✓	✓	✓
Amazon Transcribe	✓	✓	Undergoing Assessment	Undergoing Assessment
Amazon Translate	✓	✓	Undergoing Assessment	Undergoing Assessment
Amazon Virtual Private Cloud (VPC)	✓	✓	✓	✓
Amazon WorkDocs	✓
Amazon WorkSpaces	✓	✓	DISA Review	DISA Review
AWS Batch	✓	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
AWS Certificate Manager	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
AWS CloudFormation	✓	✓	✓	✓
AWS CloudHSM	✓	✓	✓	✓
AWS CloudTrail	✓	✓	✓	✓
AWS CodeBuild	✓	✓	Undergoing Assessment	Undergoing Assessment
AWS CodeCommit	✓	✓	Undergoing Assessment	Undergoing Assessment
AWS CodeDeploy	✓	✓	✓	✓
AWS Config		✓	✓	✓
AWS Database Migration Service (DMS)	✓	✓	✓	✓
AWS DataSync	✓	✓	Undergoing Assessment	Undergoing Assessment
AWS Deep Learning AMIs	Undergoing Assessment
AWS Direct Connect	✓	✓	DISA Review	DISA Review
AWS Directory Service	✓	✓	DISA Review	DISA Review
AWS Elastic Beanstalk	✓	✓	✓	✓
AWS Elemental MediaConvert	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
AWS Glue	✓	✓	DISA Review	DISA Review
AWS Identity and Access Management (IAM)	✓	✓	✓	✓
AWS IoT Core	✓	✓	DISA Review	DISA Review
AWS IoT Device Management	✓	✓	DISA Review	DISA Review
AWS IoT Greengrass	✓	✓	Undergoing Assessment	Undergoing Assessment
AWS Key Management Service	✓	✓	✓	✓
AWS Lambda	✓	✓	✓	✓
AWS License Manager	✓	✓	Undergoing Assessment	Undergoing Assessment
AWS Managed Services	✓
AWS Organizations	✓	✓	Undergoing Assessment	Undergoing Assessment
AWS Secrets Manager	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
AWS Server Migration Service	✓	✓	DISA Review	DISA Review
AWS Serverless App Respository	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
AWS Service Catalog	✓	✓	Undergoing Assessment	Undergoing Assessment
AWS Snowball	✓	✓	✓	✓
AWS Snowball Edge	✓	✓	✓	✓
AWS Snowmobile	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment
AWS Step Functions	✓	✓	✓	✓
AWS Systems Manager	✓	✓	DISA Review	DISA Review
AWS Trusted Advisor	✓	✓	Undergoing Assessment	Undergoing Assessment
AWS Web Application Firewall (WAF)	Undergoing Assessment	✓	Undergoing Assessment	Undergoing Assessment
Elastic Load Balancing	✓	✓	✓	✓
VM Import/Export	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment	Undergoing Assessment

DISA Review

✓

DISA Review

✓

DISA Review

✓

DISA Review

HIPAA BAA

SERVICES / PROGRAMS	HIPAA BAA
Alexa for Business (for healthcare skills only – requires Alexa Skills BAA. See HIPAA whitepaper for details)	✓
Amazon Athena	✓
Amazon API Gateway	✓
Amazon AppStream 2.0	✓
Amazon Aurora (MySQL,PostgreSQL)	✓
Amazon Chime	✓
Amazon CloudFront [including AWS Lamba@Edge]	✓
Amazon CloudWatch	✓
Amazon CloudWatch Events [including Amazon EventBridge]	✓
Amazon CloudWatch Logs	✓
Amazon CloudWatch SDK Metrics	✓
Amazon Cognito	✓
Amazon Comprehend	✓
Amazon Comprehend Medical	✓
Amazon Connect	✓
Amazon DocumentDB (with MongoDB compatibility)	✓
Amazon DynamoDB	✓
Amazon Elasticsearch Service	✓
Amazon Elastic Container Registry (ECR)	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon Elastic Container Service for Kubernetes	✓
Amazon ElastiCache (Redis)	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic File System	✓
Amazon Elastic MapReduce	✓
Amazon Forecast	✓
Amazon FreeRTOS	✓
Amazon FSx	✓
Amazon GuardDuty	✓
Amazon Glacier	✓
Amazon Inspector	✓
Amazon Kinesis Analytics	✓
Amazon Kinesis Data Streams	✓
Amazon Kinesis Firehose	✓
Amazon Kinesis Video Streams	✓
Amazon Lex	✓
Amazon Macie	✓
Amazon Managed Streaming for Apache Kafka (Amazon MSK)	✓
Amazon MQ	✓
Amazon Neptune	✓
Amazon Personalize	✓
Amazon Pinpoint [excluding SMS and Voice Message capabilities]	✓
Amazon Polly	✓
Amazon QuickSight	✓
Amazon Redshift	✓
Amazon Rekognition	✓
Amazon RDS (MariaDB)	✓
Amazon RDS (MySQL, Oracle)	✓
Amazon RDS (Postgres)	✓
Amazon RDS (SQL Server)	✓
Amazon Route 53	✓
Amazon SageMaker [excluding Public Workforce and Vendor Workforce]	✓
Amazon Simple Email Service (SES)	✓
Amazon Simple Notification Service (SNS)	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Workflow Service	✓
Amazon Textract	✓
Amazon Transcribe	✓
Amazon Translate	✓
Amazon Virtual Private Cloud (VPC)	✓
Amazon WorkDocs	✓
Amazon WorkLink	✓
Amazon WorkSpaces	✓
AWS Amplify Console	✓
AWS AppSync	✓
AWS Auto Scaling	✓
AWS Backup	✓
AWS Batch	✓
AWS Certificate Manager	✓
AWS CloudHSM	✓
AWS CloudFormation	✓
AWS CloudTrail	✓
AWS CodeBuild	✓
AWS CodeCommit	✓
AWS CodeDeploy	✓
AWS CodePipeline	✓
AWS Config	✓
AWS Control Tower	✓
AWS Data Exchange	✓
AWS Database Migration Service	✓
AWS DataSync	✓
AWS Direct Connect	✓
AWS Directory Service (excluding Simple AD and AD Connector)	✓
AWS Elastic Beanstalk	✓
AWS Elemental MediaConnect	✓
AWS Elemental MediaConvert	✓
AWS Elemental MediaLive	✓
AWS Firewall Manager	✓
AWS Global Accelerator	✓
AWS Glue (including AWS Lake Formation)	✓
AWS Greengrass	✓
AWS IoT (Core and Device Management)	✓
AWS IoT Events	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Managed Services	✓
AWS OpsWorks for Chef Automate	✓
AWS OpsWorks for Puppet Enterprise	✓
AWS OpsWorks Stack	✓
AWS Organizations	✓
AWS RoboMaker	✓
AWS Secrets Manager	✓
AWS Security Hub	✓
AWS Serverless Application Respository	✓
AWS Server Migration Service	✓
AWS Service Catalog	✓
AWS Shield	✓
AWS Snowball	✓
AWS Snowball Edge	✓
AWS Snowmobile	✓
AWS Step Functions	✓
AWS Storage Gateway	✓
AWS Systems Manager (previously Amazon EC2 Systems Manager)	✓
AWS Transfer for SFTP	✓
AWS VM Import/Export	✓
AWS X-Ray	✓
AWS WAF	✓
Elastic Load Balancing	✓

NOTE: None of the Services listed above are HIPAA Eligible Services when running locally AWS Outposts.

IRAP

SERVICES / PROGRAMS	NAMESPACES*	IRAP UNCLASSIFIED	IRAP PROTECTED
Amazon API Gateway	apigateway	✓	✓
Amazon CloudFront	cloudfront	✓	✓
Amazon CloudWatch	cloudwatch	✓	✓
Amazon CloudWatch Logs	logs	✓	✓
Amazon Cognito	cognito-idp, cognito-identity, cognito-sync	✓	✓
Amazon DynamoDB	dynamodb	✓	✓
Amazon Elastic Block Store (EBS)	ec2	✓	✓
Amazon Elastic Compute Cloud (EC2)	ec2	✓	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	ecs	✓	✓
Amazon Elastic MapReduce (EMR)	elasticmapreduce	✓	✓
Amazon Elasticache	elasticache	✓	✓
Amazon Glacier	glacier	✓	✓
Amazon GuardDuty	guardduty	✓	✓
Amazon Inspector	inspector	✓	✓
Amazon Kinesis Data Firehose	firehose	✓	✓
Amazon Kinesis Data Streams	kinesis	✓	✓
Amazon Redshift	redshift	✓	✓
Amazon Relational Database Service (RDS)	rds	✓	✓
Amazon Route 53	route53	✓
Amazon S3 Transfer Acceleration	s3	✓	✓
Amazon Simple Notification Service (SNS)	sns	✓	✓
Amazon Simple Queue Service (SQS)	sqs	✓	✓
Amazon Simple Storage Service (S3)	s3	✓	✓
Amazon Simple Workflow Service	swf	✓	✓
Amazon Virtual Private Cloud (VPC)	ec2	✓	✓
Amazon WorkDocs	workdocs	✓	✓
Amazon WorkSpaces	workspaces	✓	✓
AWS Auto Scaling	autoscaling	✓	✓
AWS CloudFormation	cloudformation	✓	✓
AWS CloudHSM	cloudhsm	✓	✓
AWS CloudTrail	cloudtrail	✓	✓
AWS Config	config	✓	✓
AWS Direct Connect	directconnect	✓	✓
AWS Directory Service	ds	✓	✓
AWS Identity and Access Management (IAM)	iam	✓	✓
AWS Key Management Service (KMS)	kms	✓	✓
AWS Lambda	lambda	✓	✓
AWS Lambda@Edge	lambda	✓	✓
AWS Organizations	organizations	✓
AWS Shield	shield, DDoSProtection	✓
AWS Step Functions	states	✓	✓
AWS Systems Manager (SSM)	ssm	✓	✓
AWS Trusted Advisor	trustedadvisor	✓
AWS Web Application Firewall (WAF)	waf	✓	✓
AWS Web Application Firewall (WAF) Regional	waf	✓	✓
Elastic Load Balancing (ELB)	elasticloadbalancing	✓	✓

*Namespaces help you identify services across your AWS environment. For example, when you create IAM policies, work with Amazon Resource Names (ARNs), and read AWS CloudTrail logs. Learn more about namespaces on the documentation page.

MTCS

SERVICES / PROGRAMS	MTCS (Singapore)	MTCS (Seoul)
Amazon API Gateway	✓	✓
Amazon Cloud Directory	✓
Amazon CloudFront	✓	✓
Amazon CloudWatch Logs	✓	✓
Amazon Cognito	✓	✓
Amazon DynamoDB	✓	✓
Amazon ElastiCache	✓	✓
Amazon Elastic Block Store (Amazon EBS)	✓	✓
Amazon Elastic Compute Cloud (Amazon EC2)	✓	✓
Amazon Elastic Container Registery (Amazon ECR)	✓	✓
Amazon Elastic Container Service (Amazon ECS)	✓	✓
Amazon Elastic MapReduce	✓	✓
Amazon Kinesis Data Streams	✓	✓
Amazon QuickSight	✓
Amazon Redshift	✓	✓
Amazon Relational Database Service (RDS) for MariaDB	✓	✓
Amazon Relational Database Service (RDS) for MySQL	✓	✓
Amazon Relational Database Service (RDS) for Oracle	✓	✓
Amazon Relational Database Service (RDS) for PostgreSQL	✓	✓
Amazon Relational Database Service (RDS) for SQL Server	✓	✓
Amazon Route 53	✓	✓
Amazon S3 Glacier	✓	✓
Amazon SimpleDB	✓
Amazon Simple Notification Service (Amazon SNS)	✓	✓
Amazon Simple Queue Service (Amazon SQS)	✓	✓
Amazon Simple Storage Service (Amazon S3)	✓	✓
Amazon Simple Workflow Service (Amazon SWF)	✓	✓
Amazon Virtual Private Cloud (Amazon VPC)	✓	✓
Amazon WorkDocs	✓
Amazon WorkSpaces	✓	✓
AWS Auto Scaling	✓	✓
AWS Batch	✓	✓
AWS CloudFormation	✓	✓
AWS CloudHSM	✓	✓
AWS CloudTrail	✓	✓
AWS CodeBuild	✓	✓
AWS CodeCommit	✓	✓
AWS CodeDeploy	✓	✓
AWS CodePipeline	✓	✓
AWS Config	✓	✓
AWS Database Migration Service	✓	✓
AWS Direct Connect	✓	✓
AWS Directory Service	✓	✓
AWS Elastic Beanstalk	✓	✓
AWS Identity and Access Management (IAM)	✓	✓
AWS IoT Core	✓	✓
AWS Key Management Service (AWS KMS)	✓	✓
AWS Lambda	✓	✓
AWS OpsWorks Stacks	✓	✓
AWS Shield	✓	✓
AWS Snowball	✓
AWS Snowball Edge	✓
AWS Snowmobile	✓	✓
AWS Step Functions	✓	✓
AWS Storage Gateway	✓	✓
AWS Systems Manager	✓	✓
AWS WAF	✓
AWS X-Ray	✓	✓
Elastic Load Balancing	✓	✓
Lambda@Edge	✓	✓
VM Import/Export	✓	✓

MTCS (Singapore)

MTCS (Singapore)

C5

SERVICES / PROGRAMS	Dublin	Frankfurt
Amazon Athena	✓	✓
Amazon API Gateway	✓	✓
Amazon CloudDirectory	✓
Amazon CloudFront	✓	✓
Amazon CloudWatch [Excludes CloudWatch Events]	✓	✓
Amazon Cognito	✓	✓
Amazon Connect		✓
Amazon DynamoDB	✓	✓
Amazon Elastic Container Registry (ECR)	✓	✓
Amazon Elastic Container Service (ECS)	✓	✓
Amazon ElastiCache	✓	✓
Amazon Elastic Block Store (EBS)	✓	✓
Amazon Elastic Compute Cloud (EC2)	✓	✓
Amazon Elastic File System (EFS)	✓	✓
Amazon EMR	✓	✓
Amazon Glacier	✓	✓
Amazon Inspector	✓	✓
Amazon Kinesis Data Streams	✓	✓
Amazon Kinesis Video Streams	✓	✓
Amazon MQ	✓	✓
Amazon Polly	✓	✓
Amazon QuickSight	✓
Amazon Redshift	✓	✓
Amazon Rekognition	✓
Amazon Relation Database Service	✓	✓
Amazon Route 53	✓	✓
Amazon SageMaker	✓	✓
Amazon Simple Email Service (SES)	✓
Amazon Simple Notification Service (SNS)	✓	✓
Amazon Simple Queue Service (SQS)	✓	✓
Amazon Simple Storage Service (S3)	✓	✓
Amazon Simple Workflow Service (SWF)	✓	✓
Amazon SimpleDB	✓	✓
Amazon Virtual Private Cloud (VPC)	✓	✓
Amazon WorkDocs	✓
Amazon WorkMail	✓
Amazon WorkSpaces	✓	✓
AWS AppSync	✓	✓
AWS Auto Scaling	✓
AWS Batch	✓	✓
AWS Certificate Manager	✓	✓
AWS CloudFormation	✓	✓
AWS CloudHSM	✓	✓
AWS CloudTrail	✓	✓
AWS CodeBuild	✓	✓
AWS CodeCommit	✓	✓
AWS Config	✓	✓
AWS Database Migration Service	✓	✓
AWS Direct Connect	✓	✓
AWS Directory Service [Excludes Simple Active Directory]	✓	✓
AWS Elastic Beanstalk	✓	✓
AWS Firewall Manager	✓	✓
AWS Identity & Access Management (IAM)	✓	✓
AWS Import/Export	✓	✓
AWS IoT Core	✓	✓
AWS IoT Device Management	✓	✓
AWS Key Management Service	✓	✓
AWS Lambda	✓	✓
AWS Managed Services	✓	✓
AWS OpsWorks [Excludes Chef Automate and Puppet Enterprise]	✓	✓
AWS Service Catalog	✓	✓
AWS Shield	✓	✓
AWS Snowball	✓	✓
AWS Snowball Edge	✓	✓
AWS Snowmobile	✓	✓
AWS Step Functions	✓	✓
AWS Storage Gateway	✓	✓
AWS Systems Manager	✓	✓
AWS WAF	✓	✓
AWS X-Ray	✓	✓
Elastic Load Balancing	✓	✓
For more information, see Cloud Computing Compliance Controls Catalog (C5).

K-ISMS

SERVICES / PROGRAMS	K-ISMS
Amazon API Gateway	✓
Amazon Athena	✓
Amazon Aurora	✓
Amazon CloudFront	✓
Amazon CloudWatch	✓
Amazon CloudWatch Logs	✓
Amazon Cognito	✓
Amazon DynamoDB	✓
Amazon EC2 Auto Scaling	✓
Amazon ElastiCache	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic Container Registry (ECR)	✓
Amazon Elastic Container Service (ECS)	✓
Amazon Elastic Container Service for Kubernetes (EKS)	✓
Amazon Elastic File System (EFS)	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon GuardDuty	✓
Amazon Kinesis Data Analytics	✓
Amazon Kinesis Data Firehose	✓
Amazon Kinesis Data Streams	✓
Amazon Redshift	✓
Amazon Relational Database Service (RDS)	✓
Amazon Route 53	✓
Amazon S3 Transfer Acceleration	✓
Amazon SageMaker	✓
Amazon Simple Notification Service (SNS)	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
AWS CloudFormation	✓
AWS CloudTrail	✓
AWS Config	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Elastic Beanstalk	✓
AWS Glue	✓
AWS Identity & Access Management (IAM)	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Lambda@Edge	✓
AWS Shield	✓
AWS Storage Gateway	✓
AWS Systems Manager (previously Amazon EC2 Systems Manager)	✓
AWS WAF	✓
Elastic Load Balancing	✓
VM Import/Export	✓

ENS High

SERVICES / PROGRAMS	ENS High
Amazon API Gateway	✓
Amazon DynamoDB	✓
Amazon ElastiCache	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic File System (EFS)	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon Redshift	✓
Amazon RDS	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
Amazon WorkSpaces	✓
AWS CloudFormation	✓
AWS CloudTrail	✓
AWS Config	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Directory Service	✓
AWS Elastic Beanstalk	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Snowball	✓
AWS Storage Gateway	✓
Elastic Load Balancing	✓
VM Import/Export	✓

OSPAR

SERVICES / PROGRAMS	SDKs	OSPAR
Amazon API Gateway	apigateway	✓
Amazon Athena	athena	✓
Amazon Cloud Directory	clouddirectory	✓
Amazon CloudWatch	cloudwatch, events, logs	✓
Amazon Cognito	cognito-idp, cognito-identity, cognito-sync	✓
Amazon DynamoDB	dynamodb	✓
Amazon Elastic Block Store	ebs	✓
Amazon Elastic Compute Cloud	ec2	✓
Amazon Elastic Container Registry	ecr	✓
Amazon Elastic Container Service	ecs	✓
Amazon Elastic File System	elasticfilesystem	✓
Amazon ElastiCache	elasticache	✓
Amazon EMR	elasticmapreduce	✓
Amazon GuardDuty	guardduty	✓
Amazon Kinesis Data Streams	kinesis	✓
Amazon MQ	mq	✓
Amazon Polly	polly	✓
Amazon QuickSight	quicksight	✓
Amazon Redshift	redshift	✓
Amazon Relational Database Service	rds	✓
Amazon Route 53	route53	✓
Amazon S3 Glacier	glacier	✓
Amazon SageMaker	sagemaker	✓
Amazon SimpleDB	sdb	✓
Amazon Simple Notification Service	sns	✓
Amazon Simple Queue Service	sqs	✓
Amazon Simple Storage Service	s3	✓
Amazon Simple Workflow Service	swf	✓
Amazon Virtual Private Cloud	ec2	✓
Amazon WorkDocs	workdocs	✓
Amazon WorkSpaces	workspaces	✓
AWS AppSync	appsync	✓
AWS Auto Scaling	autoscaling	✓
AWS Batch	batch	✓
AWS Certificate Manager	acm	✓
AWS CloudFormation	cloudformation	✓
AWS CloudHSM	cloudhsm	✓
AWS CloudTrail	cloudtrail	✓
AWS CodeBuild	codebuild	✓
AWS CodeCommit	codecommit	✓
AWS Config	config	✓
AWS Database Migration Service	dms	✓
AWS Direct Connect	directconnect	✓
AWS Directory Service [excludes Simple Active Directory]	ds	✓
AWS Elastic Beanstalk	elasticbeanstalk	✓
AWS Identity and Access Management	iam	✓
AWS IoT Core	iot	✓
AWS IoT Device Management	iot	✓
AWS Key Management Service	kms	✓
AWS Lambda	lambda	✓
AWS Managed Services		✓
AWS OpsWorks	opsworks	✓
AWS Service Catalog	servicecatalog	✓
AWS Shield	shield, DDoSProtection	✓
AWS Snowball	snowball	✓
AWS Snowball Edge		✓
AWS Snowmobile		✓
AWS Step Functions	states	✓
AWS Storage Gateway	storagegateway	✓
AWS Systems Manager	ssm	✓
AWS WAF	waf	✓
AWS X-Ray	xray	✓
Elastic Load Balancing	elasticloadbalancing	✓
VM Import/Export		✓

HITRUST CSF

SERVICES / PROGRAMS	HITRUST CSF
Amazon API Gateway	✓
Amazon AppStream 2.0	✓
Amazon Athena	✓
Amazon Aurora [MySQL, PostgreSQL]	✓
Amazon Cloud Directory	✓
Amazon CloudFront	✓
Amazon CloudWatch	✓
Amazon CloudWatch Events [includes Amazon EventBridge]	✓
Amazon CloudWatch SDK Metrics	✓
Amazon Cognito	✓
Amazon Comprehend Medical	✓
Amazon Connect	✓
Amazon DocumentDB (with MongoDB compatibility)	✓
Amazon DynamoDB	✓
Amazon Elastic Block Store	✓
Amazon Elastic Compute Cloud	✓
Amazon Elastic Container Registry	✓
Amazon Elastic Container Service [both Fargate and EC2 launch types]	✓
Amazon Elastic Container Service for Kubernetes (EKS)	✓
Amazon Elastic File System	✓
Amazon ElastiCache for Redis	✓
Amazon Elasticsearch Service	✓
Amazon EMR	✓
Amazon FreeRTOS	✓
Amazon FSx	✓
Amazon GuardDuty	✓
Amazon Inspector	✓
Amazon Kinesis Data Analytics	✓
Amazon Kinesis Data Firehose	✓
Amazon Kinesis Data Streams	✓
Amazon Kinesis Video Streams	✓
Amazon Lex	✓
Amazon Macie	✓
Amazon Managed Streaming for Apache Kafka (Amazon MSK)	✓
Amazon MQ	✓
Amazon Neptune	✓
Amazon Personalize	✓
Amazon Pinpoint	✓
Amazon Polly	✓
Amazon QuickSight	✓
Amazon Redshift	✓
Amazon Rekognition	✓
Amazon Relational Database Service [includes Amazon Aurora]	✓
Amazon Route 53	✓
Amazon S3 Glacier	✓
Amazon S3 Transfer Acceleration	✓
Amazon SageMaker [excludes Public Workforce and Vendor Workforce]	✓
Amazon Simple Email Service (SES)	✓
Amazon Simple Notification Service	✓
Amazon Simple Queue Service	✓
Amazon Simple Storage Service	✓
Amazon Simple Workflow Service	✓
Amazon Transcribe	✓
Amazon Translate	✓
Amazon Virtual Private Cloud	✓
Amazon WorkDocs	✓
Amazon WorkSpaces	✓
Amazon WorkLink	✓
AWS Amplify	✓
AWS Amplify Console	✓
AWS AppSync	✓
AWS Auto Scaling	✓
AWS Backup	✓
AWS Batch	✓
AWS Certificate Manager	✓
AWS CloudFormation	✓
AWS CloudHSM	✓
AWS CloudTrail	✓
AWS CodeBuild	✓
AWS CodeCommit	✓
AWS CodeDeploy	✓
AWS CodePipeline	✓
AWS Config	✓
AWS Control Tower	✓
AWS Data Exchange	✓
AWS Database Migration Service	✓
AWS DataSync	✓
AWS Direct Connect	✓
AWS Directory Service [excludes Simple AD and AD Connector]	✓
AWS Elastic Beanstalk	✓
AWS Elemental MediaConnect	✓
AWS Elemental MediaConvert	✓
AWS Elemental MediaLive	✓
AWS Fargate	✓
AWS Firewall Manager	✓
AWS Global Accelerator	✓
AWS Glue	✓
AWS Identity and Access Management	✓
AWS IoT Core [includes AWS IoT Device Management]	✓
AWS IoT Greengrass	✓
AWS IoT Things Graph	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Lambda@Edge	✓
AWS Managed Services	✓
AWS OpsWorks for Chef Automate	✓
AWS OpsWorks for Puppet Enterprise	✓
AWS OpsWorks Stacks	✓
AWS Organizations	✓
AWS RoboMaker	✓
AWS Secrets Manager	✓
AWS Security Hub	✓
AWS Server Migration Service (SMS)	✓
AWS Serverless Application Repository	✓
AWS Service Catalog	✓
AWS Shield	✓
AWS Snowball	✓
AWS Snowball Edge	✓
AWS Snowmobile	✓
AWS Step Functions	✓
AWS Storage Gateway	✓
AWS Systems Manager	✓
AWS Transfer for SFTP	✓
AWS WAF	✓
AWS X-Ray	✓
Elastic Load Balancing	✓
VM Import/Export	✓

Compliance

Cloud Security

Assurance Programs

Resources

Latest News

Testimonials

AWS Services in Scope by Compliance Program

SOC

PCI

ISO

FedRAMP

DoD CC SRG

HIPAA BAA

IRAP

MTCS

C5

K-ISMS

ENS High

OSPAR

HITRUST CSF

Want More Information About Services in Scope?