We include services in the scope of our compliance efforts based on the expected use case, feedback and demand. If a service is not currently listed as in scope of the most recent assessment, it does not mean that you cannot use the service. It is part of the shared responsibility for your organization to determine the nature of the data. Based on the nature of what you are building on AWS, you should determine if the service will process or store customer data and how it will or will not impact the compliance of your customer data environment.

We encourage you to discuss your workload objectives and goals with your AWS account team; they will be able to evaluate your proposed use case and architecture, and how our security and compliance processes overlay that architecture. Need to connect with an AWS business representative?

AWS Services in Scope have been fully assessed by a third party auditor and result in a certification, attestation of compliance or ATO.

✓ = This service is currently in scope and is reflected in current reports

In Progress = This service is undergoing a full assessment by our third party assessor

Ready = This service has been fully assessed by our third party assessor and the FedRAMP Security Package is available for review by authorizing officials (AO)

SOC

SERVICES / PROGRAMS	SOC 1,2,3
Amazon API Gateway	✓
Amazon Cloud Directory	✓
Amazon CloudFront	✓
Amazon CloudWatch Logs	✓
Amazon Cognito	✓
Amazon Connect	✓
Amazon DynamoDB	✓
Amazon Elastic Container Registry (ECR)	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon ElastiCache	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic File System (EFS)	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon Inspector	✓
Amazon Kinesis Data Streams	✓
Amazon Redshift	✓
Amazon RDS	✓
Amazon Route 53	✓
Amazon S3 Transfer Acceleration	✓
Amazon SimpleDB	✓
Amazon Simple Email Service (SES)	✓
Amazon Simple Notification Service (SNS)	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
Amazon WorkMail	✓
Amazon WorkSpaces	✓
Auto Scaling	✓
AWS CloudFormation	✓
AWS CloudHSM	✓
AWS CloudTrail	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Directory Service for Microsoft Active Directory	✓
AWS Elastic Beanstalk	✓
AWS Identity & Access Management (IAM)	✓
AWS IoT Platform	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Lambda@Edge	✓
AWS Managed Services	✓
AWS Shield	✓
AWS Step Functions	✓
AWS Storage Gateway	✓
AWS Systems Manager	✓
AWS Web Application Firewall (WAF)	✓
Elastic Load Balancing	✓
VM Import/Export	✓

PCI

SERVICES / PROGRAMS	PCI
Amazon API Gateway	✓
Amazon Aurora (MySQL)	✓
Amazon CloudFront	✓
Amazon CloudWatch Logs	✓
Amazon Cognito	✓
Amazon Connect	✓
Amazon DynamoDB	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon Inspector	✓
Amazon Kinesis Data Streams	✓
Amazon Macie	✓
Amazon Quicksight	✓
Amazon Redshift	✓
Amazon Relational Database Service (MySQL, Oracle)	✓
Amazon Relational Database Service (Postgres)	✓
Amazon Relational Database Service (SQL Server)	✓
Amazon Relational Database Service (MariaDB)	✓
Amazon Route 53	✓
Amazon S3 Transfer Acceleration	✓
Amazon SageMaker	✓
Amazon SimpleDB	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Notification Service (SNS)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
Amazon WorkDocs	✓
Amazon WorkSpaces	✓
Auto Scaling	✓
AWS Batch	✓
AWS CodeBuild	✓
AWS CloudFormation	✓
AWS CloudHSM	✓
AWS CloudTrail	✓
AWS Config	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Directory Service (AWS Microsoft AD, Amazon Cloud Directory)	✓
AWS Elastic Beanstalk	✓
AWS Identity & Access Management (IAM)	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Lambda@Edge	✓
AWS Managed Services	✓
AWS OpsWorks Stacks	✓
AWS Shield	✓
AWS Snowball	✓
AWS Snowball Edge	✓
AWS Snowmobile	✓
AWS Systems Manager	✓
AWS WAF	✓
AWS X-Ray	✓
Elastic Load Balancing	✓

ISO

SERVICES / PROGRAMS	ISO 9001 / 27001 / 27017 / 27018
Amazon API Gateway	✓
Amazon Aurora	✓
Amazon Cloud Directory	✓
Amazon CloudFront	✓
Amazon CloudWatch Logs	✓
Amazon Cognito	✓
Amazon Connect	✓
Amazon DynamoDB	✓
Amazon Elastic Container Registry (ECR)	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon ElastiCache	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic File System (EFS)	✓
Amazon EMR	✓
Amazon Glacier	✓
Amazon Inspector	✓
Amazon Kinesis Data Streams	✓
Amazon Macie	✓
Amazon QuickSight	✓
Amazon Redshift	✓
Amazon RDS (MySQL, Oracle)	✓
Amazon RDS (Postgres)	✓
Amazon RDS (SQL Server)	✓
Amazon RDS (MariaDB)	✓
Amazon Route 53	✓
Amazon S3 Transfer Acceleration	✓
Amazon SageMaker	✓
Amazon SimpleDB	✓
Amazon Simple Email Service (SES)	✓
Amazon Simple Notification Service (SNS)	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
Amazon WorkDocs	✓
Amazon WorkMail	✓
Amazon WorkSpaces	✓
AWS Batch	✓
AWS CloudFormation	✓
AWS CloudHSM	✓
AWS CloudTrail	✓
AWS CodeBuild	✓
AWS CodeCommit	✓
AWS CodeDeploy	✓
AWS CodePipeline	✓
AWS Config	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Directory Service	✓
AWS Elastic Beanstalk	✓
AWS Identity & Access Management (IAM)	✓
AWS IoT Core	✓
AWS Key Management Service (KMS)	✓
AWS Lambda	✓
AWS Lambda@Edge	✓
AWS Managed Services	✓
AWS OpsWorks Stacks	✓
AWS Shield	✓
AWS Snowball	✓
AWS Snowball Edge	✓
AWS Snowmobile	✓
AWS Step Functions	✓
AWS Storage Gateway	✓
AWS Systems Manager	✓
AWS WAF	✓
AWS X-Ray	✓
Auto Scaling	✓
Elastic Load Balancing	✓
VM Import/Export	✓

FedRAMP

SERVICES / PROGRAMS	FedRAMP Moderate (East/West)	FedRAMP High (GovCloud)
Amazon API Gateway	In Progress	In Progress
Amazon Aurora (MySQL)	✓
Amazon Aurora (Postgres)	In Progress
Amazon Cloud Directory	In Progress
Amazon CloudWatch Logs	✓	✓
Amazon Cognito	In Progress
Amazon DynamoDB	✓	✓
Amazon ElastiCache	In Progress	In Progress
Amazon Elastic Block Store (EBS)	✓	✓
Amazon Elastic Compute Cloud (EC2) [includes all instance types]	✓	✓
Amazon Elastic MapReduce	✓	✓
Amazon Glacier	✓	✓
Amazon Inspector	In Progress
Amazon Kinesis Data Streams	✓	✓
Amazon Macie	In Progress
Amazon QuickSight	In Progress
Amazon Redshift	✓	✓
Amazon RDS (MySQL, Oracle)	✓	✓
Amazon RDS (Postgres)	✓	✓
Amazon RDS (SQL Server)	In Progress	In Progress
Amazon RDS (MariaDB)	In Progress	In Progress
Amazon Route 53	In Progress
Amazon Simple Notification Service (SNS)	✓	✓
Amazon Simple Queue Service (SQS)	✓	✓
Amazon Simple Storage Service (S3)	✓	✓
Amazon Simple Workflow Service (SWF)	✓	✓
Amazon Virtual Private Cloud (VPC)	✓	✓
Auto Scaling	✓	✓
AWS CloudFormation	✓	✓
AWS CloudTrail	✓	✓
AWS Config	In Progress	In Progress
AWS Database Migration Service	In Progress	In Progress
AWS Directory Service	In Progress
AWS Identity & Access Management (IAM)	✓	✓
AWS Key Management Service	✓	✓
AWS Lambda	In Progress	In Progress
AWS Shield Advanced	In Progress
AWS Snowball	In Progress	In Progress
AWS Snowball Edge	In Progress	In Progress
AWS Systems Manager	In Progress	In Progress
AWS WAF	In Progress
Elastic Load Balancing	✓	✓

DoD CC SRG

SERVICES / PROGRAMS	DoD CC SRG IL2 (East/West)	DoD CC SRG IL2 (GovCloud)	DoD CC SRG IL4 (GovCloud)	DoD CC SRG IL5 (GovCloud)
Amazon Aurora (MySQL)	✓
Amazon CloudWatch Logs	✓	✓	✓
Amazon DynamoDB	✓	✓	✓
Amazon Elastic Block Store (EBS)	✓	✓	✓	✓
Amazon Elastic Compute Cloud (EC2) [includes all instance types]	✓	✓	✓	✓
Amazon Elastic MapReduce	✓	✓	✓
Amazon Glacier	✓	✓	✓
Amazon Kinesis Data Streams	✓	✓	✓
Amazon Redshift	✓	✓	✓
Amazon RDS (MySQL, Oracle)	✓	✓	✓
Amazon RDS (Postgres)	✓	✓	✓
Amazon Simple Notification Service (SNS)	✓	✓	✓
Amazon Simple Queue Service (SQS)	✓	✓	✓
Amazon Simple Storage Service (S3)	✓	✓	✓	✓
Amazon Simple Workflow Service (SWF)	✓	✓	✓
Amazon Virtual Private Cloud (VPC)	✓	✓	✓	✓
Auto Scaling	✓	✓	✓	✓
AWS CloudFormation	✓	✓	✓
AWS CloudTrail	✓	✓	✓
AWS Identity & Access Management (IAM)	✓	✓	✓	✓
AWS Key Management Service	✓	✓	✓	✓
Elastic Load Balancing	✓	✓	✓	✓

HIPAA BAA

SERVICES / PROGRAMS	HIPAA BAA
Amazon API Gateway (excluding the use of Amazon API Gateway caching)	✓
Amazon Aurora (MySQL,PostgreSQL)	✓
Amazon CloudFront (including Lamba@Edge)	✓
Amazon CloudWatch Logs	✓
Amazon Cognito	✓
Amazon Connect	✓
Amazon DynamoDB	✓
Amazon Elastic Container Registry (ECR)	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon ElastiCache	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon Inspector	✓
Amazon Kinesis Data Streams	✓
Amazon Macie	✓
Amazon Polly	✓
Amazon QuickSight	✓
Amazon Redshift	✓
Amazon RDS (MariaDB)	✓
Amazon RDS (MySQL, Oracle)	✓
Amazon RDS (Postgres)	✓
Amazon RDS (SQL Server)	✓
Amazon Route 53	✓
Amazon Simple Notification Service (SNS)	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Virtual Private Cloud (VPC)	✓
Amazon WorkDocs	✓
Amazon WorkSpaces	✓
AWS AppSync	✓
AWS Batch	✓
AWS CloudHSM	✓
AWS CloudFormation	✓
AWS CloudTrail	✓
AWS CodeBuild	✓
AWS CodeCommit	✓
AWS Config	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Directory Service (excluding Simple AD and AD Connector)	✓
AWS Firewall Manager	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Managed Services	✓
AWS OpsWorks Stack	✓
AWS Shield	✓
AWS Snowball	✓
AWS Snowball Edge	✓
AWS Snowmobile	✓
AWS Storage Gateway	✓
AWS Systems Manager (previously Amazon EC2 Systems Manager) [excluding AWS Systems Manager Console and Resource Groups]	✓
AWS X-Ray	✓
AWS WAF	✓
Elastic Load Balancing	✓

IRAP

SERVICES / PROGRAMS	IRAP
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Virtual Private Cloud (VPC)	✓
AWS Identity and Access Management (IAM)	✓

MTCS

SERVICES / PROGRAMS	MTCS
Amazon API Gateway	✓
Amazon CloudFront	✓
Amazon DynamoDB	✓
Amazon ElastiCache	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon Redshift	✓
Amazon RDS (MySQL, Oracle)	✓
Amazon RDS (Postgres)	✓
Amazon RDS (SQL Server)	✓
Amazon Route 53	✓
Amazon SimpleDB	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
Amazon WorkDocs	✓
Amazon WorkSpaces	✓
AWS CloudFormation	✓
AWS CloudHSM	✓
AWS CloudTrail	✓
AWS Config	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Directory Service	✓
AWS Elastic Beanstalk	✓
AWS Identity & Access Management (IAM)	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Storage Gateway	✓
AWS WAF	✓
Elastic Load Balancing	✓
VM Import/Export	✓

C5

SERVICES / PROGRAMS	C5 (Frankfurt)
Amazon API Gateway	✓
Amazon Aurora (MySQL)	✓
Amazon CloudFront	✓
Amazon Cognito	✓
Amazon Connect	✓
Amazon DynamoDB	✓
Amazon Elastic Container Registry (ECR)	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon ElastiCache	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic File System (EFS)	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon Kinesis Data Streams	✓
Amazon Redshift	✓
Amazon RDS (MySQL, Oracle)	✓
Amazon RDS (Postgres)	✓
Amazon RDS (SQL Server)	✓
Amazon RDS (MariaDB)	✓
Amazon Route 53	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
AWS CloudFormation	✓
AWS CloudHSM	✓
AWS CloudTrail	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Directory Service for Microsoft Active Directory	✓
AWS Elastic Beanstalk	✓
AWS Identity & Access Management (IAM)	✓
AWS IoT	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Lambda@Edge	✓
AWS Shield	✓
AWS Step Functions	✓
AWS Storage Gateway	✓
AWS Systems Manager	✓
Elastic Load Balancing	✓
VM Import/Export	✓

K-ISMS

SERVICES / PROGRAMS	K-ISMS
Amazon API Gateway	✓
Amazon CloudFront	✓
Amazon DynamoDB	✓
Amazon ElastiCache	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon Redshift	✓
Amazon RDS	✓
Amazon Route 53	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
AWS CloudFormation	✓
AWS CloudTrail	✓
AWS Config	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Elastic Beanstalk	✓
AWS Identity & Access Management (IAM)	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Storage Gateway	✓
AWS WAF	✓
Elastic Load Balancing	✓
VM Import/Export	✓

ENS High

SERVICES / PROGRAMS	ENS High
Amazon API Gateway	✓
Amazon DynamoDB	✓
Amazon ElastiCache	✓
Amazon Elastic Container Service (ECS) [both Fargate and EC2 launch types]	✓
Amazon Elastic Block Store (EBS)	✓
Amazon Elastic Compute Cloud (EC2)	✓
Amazon Elastic File System (EFS)	✓
Amazon Elastic MapReduce	✓
Amazon Glacier	✓
Amazon Redshift	✓
Amazon RDS	✓
Amazon Simple Queue Service (SQS)	✓
Amazon Simple Storage Service (S3)	✓
Amazon Simple Workflow Service (SWF)	✓
Amazon Virtual Private Cloud (VPC)	✓
Amazon WorkSpaces	✓
AWS CloudFormation	✓
AWS CloudTrail	✓
AWS Config	✓
AWS Database Migration Service	✓
AWS Direct Connect	✓
AWS Directory Service	✓
AWS Elastic Beanstalk	✓
AWS Key Management Service	✓
AWS Lambda	✓
AWS Snowball	✓
AWS Storage Gateway	✓
Elastic Load Balancing	✓
VM Import/Export	✓